Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/yOm-lqxsbYHPC5FqAmGNQZcOWEM.roa
File: yOm-lqxsbYHPC5FqAmGNQZcOWEM.roa (raw, json)
Hash identifier: qShkZG7AwEJI+B/A9+0Qumc32Gn//Yqvj6y5W/CuCds=
Subject key identifier: C8:E9:BE:96:AC:6C:6D:81:CF:0B:91:6A:02:61:8D:41:97:0E:58:43
Certificate issuer: /CN=677d4ea2c016ce2797af7aeb737d132875669f12
Certificate serial: 018CC8DE4048A7162189939CF6AB9CC5A5CD
Authority key identifier: 67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/yOm-lqxsbYHPC5FqAmGNQZcOWEM.roa
Signing time: Tue 02 Jan 2024 06:30:57 +0000
ROA not before: Tue 02 Jan 2024 06:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59554
IP address blocks: 193.160.93.0/24 maxlen: 24
193.160.94.0/24 maxlen: 24
193.160.95.0/24 maxlen: 24
193.160.92.0/24 maxlen: 24
2a0d:ed40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/Z31OosAWzieXr3rrc30TKHVmnxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/Z31OosAWzieXr3rrc30TKHVmnxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:40:48:a7:16:21:89:93:9c:f6:ab:9c:c5:a5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=677d4ea2c016ce2797af7aeb737d132875669f12
Validity
Not Before: Jan 2 06:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8e9be96ac6c6d81cf0b916a02618d41970e5843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e5:fd:4c:00:2e:21:db:c4:9a:13:c2:e2:bf:
c6:be:31:99:31:b6:84:9c:a6:3c:71:ae:b7:07:31:
ac:c1:1a:11:04:c3:a6:4a:5a:37:78:bb:a5:a9:e7:
a1:20:24:df:4d:67:2f:51:ea:4d:0a:4d:9b:96:78:
10:7d:30:6b:77:a1:bd:5c:84:2f:de:72:d5:65:8d:
fb:44:96:b5:7f:e3:07:7c:99:05:3e:a8:53:11:e0:
5c:63:98:0c:1d:60:cd:be:02:83:2a:dd:d2:74:a7:
8f:38:6e:37:37:35:ab:ea:81:0b:02:95:82:44:eb:
cb:82:5e:11:7e:09:1a:3d:63:da:3f:7e:1a:e2:8b:
b8:b8:87:66:a7:87:77:85:6e:21:f6:fc:45:e7:60:
63:a5:2c:ed:c0:7a:9e:d2:14:71:1e:0b:0a:3d:14:
c8:d2:95:24:52:cd:13:3a:85:23:b8:37:73:c8:d7:
b7:d2:9c:c4:33:3d:59:95:27:5b:ed:01:30:94:31:
e2:45:68:1e:14:de:ee:f3:5f:e0:e2:f5:32:66:90:
71:a5:32:ed:74:5c:77:e8:8e:86:a6:6f:74:0a:04:
e7:f3:d5:d4:1a:a2:0e:52:52:3d:1d:38:57:1e:1c:
36:31:46:c6:a2:01:fd:2e:93:9e:43:aa:94:d4:36:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E9:BE:96:AC:6C:6D:81:CF:0B:91:6A:02:61:8D:41:97:0E:58:43
X509v3 Authority Key Identifier:
keyid:67:7D:4E:A2:C0:16:CE:27:97:AF:7A:EB:73:7D:13:28:75:66:9F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z31OosAWzieXr3rrc30TKHVmnxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/yOm-lqxsbYHPC5FqAmGNQZcOWEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/4aeee7-45c0-4213-8085-b8f3f09eaade/1/Z31OosAWzieXr3rrc30TKHVmnxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.92.0/22
IPv6:
2a0d:ed40::/32
Signature Algorithm: sha256WithRSAEncryption
60:cd:ed:05:d0:e7:2b:04:00:58:94:25:fb:89:02:57:91:a2:
88:5a:3c:47:44:ce:a8:ef:91:79:de:a2:3e:a5:8c:e4:51:1a:
57:03:9c:00:35:6f:02:1b:10:bc:c7:e6:02:e7:b2:aa:cf:eb:
23:78:7f:8d:d4:08:85:d5:35:68:c0:ad:7e:2d:64:f2:a9:cf:
02:65:72:c8:79:85:2e:9c:c6:af:4d:c2:64:1a:72:3c:db:64:
b4:88:2c:14:1b:3c:3e:04:37:35:a7:21:fb:52:0a:99:d6:db:
df:bb:69:ca:2e:50:be:4d:98:b9:eb:eb:87:c7:d7:e8:55:84:
02:38:ce:19:eb:ce:01:dd:c1:43:b9:ae:be:c8:9c:43:bf:b7:
6d:50:15:fe:c7:98:c4:8b:d5:81:c4:e7:8f:a8:4d:99:59:61:
da:3a:8f:16:f4:f4:59:89:f0:27:95:12:1f:95:b7:b6:92:97:
54:ed:99:30:1c:c3:4f:d0:cb:b2:44:9f:24:54:b1:29:4a:f1:
8f:eb:20:a3:9b:4d:06:b2:63:4f:ea:d9:62:26:03:4b:73:24:
f3:81:d1:23:50:79:e0:f8:9c:04:00:ca:2d:95:25:d1:23:f3:
83:ec:2d:57:5e:5b:19:7d:4d:af:d0:00:77:08:58:e2:75:9e:
d3:f3:70:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:41:41 2024 by rpki-client on console-ams.rpki-client.org