Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/owTTEtNVVTYbJHZt-57UE6d_Rl0.roa
File: owTTEtNVVTYbJHZt-57UE6d_Rl0.roa (raw, json)
Hash identifier: dEOeseOroyWS7bOTRREwKRJOOD6bZndfX0XMiwwWBRY=
Subject key identifier: A3:04:D3:12:D3:55:55:36:1B:24:76:6D:FB:9E:D4:13:A7:7F:46:5D
Certificate issuer: /CN=23ba1ec4f035a72dfa39e930ad8ec54368eb7af4
Certificate serial: 018CC5DC83F483562F24E0D30531F6E0B78E
Authority key identifier: 23:BA:1E:C4:F0:35:A7:2D:FA:39:E9:30:AD:8E:C5:43:68:EB:7A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7oexPA1py36OekwrY7FQ2jrevQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/owTTEtNVVTYbJHZt-57UE6d_Rl0.roa
Signing time: Mon 01 Jan 2024 16:30:12 +0000
ROA not before: Mon 01 Jan 2024 16:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29576
IP address blocks: 194.146.132.0/22 maxlen: 22
194.146.133.0/24 maxlen: 24
194.146.135.0/24 maxlen: 24
93.157.24.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/I7oexPA1py36OekwrY7FQ2jrevQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/I7oexPA1py36OekwrY7FQ2jrevQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7oexPA1py36OekwrY7FQ2jrevQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:83:f4:83:56:2f:24:e0:d3:05:31:f6:e0:b7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ba1ec4f035a72dfa39e930ad8ec54368eb7af4
Validity
Not Before: Jan 1 16:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a304d312d35555361b24766dfb9ed413a77f465d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f5:3d:f2:3b:d6:0c:d0:3f:d4:17:e2:c4:18:
da:ca:26:91:b9:43:d3:58:de:bb:4d:3d:72:93:ee:
27:0b:e5:e1:5f:8d:9a:56:da:0d:a6:ac:89:5b:6a:
fb:a8:e0:95:f0:f7:9d:1e:5b:da:03:6c:69:bd:44:
37:ac:9e:bf:c6:94:6c:ef:a3:fe:c7:ff:d6:a9:d9:
c7:54:36:83:1e:ba:23:f5:fc:50:a6:33:94:4a:58:
7d:31:1e:1e:d4:74:a9:1c:75:4d:b5:a3:4e:3e:ba:
e1:1b:4c:9d:f8:3f:48:b5:b8:2e:fb:df:6c:58:7d:
27:f8:da:b1:c6:f7:1e:09:c5:59:ba:99:4f:74:d1:
87:6b:5f:a0:9a:8d:da:ab:d9:32:08:87:a8:42:64:
b7:8f:dd:4c:f3:f3:f5:13:78:da:1e:13:30:aa:41:
f8:e1:72:17:1f:74:ec:b6:a0:f8:d3:dc:42:1f:f2:
22:89:f2:ed:dd:5f:2a:ec:3a:93:71:90:fd:4e:49:
ae:15:2e:a0:27:41:67:f3:a0:02:7a:e7:69:16:9c:
d2:0d:69:2e:17:57:f7:90:eb:0a:e9:e1:95:be:c2:
1c:bd:ed:80:19:3a:a0:36:96:08:14:2f:91:5e:74:
e8:9f:2f:87:b0:3b:e8:07:ea:13:f4:08:ed:45:16:
2e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:04:D3:12:D3:55:55:36:1B:24:76:6D:FB:9E:D4:13:A7:7F:46:5D
X509v3 Authority Key Identifier:
keyid:23:BA:1E:C4:F0:35:A7:2D:FA:39:E9:30:AD:8E:C5:43:68:EB:7A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7oexPA1py36OekwrY7FQ2jrevQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/owTTEtNVVTYbJHZt-57UE6d_Rl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/60ed2d-16d5-4d0c-a947-bde6448b786c/1/I7oexPA1py36OekwrY7FQ2jrevQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.24.0/21
194.146.132.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:57:67:e0:5e:c4:b7:92:6d:ae:42:cf:2a:fa:7d:a7:b8:a4:
61:0f:d6:06:17:0d:1f:f9:53:68:cf:e0:8f:93:80:25:14:85:
16:c4:27:f9:7f:3b:f9:18:23:10:aa:b2:25:67:2a:95:86:9c:
f2:9b:3b:e2:60:a4:ea:d4:9b:98:46:cd:31:ba:03:84:24:41:
df:4a:4e:50:64:12:b6:b3:f5:05:4e:36:e7:57:03:1a:93:19:
16:c4:44:4c:89:0c:17:24:98:57:12:2f:ac:2a:91:6a:e9:86:
61:03:52:ee:10:0b:39:29:57:7c:c7:0b:70:f7:a6:08:fe:ff:
28:53:ee:0f:da:45:af:2a:49:2a:ee:dd:0f:34:f7:0b:41:c9:
4e:bf:55:74:ab:a1:70:4a:f6:ec:2e:e5:7b:38:fe:7d:b5:ef:
05:3c:bb:07:c1:51:bd:4f:db:bb:55:11:06:a8:39:f6:e4:7d:
06:00:dd:3f:d6:e7:9e:2a:1c:86:24:75:39:99:97:e2:ca:4f:
a3:7a:4a:a6:e6:f9:25:85:18:23:34:fe:39:5b:57:75:82:a8:
cd:51:e5:11:f2:35:12:f8:1f:91:ec:c6:f8:9b:17:45:36:d5:
8b:57:50:56:65:4c:26:3e:a6:4a:4b:3d:d0:0b:82:87:da:f8:
f3:ca:06:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:23:03 2024 by rpki-client on console-ams.rpki-client.org