Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/eVf8mZnmSuB7NHPJKOapzHFj1zI.roa
File: eVf8mZnmSuB7NHPJKOapzHFj1zI.roa (raw, json)
Hash identifier: bAekohET7+9R0g22DJ+bZhkS0bWeTywWd+Y/1ZC9vbo=
Subject key identifier: 79:57:FC:99:99:E6:4A:E0:7B:34:73:C9:28:E6:A9:CC:71:63:D7:32
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018CC424F4E40C61A89F999E89C2AD2ADA0B
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/eVf8mZnmSuB7NHPJKOapzHFj1zI.roa
Signing time: Mon 01 Jan 2024 08:30:05 +0000
ROA not before: Mon 01 Jan 2024 08:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61084
IP address blocks: 93.190.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:f4:e4:0c:61:a8:9f:99:9e:89:c2:ad:2a:da:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 08:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7957fc9999e64ae07b3473c928e6a9cc7163d732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:f4:29:a9:4e:bc:ea:4b:a2:0d:17:8a:01:
12:16:ba:b6:47:3e:79:d5:08:70:2c:a6:c7:32:ec:
64:a9:a3:f4:36:49:a0:df:b6:30:94:89:d7:f4:cd:
3f:05:ab:24:c9:ee:1d:ae:72:59:d7:04:1b:64:d9:
e0:1a:1a:8d:8b:06:51:5f:45:84:f4:5d:7d:d3:9b:
c1:c1:5a:aa:0b:b9:f5:9b:4b:f8:44:26:57:5c:e9:
75:d6:a1:9f:1f:2b:fe:e4:c8:ac:6e:ae:d4:61:93:
cc:ae:be:f5:71:fe:28:77:c4:3a:42:c0:a1:e4:47:
23:80:b4:36:e6:43:09:ad:67:09:e7:3d:83:cf:ce:
7f:c1:86:ea:8c:db:29:57:66:14:31:21:db:61:c4:
1b:9d:5d:0a:f8:2d:56:7f:3e:ea:2c:5e:74:05:11:
ad:cb:a3:ad:c5:d7:b6:a3:c9:f3:9e:3b:06:fa:21:
e9:16:6c:8c:59:18:32:79:09:db:66:62:94:e1:45:
91:90:6e:35:c9:50:55:5f:07:09:a5:21:e8:c6:c0:
85:f7:de:fc:59:69:8e:e8:7c:2d:21:d8:36:8f:98:
22:ed:7f:d1:3e:70:8a:16:b9:12:89:90:e7:fb:c4:
c7:5c:68:8f:39:ac:7d:7c:21:fb:4f:70:fe:da:7e:
55:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:57:FC:99:99:E6:4A:E0:7B:34:73:C9:28:E6:A9:CC:71:63:D7:32
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/eVf8mZnmSuB7NHPJKOapzHFj1zI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.13.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e5:f3:27:c1:34:24:a3:b0:51:96:46:28:3c:03:c3:da:0d:
78:5c:23:5b:71:e2:8b:ac:79:b0:29:88:5e:1a:c1:ca:59:79:
c3:81:6f:6b:78:1b:4c:0c:e4:7d:9e:5f:28:fd:04:2f:27:43:
10:6d:27:2b:d0:1b:2e:31:66:7d:f3:24:9b:bf:52:c9:49:48:
90:fe:ce:28:f1:ef:60:fd:12:ec:c9:59:9b:83:90:0c:63:55:
77:23:f6:17:39:3d:97:7b:10:54:ee:7b:23:d2:e8:9d:49:bb:
32:04:3c:8a:50:b4:ec:3d:c6:e0:3d:5d:b4:7f:a9:b9:24:b5:
31:ba:dd:41:74:89:4f:03:df:12:96:9d:d3:ea:95:c6:99:04:
2a:a5:84:f2:c8:52:fa:1d:43:f5:44:40:77:7d:d1:d1:0c:8a:
61:d7:0f:be:e0:3c:ad:c8:fa:c0:c0:48:1f:77:68:24:6d:70:
c2:27:7c:55:c3:da:b3:db:ad:ba:39:06:76:de:32:f7:6f:25:
24:90:9b:84:6e:67:41:a9:4c:1f:31:c4:37:10:b4:9b:14:52:
90:2d:1a:68:4e:9b:09:01:09:f0:11:2a:84:4d:db:be:ed:bd:
1a:84:99:23:a8:8b:0f:28:d1:48:b8:da:02:68:00:6c:0e:ac:
6d:85:64:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:26:18 2024 by rpki-client on console-fra.rpki-client.org