Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/yyw0M-nZ6YQVzDgSq0IkU_RhWEU.roa
File: yyw0M-nZ6YQVzDgSq0IkU_RhWEU.roa (raw, json)
Hash identifier: s6vdmgLOQf1Xdis+izLAMimWGvTGUazrI/VryUSy7rE=
Subject key identifier: CB:2C:34:33:E9:D9:E9:84:15:CC:38:12:AB:42:24:53:F4:61:58:45
Certificate issuer: /CN=5f7179eff5e0e67d0337aa8912f95a687fd44089
Certificate serial: 018EA32CC99767D63B899F13C2909D2396A0
Authority key identifier: 5F:71:79:EF:F5:E0:E6:7D:03:37:AA:89:12:F9:5A:68:7F:D4:40:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3F57_Xg5n0DN6qJEvlaaH_UQIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/yyw0M-nZ6YQVzDgSq0IkU_RhWEU.roa
Signing time: Wed 03 Apr 2024 08:56:45 +0000
ROA not before: Wed 03 Apr 2024 08:56:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201606
IP address blocks: 185.69.80.0/22 maxlen: 22
185.69.80.0/24 maxlen: 24
185.69.81.0/24 maxlen: 24
185.69.82.0/24 maxlen: 24
185.69.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/X3F57_Xg5n0DN6qJEvlaaH_UQIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/X3F57_Xg5n0DN6qJEvlaaH_UQIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3F57_Xg5n0DN6qJEvlaaH_UQIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:2c:c9:97:67:d6:3b:89:9f:13:c2:90:9d:23:96:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7179eff5e0e67d0337aa8912f95a687fd44089
Validity
Not Before: Apr 3 08:56:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb2c3433e9d9e98415cc3812ab422453f4615845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:f7:2f:e1:58:a4:35:e8:65:ef:ed:b2:3c:
c9:c2:05:58:a5:9c:0a:3a:8e:fd:70:30:7a:81:46:
c7:0e:20:d1:a8:ae:a9:4e:d1:30:b7:25:3f:7c:a6:
9a:66:0a:4b:f3:63:87:01:fd:4c:55:8a:40:93:39:
f1:ce:01:8c:09:0f:86:b9:91:a0:e8:98:9f:a8:97:
19:42:aa:f7:41:ad:1d:34:fe:3a:a4:6f:5e:57:f8:
ab:cf:fd:aa:09:cf:e1:f4:eb:82:fa:e2:ef:c6:08:
0b:d8:65:82:76:3b:03:cc:34:c7:d0:74:97:a0:e4:
6d:b0:1b:e8:b4:a6:13:e3:f0:d0:b5:f2:ae:d2:ad:
6e:d2:1c:30:85:6f:3d:e1:db:dd:b8:be:9a:bb:fd:
0b:df:0d:4c:f8:af:30:18:74:dd:42:37:f3:2c:a3:
45:a5:e1:5c:6c:be:32:7a:a2:79:f0:26:79:c5:bc:
45:de:a7:a9:69:f2:02:c2:16:37:85:cc:cc:2f:a5:
26:10:9c:5d:50:30:18:49:39:23:b4:a8:45:9e:a9:
fa:4e:08:12:d2:30:27:06:54:6a:d6:e1:16:ea:90:
24:e3:90:2d:f3:4e:8f:91:0c:c4:8c:e1:e1:85:1c:
bf:1a:55:2f:3a:4f:33:d3:28:94:61:5f:86:31:a4:
d3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2C:34:33:E9:D9:E9:84:15:CC:38:12:AB:42:24:53:F4:61:58:45
X509v3 Authority Key Identifier:
keyid:5F:71:79:EF:F5:E0:E6:7D:03:37:AA:89:12:F9:5A:68:7F:D4:40:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3F57_Xg5n0DN6qJEvlaaH_UQIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/yyw0M-nZ6YQVzDgSq0IkU_RhWEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c44d93-1695-4ab1-9142-4296d7abd3d1/1/X3F57_Xg5n0DN6qJEvlaaH_UQIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:42:4b:48:ee:38:33:35:44:89:fd:84:f8:1e:da:0a:b2:6d:
17:16:32:bc:7f:ca:8f:1a:59:6b:77:83:ba:ed:cd:cc:25:0a:
e5:24:e8:48:f9:60:a6:96:a4:91:8e:50:b0:26:4b:81:82:4d:
42:8f:78:85:be:79:ef:5e:dc:ea:b8:93:a7:b7:a7:cf:72:93:
b8:ae:56:fd:f1:75:b4:f8:6b:f5:1e:79:bf:ae:85:7c:7c:57:
9f:46:a5:f2:91:3e:a7:c4:a7:16:dc:be:d2:6e:1f:39:d9:e4:
88:ca:81:3c:58:ae:16:8d:5a:6f:fa:b9:81:26:1c:ca:c8:f2:
67:4e:37:c4:2f:41:ae:2c:fb:d4:3f:19:1f:75:a1:14:a5:77:
c0:44:24:46:14:28:5f:4d:bb:16:46:8f:51:26:98:17:0e:e2:
b1:1a:e9:4c:65:9a:4c:7e:05:6a:21:ff:ea:26:b7:30:1a:c8:
55:ed:f7:7d:53:1c:e5:38:a5:ed:74:35:db:9e:2f:4c:47:8a:
43:49:42:28:ab:8d:26:68:38:13:7d:7c:5c:be:ba:69:47:b4:
d5:e8:4c:f1:76:5c:a7:91:8e:f2:a6:70:86:ed:c9:df:48:c6:
51:ed:50:c9:23:c3:c0:b1:20:4c:d8:57:bb:ed:b1:a2:89:51:
aa:9e:4b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:08:59 2024 by rpki-client on console-ams.rpki-client.org