Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/DkMjzsgbGc9TBwgywmte00zA4Q8.roa
File: DkMjzsgbGc9TBwgywmte00zA4Q8.roa (raw, json)
Hash identifier: fj07cKqoA89KGvgOQ1DSlJnc63FRaJMdXaKLCd8KRLQ=
Subject key identifier: 0E:43:23:CE:C8:1B:19:CF:53:07:08:32:C2:6B:5E:D3:4C:C0:E1:0F
Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Certificate serial: 018CC2DAF6914608A92783C88E9D7F47E189
Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/DkMjzsgbGc9TBwgywmte00zA4Q8.roa
Signing time: Mon 01 Jan 2024 02:29:38 +0000
ROA not before: Mon 01 Jan 2024 02:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47692
IP address blocks: 185.26.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 07:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f6:91:46:08:a9:27:83:c8:8e:9d:7f:47:e1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Validity
Not Before: Jan 1 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e4323cec81b19cf53070832c26b5ed34cc0e10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:84:c1:98:27:1f:ea:f6:0a:c8:51:1f:30:
6b:6d:d0:24:be:93:c4:20:9a:f5:a0:0a:63:26:56:
d7:8c:74:c1:ce:fd:8f:55:3d:ff:df:3a:ac:03:10:
90:31:1f:66:e0:11:33:9d:75:d6:3e:b2:e7:24:aa:
e3:a6:8e:31:fa:43:5e:03:84:3a:04:50:97:be:44:
a3:cf:64:ca:25:36:eb:f4:cf:89:32:5c:52:ee:e3:
74:e6:5c:74:64:8d:42:ad:fa:29:39:ce:56:29:3d:
38:f2:8d:fd:8e:c2:75:4d:53:ac:30:e9:3b:d7:b1:
ef:3f:67:2e:9f:64:df:e3:a8:98:f2:5e:8f:72:c0:
5d:df:4f:76:43:a4:1e:6b:02:d8:94:44:a8:8f:1b:
40:1b:d2:97:f2:6d:43:68:4d:04:da:9e:a2:16:f3:
c1:41:64:c3:53:28:b2:35:0d:79:25:53:8b:c1:5c:
18:fb:c2:13:af:5e:2c:25:0e:e1:2c:1a:4e:0d:aa:
fe:c4:2f:bd:15:14:4f:3b:80:bb:63:ee:e8:55:83:
9e:d7:5c:21:b9:b8:34:64:13:50:27:0c:b7:78:f5:
4e:8a:dc:64:1e:55:35:64:a3:c7:b8:4a:79:5d:4c:
a9:22:63:14:28:a0:16:8e:bb:13:63:25:cf:b5:fc:
ad:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:43:23:CE:C8:1B:19:CF:53:07:08:32:C2:6B:5E:D3:4C:C0:E1:0F
X509v3 Authority Key Identifier:
keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/DkMjzsgbGc9TBwgywmte00zA4Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.191.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e5:97:fd:1c:f8:fc:f5:a2:03:43:86:7a:bd:6b:cb:4e:3e:
94:5e:65:e3:26:d8:a8:a0:24:aa:61:c7:13:cd:3d:27:0c:5b:
52:9c:44:7e:b1:17:74:cd:38:33:18:de:25:5c:98:59:df:07:
d4:7e:23:46:da:1a:3c:0a:06:14:db:a0:79:be:97:7f:c9:5e:
19:41:62:ce:b8:fc:43:74:5a:df:02:e2:1e:81:7f:a8:18:b7:
36:64:7a:3a:e3:f3:fd:74:93:d2:3a:84:2d:ae:16:66:15:46:
56:5f:06:2e:d6:1a:0e:d4:ca:83:04:e1:e4:4f:fb:f4:d2:03:
c9:6b:25:75:14:34:61:3e:20:8d:43:85:7b:3e:50:a0:af:5a:
b3:9c:0f:3f:d8:67:0f:ae:95:e5:b3:22:c8:0c:ba:8d:cf:aa:
c5:32:bd:a5:d5:6a:a8:7a:a8:f3:be:7a:d0:74:f6:cb:3b:72:
d5:23:50:11:c4:ba:e9:2f:7b:ca:00:01:60:6a:6f:c8:95:7d:
eb:ec:f3:8a:2e:20:93:62:28:48:85:54:60:93:8d:42:60:58:
d8:5b:20:f2:f6:23:ea:8d:8b:a9:ea:19:ad:2d:24:ef:99:5f:
bc:c0:5a:58:ed:26:38:d1:a5:de:34:98:c2:52:f0:75:04:f3:
61:01:d3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 11:12:23 2024 by rpki-client on console-fra.rpki-client.org