Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/SYyp1vjl1UswcMC-82zPJUhJgrI.roa
File: SYyp1vjl1UswcMC-82zPJUhJgrI.roa (raw, json)
Hash identifier: 170JhmyG6oOYBtfQQhNpu594gEQZ9mAJ9lPD1R4IRMU=
Subject key identifier: 49:8C:A9:D6:F8:E5:D5:4B:30:70:C0:BE:F3:6C:CF:25:48:49:82:B2
Certificate issuer: /CN=9d9606edeef908959ce4336ab395ca9083316108
Certificate serial: 018CCA2BEB070D8D9C558177F12D320DDC52
Authority key identifier: 9D:96:06:ED:EE:F9:08:95:9C:E4:33:6A:B3:95:CA:90:83:31:61:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZYG7e75CJWc5DNqs5XKkIMxYQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/SYyp1vjl1UswcMC-82zPJUhJgrI.roa
Signing time: Tue 02 Jan 2024 12:35:24 +0000
ROA not before: Tue 02 Jan 2024 12:35:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60631
IP address blocks: 178.211.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/nZYG7e75CJWc5DNqs5XKkIMxYQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/nZYG7e75CJWc5DNqs5XKkIMxYQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZYG7e75CJWc5DNqs5XKkIMxYQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:eb:07:0d:8d:9c:55:81:77:f1:2d:32:0d:dc:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9606edeef908959ce4336ab395ca9083316108
Validity
Not Before: Jan 2 12:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=498ca9d6f8e5d54b3070c0bef36ccf25484982b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3f:eb:1f:6e:42:c6:10:f3:8f:cd:05:14:e5:
d4:c6:8c:0b:2f:1f:14:ca:4b:aa:1e:be:9c:0d:43:
c9:0e:0f:9b:81:5d:4d:0e:e0:aa:2a:e5:1c:2b:6f:
94:4a:13:17:0b:2f:54:a6:55:ac:be:ad:d0:f3:f9:
a9:4f:19:51:5a:e1:12:e2:e3:87:4d:d2:41:83:2a:
bd:18:4f:d5:23:92:3a:5a:a1:7d:de:14:ea:f1:45:
15:fb:ee:87:dc:33:5f:ea:e6:2b:36:e2:ba:49:3c:
b3:61:29:65:10:95:78:d9:ea:30:50:36:99:92:24:
b8:97:f0:9c:a9:46:f4:78:52:8e:14:85:12:66:17:
dd:75:51:69:a0:c3:65:93:5b:78:0a:1f:58:3d:34:
f8:16:af:25:f9:7e:99:bb:65:d0:16:d3:2c:bc:78:
da:11:9d:88:b4:b9:83:ec:0b:a3:4b:40:7f:b5:2d:
39:a4:bc:99:89:c7:fc:8a:2d:8f:a6:90:7f:1c:c8:
52:9e:21:a3:9d:9a:7f:a5:87:5c:c0:79:09:fa:ae:
5f:40:fa:45:ca:dd:bf:83:70:9f:fd:d9:8b:11:4d:
9e:57:07:04:86:81:7f:cd:d3:4e:b9:a4:87:11:3d:
54:f7:72:b2:cc:21:8f:9d:32:52:ce:0d:2e:64:97:
af:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8C:A9:D6:F8:E5:D5:4B:30:70:C0:BE:F3:6C:CF:25:48:49:82:B2
X509v3 Authority Key Identifier:
keyid:9D:96:06:ED:EE:F9:08:95:9C:E4:33:6A:B3:95:CA:90:83:31:61:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZYG7e75CJWc5DNqs5XKkIMxYQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/SYyp1vjl1UswcMC-82zPJUhJgrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/nZYG7e75CJWc5DNqs5XKkIMxYQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:4c:ed:4c:d5:4f:60:95:74:c7:95:8a:92:b2:f9:8c:aa:a7:
92:49:a1:07:49:27:f0:ef:70:50:83:57:d2:00:dd:76:e3:b9:
47:5e:ed:83:18:0b:aa:51:7d:3d:f7:20:69:21:b8:b2:ef:c7:
28:f2:1e:06:59:c5:7d:94:4f:d9:cd:64:60:91:f5:21:67:fd:
3a:d3:56:ef:bf:34:5d:1c:a0:8d:07:f7:24:14:20:d9:c9:cd:
9b:9f:77:30:6c:cc:72:06:2e:a7:5b:84:8b:82:93:fa:9c:88:
11:73:47:c7:4b:4c:0f:ae:4e:02:e1:56:9c:53:1a:7e:bd:89:
3e:22:ad:8a:69:ca:ce:0c:0f:29:41:9f:f7:e0:34:61:d9:7c:
be:04:71:f1:28:65:ca:bb:95:63:e5:53:97:d3:6c:fe:d8:89:
c7:13:97:e0:7a:dd:c9:70:20:5e:50:1d:09:4d:e7:b3:b3:25:
31:79:28:0c:94:ce:da:a1:61:e6:43:d0:d7:86:74:12:f6:08:
34:aa:24:47:18:6f:83:d0:ad:7e:35:7b:9e:48:fe:1a:9a:90:
96:5a:91:8b:f1:00:05:cf:8f:53:bb:19:8b:62:93:f7:1a:4b:
1e:27:51:d3:45:5c:ef:fa:34:fe:2e:2f:e7:2b:5f:de:97:76:
06:f5:22:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:07:49 2024 by rpki-client on console-fra.rpki-client.org