Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/dSCYJ-g30Q1cGd103Py-oINDfxA.roa
File: dSCYJ-g30Q1cGd103Py-oINDfxA.roa (raw, json)
Hash identifier: cXfuUGYb2G/g/WcHWYeAYm9sB8kBv6sVwOhOYtZPMNk=
Subject key identifier: 75:20:98:27:E8:37:D1:0D:5C:19:DD:74:DC:FC:BE:A0:83:43:7F:10
Certificate issuer: /CN=51e39a677693bafb7924d6ea846978cf4c68b8c2
Certificate serial: 018CC64B67A9EAE9E9D94321F723B9AB9A11
Authority key identifier: 51:E3:9A:67:76:93:BA:FB:79:24:D6:EA:84:69:78:CF:4C:68:B8:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeOaZ3aTuvt5JNbqhGl4z0xouMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/dSCYJ-g30Q1cGd103Py-oINDfxA.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15600
IP address blocks: 193.8.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/UeOaZ3aTuvt5JNbqhGl4z0xouMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/UeOaZ3aTuvt5JNbqhGl4z0xouMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UeOaZ3aTuvt5JNbqhGl4z0xouMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:67:a9:ea:e9:e9:d9:43:21:f7:23:b9:ab:9a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e39a677693bafb7924d6ea846978cf4c68b8c2
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75209827e837d10d5c19dd74dcfcbea083437f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:31:2f:3d:9c:66:bc:c4:e1:e6:1b:d2:2f:49:
0e:b5:70:6a:98:42:27:45:bd:65:db:be:53:4d:5e:
2c:29:ad:43:81:fe:0b:b3:4a:55:1c:17:9e:21:ec:
94:2c:0c:61:33:08:d0:ff:26:29:d9:08:29:29:a6:
4b:ca:c7:8d:8f:cb:fb:b5:79:a0:7f:ec:1c:40:87:
7b:15:86:ad:a3:60:6b:6e:9c:8e:4e:8c:f1:9f:85:
d9:e1:d9:f1:ab:57:37:6b:8b:70:01:2e:bb:f1:68:
0a:91:05:e4:55:34:63:11:66:50:36:1f:a1:6c:dc:
72:a5:49:55:d0:55:10:24:f3:08:46:75:2f:97:ea:
e9:a4:ff:57:0f:47:11:78:ff:c3:18:81:b8:42:68:
54:75:54:08:83:52:b6:1e:9b:28:ef:88:00:51:4c:
d2:ce:8e:3d:cb:d2:f2:52:4c:b2:23:df:35:bc:f4:
24:f0:21:ac:a2:0f:9b:74:fa:45:79:ec:1f:0d:98:
7b:47:c3:11:3a:4b:53:b0:a3:87:4c:7b:fa:43:e6:
4a:a9:bb:c7:01:1c:7b:2b:aa:54:90:a3:4f:09:77:
5d:1d:0e:20:b7:3f:35:65:62:a1:a3:6f:26:69:a0:
12:73:2f:80:41:5e:53:86:9a:b0:e1:f6:95:63:ef:
4c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:20:98:27:E8:37:D1:0D:5C:19:DD:74:DC:FC:BE:A0:83:43:7F:10
X509v3 Authority Key Identifier:
keyid:51:E3:9A:67:76:93:BA:FB:79:24:D6:EA:84:69:78:CF:4C:68:B8:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeOaZ3aTuvt5JNbqhGl4z0xouMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/dSCYJ-g30Q1cGd103Py-oINDfxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/UeOaZ3aTuvt5JNbqhGl4z0xouMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.166.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:e6:59:6a:ae:22:db:27:ae:37:6a:c9:21:05:22:0a:3b:b1:
5d:4c:64:f3:9e:c8:88:d4:a2:f3:dd:4a:66:40:9c:ef:dc:9f:
c3:c4:aa:6d:2d:92:4b:c3:c4:d5:5d:17:46:e4:24:81:e8:cf:
fe:4f:11:12:43:af:3c:56:56:5e:78:dc:76:f7:4c:b1:7d:be:
75:73:f1:d2:2f:f7:aa:8b:a8:89:be:ea:03:fe:20:b6:4f:b8:
68:f5:bf:f4:66:6a:3f:81:9e:85:64:7a:ab:d1:48:d9:2a:c3:
ea:00:b8:51:80:7d:87:11:f6:b8:05:e5:7a:8c:26:33:31:9a:
39:42:20:8a:9b:d1:c6:33:f6:f4:78:b4:2d:38:fa:3a:9c:d3:
0c:33:fa:0a:6d:6a:bf:66:c7:a0:50:b6:ef:32:0d:12:c2:fd:
33:24:10:10:19:97:5f:62:6d:0a:31:ca:dc:25:37:65:8e:2a:
0c:37:f9:75:8e:e5:62:00:9a:b1:a9:ae:e7:98:a9:43:2f:9d:
cf:dc:d0:6e:d0:ea:e5:87:c3:c4:8b:a0:74:de:7d:51:1c:5c:
32:3f:44:de:fe:a3:d7:51:38:e3:dd:f7:82:bf:6b:05:27:c7:
3e:83:7f:15:0a:6b:b3:4d:3f:2c:06:05:af:4d:71:0e:34:bf:
6a:80:5a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:41:32 2024 by rpki-client on console-ams.rpki-client.org