Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/8U0Vmb6IF1fOQ4g5rbbYkbDtXgk.roa
File: 8U0Vmb6IF1fOQ4g5rbbYkbDtXgk.roa (raw, json)
Hash identifier: sAzs7GeAWJrn4UVcVQq9zOyCZPrKZCTV6BLWkkuH0EA=
Subject key identifier: F1:4D:15:99:BE:88:17:57:CE:43:88:39:AD:B6:D8:91:B0:ED:5E:09
Certificate issuer: /CN=0ef47d753d25289fd98794974aa0536010567bd9
Certificate serial: 018CC8DF7C19E11E5DDFE049824BE23CEA6A
Authority key identifier: 0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/8U0Vmb6IF1fOQ4g5rbbYkbDtXgk.roa
Signing time: Tue 02 Jan 2024 06:32:18 +0000
ROA not before: Tue 02 Jan 2024 06:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 104.129.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7c:19:e1:1e:5d:df:e0:49:82:4b:e2:3c:ea:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef47d753d25289fd98794974aa0536010567bd9
Validity
Not Before: Jan 2 06:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f14d1599be881757ce438839adb6d891b0ed5e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:90:1c:bf:cb:43:6b:80:30:26:ba:6c:96:
bf:f6:3f:ae:92:c5:f4:64:b3:14:a3:b3:31:ca:5e:
64:b0:3e:34:9e:4a:91:f6:2a:a8:69:ed:ee:ce:fa:
d9:89:e4:7a:e2:41:99:d8:f9:3f:e7:50:05:6b:98:
c0:f8:1c:c0:9a:70:a9:a7:7e:90:8d:aa:d9:d7:bd:
10:e6:46:e6:01:02:8e:44:a5:e0:92:e6:26:79:85:
7b:79:94:2f:f8:32:c3:b9:e7:60:93:44:32:27:39:
15:6b:74:01:77:62:cb:4e:4f:6c:c6:e9:2f:76:b8:
a4:09:0b:64:b6:7b:e3:a3:55:36:d4:10:02:39:86:
e2:06:74:f0:95:f5:25:1a:4d:d7:01:d1:a9:6a:e9:
e3:5f:d5:b0:80:44:b7:49:07:0a:f9:b0:a5:0a:37:
b6:a8:cd:5d:dc:f4:ee:6a:ea:5e:f6:db:1c:81:7f:
ea:8b:94:e9:49:fb:7c:1f:72:2d:e0:df:9a:2e:a8:
14:36:16:6b:ba:54:cf:58:d2:fa:2d:d1:d6:12:3f:
39:ad:52:23:4b:b1:88:24:ce:f9:e9:d0:5d:fc:77:
a3:50:91:ec:62:64:6c:9c:b4:2a:6d:71:89:00:87:
bc:8a:3e:bd:fc:5b:c3:18:2b:c8:b1:a3:da:f1:15:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4D:15:99:BE:88:17:57:CE:43:88:39:AD:B6:D8:91:B0:ED:5E:09
X509v3 Authority Key Identifier:
keyid:0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/8U0Vmb6IF1fOQ4g5rbbYkbDtXgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.129.174.0/24
Signature Algorithm: sha256WithRSAEncryption
83:18:2a:1e:00:23:4f:95:ab:4e:76:bd:82:e1:dd:35:a7:80:
15:d7:dd:cb:2b:32:8e:8e:df:3b:ed:85:e0:e8:fd:23:b1:43:
87:1e:9c:5e:7d:54:c4:92:88:fd:fe:8d:6b:9d:3d:4d:a3:72:
71:55:73:f0:e5:45:86:17:31:a0:d0:eb:46:ea:cb:c8:22:bc:
ff:f9:a2:c5:cd:52:4d:f4:de:ef:72:d7:37:9c:d1:66:cf:8b:
c0:31:82:5d:d4:0c:c6:14:23:c9:e5:0f:ae:ce:c3:65:f3:0a:
97:88:7e:80:2e:45:23:77:f5:5a:6a:19:2c:d1:38:e9:0c:14:
08:df:0d:a2:29:3d:80:ad:78:c6:6a:b3:de:43:fa:1a:bb:5b:
e9:c2:36:b3:4c:e8:ce:c8:be:07:eb:83:83:c2:2d:ed:67:29:
17:46:a6:50:44:c5:05:17:b1:3f:80:7e:4e:56:be:36:00:9e:
3d:3e:6a:12:c9:5c:4e:78:aa:87:58:a6:e2:65:1e:08:fb:be:
2c:cc:91:13:1b:54:35:c4:34:dc:77:82:f4:d7:2a:f4:24:22:
14:d5:bf:2f:5d:4d:3c:e9:0d:ce:b4:9c:9e:eb:8e:0d:f6:51:
d1:ce:63:e1:66:9a:8f:ec:45:36:be:4a:2e:08:56:0e:be:06:
93:f7:d9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:16:45 2024 by rpki-client on console-fra.rpki-client.org