Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/bR9MTJ-kNJya3TDHolIBNP-uSa0.roa
File: bR9MTJ-kNJya3TDHolIBNP-uSa0.roa (raw, json)
Hash identifier: pJr4THI1JfJrxRz9FZDSae2O+1ohnaUOZrhStzgj9ZU=
Subject key identifier: 6D:1F:4C:4C:9F:A4:34:9C:9A:DD:30:C7:A2:52:01:34:FF:AE:49:AD
Certificate issuer: /CN=1c04848bfef724e26abed3c65e4e8f9508fb1796
Certificate serial: 018CC26D608BF1E8A9359D22AAFD151D694B
Authority key identifier: 1C:04:84:8B:FE:F7:24:E2:6A:BE:D3:C6:5E:4E:8F:95:08:FB:17:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/bR9MTJ-kNJya3TDHolIBNP-uSa0.roa
Signing time: Mon 01 Jan 2024 00:29:57 +0000
ROA not before: Mon 01 Jan 2024 00:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399587
IP address blocks: 193.135.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:60:8b:f1:e8:a9:35:9d:22:aa:fd:15:1d:69:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c04848bfef724e26abed3c65e4e8f9508fb1796
Validity
Not Before: Jan 1 00:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d1f4c4c9fa4349c9add30c7a2520134ffae49ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:54:c4:2b:84:3b:51:3e:6b:f3:69:3c:a2:1a:
3d:7d:0e:d1:35:f9:57:ba:d6:21:40:bf:09:b8:73:
f6:7f:7b:59:6e:a8:f8:c5:b6:24:c8:b4:88:d9:1c:
91:9f:45:da:44:3f:31:d0:9a:5e:5f:0d:91:7c:f1:
6c:2a:6f:1f:91:32:91:94:98:87:1e:73:f3:6d:b3:
de:02:43:a8:80:54:9c:7e:01:2f:7b:1a:32:e9:bf:
c4:a8:da:cb:78:f3:6d:07:85:8d:2c:08:75:83:cd:
66:fd:c7:f6:e1:6e:0f:c9:b8:6d:b9:c7:f1:6e:92:
0f:ea:c2:51:31:dc:2c:b1:38:ee:c2:f9:98:f6:43:
93:cb:ee:c3:e7:c5:a7:d2:1b:80:75:3a:04:4d:52:
d2:2e:79:c1:7d:da:1d:a6:39:bc:5b:41:b0:7e:59:
a7:61:eb:0d:95:a1:b4:12:fe:a0:cf:77:26:fe:4d:
5b:ed:23:05:0e:e3:52:e6:63:80:2c:ee:fb:6a:3e:
2d:99:9a:c6:d8:4f:6a:4a:52:8a:c3:b0:db:7a:5f:
b7:4c:81:6c:cd:0e:6e:84:2c:34:53:9b:6f:4f:11:
a0:46:89:79:a2:af:a6:74:aa:44:b2:be:dc:53:c3:
25:6f:2f:8d:ba:52:31:e9:21:e3:68:80:4a:70:89:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1F:4C:4C:9F:A4:34:9C:9A:DD:30:C7:A2:52:01:34:FF:AE:49:AD
X509v3 Authority Key Identifier:
keyid:1C:04:84:8B:FE:F7:24:E2:6A:BE:D3:C6:5E:4E:8F:95:08:FB:17:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/bR9MTJ-kNJya3TDHolIBNP-uSa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
13:eb:2b:e3:11:79:24:48:a6:0d:87:fc:23:a0:90:5a:b7:67:
f2:46:3d:08:c4:7a:63:91:ca:8d:8e:fe:0a:67:28:d7:27:35:
67:37:5e:ea:35:d7:8f:f5:c1:64:9a:90:26:f2:7e:97:bf:61:
2e:96:ec:e0:8b:a9:45:92:e4:80:e4:91:cc:d6:c6:53:ec:6a:
d6:68:7f:f7:29:35:e6:0d:53:54:53:53:50:b2:16:45:a8:40:
92:91:d7:bc:4f:e3:7c:49:4f:28:77:0f:ab:06:8e:1e:ad:2b:
07:bf:68:8a:00:a0:d6:59:72:73:21:96:92:11:4a:48:91:60:
9d:4f:ea:03:eb:43:fb:f3:86:1a:6a:fc:8d:83:01:f1:96:ba:
45:d5:95:88:a1:29:46:20:a5:ce:93:64:4f:fa:74:7d:0f:b1:
64:a3:0c:d8:6c:88:57:58:9b:4d:2a:6d:50:14:b0:87:a4:8a:
a7:27:4e:91:9e:d1:2d:3b:d9:a1:c6:32:f0:30:f5:31:1d:96:
db:55:cc:19:2f:3e:cd:54:9a:b5:00:6c:79:21:5c:54:56:c5:
22:d3:20:9c:bc:1c:73:e8:75:02:2c:ea:f6:bb:32:b0:11:82:
93:97:3b:7f:d6:82:ca:26:5c:7e:03:c6:a8:a4:9b:ee:dd:0b:
57:01:c3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:11:09 2024 by rpki-client on console-ams.rpki-client.org