Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/iYj8-_apQEob_AsDaGUVxBQVZJk.roa
File: iYj8-_apQEob_AsDaGUVxBQVZJk.roa (raw, json)
Hash identifier: 7BY7lZddi97ayjw1j4mr2X5fXrGfdZkyau1Ow9BKCcg=
Subject key identifier: 89:88:FC:FB:F6:A9:40:4A:1B:FC:0B:03:68:65:15:C4:14:15:64:99
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F7815816BA3B598F33C3BF99643832687
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/iYj8-_apQEob_AsDaGUVxBQVZJk.roa
Signing time: Tue 14 May 2024 17:10:26 +0000
ROA not before: Tue 14 May 2024 17:10:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59729
IP address blocks: 91.220.198.0/24 maxlen: 24
195.88.220.0/24 maxlen: 24
195.96.144.0/24 maxlen: 24
195.96.147.0/24 maxlen: 24
195.96.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:15:81:6b:a3:b5:98:f3:3c:3b:f9:96:43:83:26:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 14 17:10:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8988fcfbf6a9404a1bfc0b03686515c414156499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:28:1d:ab:f0:93:a4:d7:e0:6b:65:be:81:c7:
86:f2:19:1c:fb:bb:8a:72:33:b9:cb:e6:d8:be:e4:
a7:1a:2a:ba:6e:49:56:e1:d7:ea:60:95:9b:1f:c7:
cc:6f:16:d0:15:6c:af:04:7b:39:44:a7:a1:3b:01:
fd:a5:1a:9f:56:50:b1:54:86:ef:94:16:d3:34:f1:
04:ce:c4:a5:88:cf:48:a6:b1:fb:71:99:bf:60:3b:
17:de:23:8f:87:41:99:b8:d1:bd:5a:77:c9:52:4a:
77:af:8d:8a:e2:33:1e:e1:12:8d:c8:05:03:9d:e9:
7a:78:ff:a9:93:0e:e4:5a:12:28:bc:42:3b:9a:e9:
87:f1:d2:1a:33:1e:51:ad:1b:d8:fd:98:c0:93:dd:
dc:29:27:39:a8:03:4b:68:d5:3d:77:99:a0:c1:bc:
ce:97:b6:68:02:bf:5a:4f:94:75:d9:de:fc:4f:3a:
9e:12:41:73:39:93:2f:10:c2:7e:e3:55:67:bb:59:
91:bb:e6:5f:97:f2:77:b1:9f:6d:34:b3:e4:a5:e7:
81:1f:61:ee:49:00:e0:74:3a:83:75:01:13:53:10:
e5:de:58:4a:23:ec:4c:e0:ae:37:5b:59:54:48:ba:
37:e3:8a:4c:11:3b:89:5b:b9:92:a8:de:17:4a:cd:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:88:FC:FB:F6:A9:40:4A:1B:FC:0B:03:68:65:15:C4:14:15:64:99
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/iYj8-_apQEob_AsDaGUVxBQVZJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.198.0/24
195.88.220.0/24
195.96.144.0/24
195.96.147.0/24
195.96.154.0/24
Signature Algorithm: sha256WithRSAEncryption
73:e6:5c:86:9d:41:72:35:aa:89:0d:2d:fd:08:16:a3:d1:c4:
56:cc:aa:f4:3c:ac:6e:60:0d:43:04:ed:61:6c:dd:56:14:89:
42:0f:8e:bb:0b:6f:6a:db:aa:f1:b7:21:13:67:ad:99:ca:0b:
5b:e8:0d:b2:de:33:f5:94:eb:99:5a:91:af:91:8a:66:5c:38:
74:7a:4d:d5:13:90:43:00:8a:98:82:ed:16:f6:cd:a0:10:7b:
68:a6:82:3f:3f:5a:d6:0f:a8:9c:da:05:82:3e:fc:1b:27:73:
bf:2a:68:ba:bf:58:76:78:62:38:1c:64:8a:03:59:a6:da:9a:
38:b1:db:e4:a9:77:f1:95:1c:e2:c1:f5:84:b0:e0:b1:f7:6b:
ed:e9:5c:81:2a:c6:20:45:47:97:ea:0f:c0:3b:f4:e7:1c:8b:
f5:df:92:4f:87:8d:a1:f9:66:96:ce:05:4b:78:80:54:04:da:
56:a7:cc:43:01:47:5d:7a:67:a0:63:47:d3:d1:9a:9d:8d:13:
78:fe:53:93:cd:58:ba:89:e4:92:e5:6b:9d:b3:73:76:e0:fd:
8a:b7:a2:e6:ef:28:a2:98:3d:5b:1a:54:e8:c3:ca:23:f0:fa:
04:7a:02:3c:f0:5b:65:61:1a:93:ce:4e:db:08:7d:07:db:28:
be:59:8c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:43:18 2024 by rpki-client on console-fra.rpki-client.org