Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/_Pnxk9mgZ9Mbd4kArelGj18nJgc.roa
File: _Pnxk9mgZ9Mbd4kArelGj18nJgc.roa (raw, json)
Hash identifier: GEu9jJh0mL4WpO51RNb1v28KE3V280iJL6W+JMg1BFE=
Subject key identifier: FC:F9:F1:93:D9:A0:67:D3:1B:77:89:00:AD:E9:46:8F:5F:27:26:07
Certificate issuer: /CN=218da7ff576e78dc234eb74cbf073076c1f7ebc9
Certificate serial: 018CC8DF286222300C2E606EEBDC36EDBAD4
Authority key identifier: 21:8D:A7:FF:57:6E:78:DC:23:4E:B7:4C:BF:07:30:76:C1:F7:EB:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2n_1dueNwjTrdMvwcwdsH368k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/_Pnxk9mgZ9Mbd4kArelGj18nJgc.roa
Signing time: Tue 02 Jan 2024 06:31:57 +0000
ROA not before: Tue 02 Jan 2024 06:31:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197608
IP address blocks: 193.150.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/IY2n_1dueNwjTrdMvwcwdsH368k.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/IY2n_1dueNwjTrdMvwcwdsH368k.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2n_1dueNwjTrdMvwcwdsH368k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 May 2024 12:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:28:62:22:30:0c:2e:60:6e:eb:dc:36:ed:ba:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218da7ff576e78dc234eb74cbf073076c1f7ebc9
Validity
Not Before: Jan 2 06:31:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcf9f193d9a067d31b778900ade9468f5f272607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:e6:1d:2c:3e:be:90:b0:b0:45:cf:8d:93:
96:ed:03:eb:75:3a:c8:e9:1d:b9:a4:6f:6d:18:11:
e0:20:2b:21:16:90:ca:5d:a7:1b:b9:e3:f6:c2:92:
d4:ff:f7:2e:e0:76:1e:7e:15:58:b3:d8:96:8a:73:
b3:bb:37:e4:44:a4:78:79:fb:bf:41:5e:aa:46:af:
2f:e0:fc:69:f1:75:35:39:a5:82:53:23:e5:ba:e6:
e8:1d:35:e1:af:8d:3b:03:ac:ea:89:f9:7f:85:a4:
dc:14:2e:37:b1:8e:bc:df:f8:b2:a0:0e:44:02:f2:
2a:5d:22:85:b0:dd:86:58:84:0a:41:fb:1f:3c:24:
20:74:d4:79:67:5f:e1:91:6b:10:c9:75:2e:96:93:
9e:6b:8e:01:37:7a:40:d5:8d:40:cc:ce:44:4d:57:
4e:3d:7d:90:66:e0:cb:81:24:94:ea:8f:cf:39:34:
db:ab:a9:e1:07:0f:6c:81:c9:aa:69:cb:97:f7:b2:
63:bd:03:34:fd:43:9f:66:be:cf:6f:89:07:39:d1:
c6:ef:1a:65:67:93:18:20:5c:48:90:32:ae:fd:67:
eb:92:05:f4:93:79:5f:62:3d:8a:a7:ba:b8:46:d3:
40:71:65:36:57:5f:cd:f7:89:b0:dd:71:7b:8d:45:
8c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F9:F1:93:D9:A0:67:D3:1B:77:89:00:AD:E9:46:8F:5F:27:26:07
X509v3 Authority Key Identifier:
keyid:21:8D:A7:FF:57:6E:78:DC:23:4E:B7:4C:BF:07:30:76:C1:F7:EB:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2n_1dueNwjTrdMvwcwdsH368k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/_Pnxk9mgZ9Mbd4kArelGj18nJgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/IY2n_1dueNwjTrdMvwcwdsH368k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.41.0/24
Signature Algorithm: sha256WithRSAEncryption
16:dc:bb:4e:33:df:dc:7d:46:12:19:b9:99:9e:da:f7:54:c4:
8a:5e:74:18:f4:f9:5e:46:da:ef:7a:7d:b5:ac:79:a8:b3:ba:
43:54:87:68:dc:2c:35:90:e6:9d:8b:b5:2c:00:65:28:6d:9b:
17:5e:1d:26:8b:e3:50:e7:8d:e5:29:9d:0a:75:17:72:62:d4:
69:89:65:ce:b4:06:d4:1a:be:f5:e2:7d:5a:a8:4c:99:03:46:
d9:4a:8c:47:9a:4a:1e:aa:b9:86:64:1f:07:80:55:b6:08:4f:
d4:71:48:fd:f0:68:19:b9:88:89:0c:19:ca:b3:d9:72:e1:5c:
89:c9:d3:84:53:4e:47:18:07:dd:92:1b:17:f9:22:60:b0:ff:
d1:e6:10:b3:f2:48:25:01:0b:7f:2b:e9:fa:da:86:1f:29:0a:
60:c5:68:0b:e2:4e:4e:fe:dc:af:e8:b2:04:8c:dd:c1:f7:a0:
85:8a:7e:bd:cf:8a:c9:80:9e:67:11:5b:9f:e3:ba:db:89:fd:
c8:74:5b:91:b1:73:a1:ba:59:8f:dd:ff:c3:88:d1:4e:14:3b:
ff:6d:72:d6:96:b4:e0:04:91:72:cd:7c:92:54:14:45:8e:50:
9a:51:0c:6e:a5:1e:ea:ba:3c:0f:44:63:3e:94:56:04:4d:65:
0b:69:11:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 16:45:55 2024 by rpki-client on console-fra.rpki-client.org