Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/SbzNyU3-CdEINEHYMpOhtdOfAHE.roa
File: SbzNyU3-CdEINEHYMpOhtdOfAHE.roa (raw, json)
Hash identifier: x3/f9JF3FxoNtoGRuF3yuPttjHs99LprP1vpz8Wg8zs=
Subject key identifier: 49:BC:CD:C9:4D:FE:09:D1:08:34:41:D8:32:93:A1:B5:D3:9F:00:71
Certificate issuer: /CN=f1a06c6c108e9419b2cdb21d48b49a6bbd6c16df
Certificate serial: 018CC50131FBF59966C76E815B17313BB0A4
Authority key identifier: F1:A0:6C:6C:10:8E:94:19:B2:CD:B2:1D:48:B4:9A:6B:BD:6C:16:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8aBsbBCOlBmyzbIdSLSaa71sFt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/SbzNyU3-CdEINEHYMpOhtdOfAHE.roa
Signing time: Mon 01 Jan 2024 12:30:39 +0000
ROA not before: Mon 01 Jan 2024 12:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20570
IP address blocks: 194.127.208.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/8aBsbBCOlBmyzbIdSLSaa71sFt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/8aBsbBCOlBmyzbIdSLSaa71sFt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8aBsbBCOlBmyzbIdSLSaa71sFt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:31:fb:f5:99:66:c7:6e:81:5b:17:31:3b:b0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1a06c6c108e9419b2cdb21d48b49a6bbd6c16df
Validity
Not Before: Jan 1 12:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49bccdc94dfe09d1083441d83293a1b5d39f0071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b6:e9:3e:df:dd:f4:90:83:b1:33:db:9f:27:
c8:25:69:33:47:62:3d:8c:e7:a2:12:47:d9:50:f0:
16:b5:01:d6:3b:a4:dc:76:f8:0d:65:67:80:35:d2:
b7:4b:ff:65:cb:f9:73:60:45:42:d0:fa:b1:d5:13:
70:dd:ea:95:cc:92:87:57:14:33:aa:58:9d:40:67:
09:39:2e:8f:59:f9:71:4a:96:66:81:16:98:54:bd:
3d:9c:16:bc:88:0e:f8:57:d0:34:d2:4a:c5:0f:ee:
89:c7:d7:35:1b:0e:8f:ee:fa:da:98:2b:4d:cc:be:
5a:54:39:9c:ab:bb:e6:05:94:4f:80:e8:f9:12:7e:
fa:0e:15:5b:47:97:37:61:73:0c:ea:e0:c2:75:bc:
68:90:31:55:76:ae:1c:ea:f7:98:c1:1b:03:25:d1:
5b:94:6a:7c:dc:2e:a3:d7:b7:cc:d8:dd:a0:a1:42:
84:ce:14:7e:80:58:35:85:75:5e:cd:ec:35:b9:17:
1b:99:bd:fb:69:d1:66:95:70:57:cc:75:54:39:bf:
1e:22:33:38:49:8d:1d:fa:14:a5:aa:73:af:cb:4a:
c5:29:1c:97:38:2c:4b:fc:25:c4:70:e5:5d:a2:f7:
e2:f3:ee:d7:84:89:cd:1f:7b:26:5c:51:10:26:70:
ca:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BC:CD:C9:4D:FE:09:D1:08:34:41:D8:32:93:A1:B5:D3:9F:00:71
X509v3 Authority Key Identifier:
keyid:F1:A0:6C:6C:10:8E:94:19:B2:CD:B2:1D:48:B4:9A:6B:BD:6C:16:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8aBsbBCOlBmyzbIdSLSaa71sFt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/SbzNyU3-CdEINEHYMpOhtdOfAHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/def647-9186-4729-bb99-142ebe869316/1/8aBsbBCOlBmyzbIdSLSaa71sFt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.208.0/22
Signature Algorithm: sha256WithRSAEncryption
42:0c:f5:4e:2c:08:3f:0b:97:1a:b7:a1:e6:22:56:e1:18:6b:
72:83:d0:b1:db:a5:ce:87:13:c3:02:ec:df:e2:b7:dc:00:08:
18:26:f3:1a:90:24:a5:29:58:96:30:23:38:85:04:14:fe:88:
24:7c:08:f4:67:eb:e3:9f:2b:5c:98:7e:32:a9:9f:d2:e8:63:
ed:1e:8f:89:69:29:b6:83:51:82:31:9b:4d:34:a2:62:7d:4b:
d6:a5:bd:c2:d9:31:e7:93:12:c7:d7:ae:97:c4:de:0e:85:9b:
77:f3:d5:c8:15:9f:57:38:56:1e:5f:88:82:56:f0:3e:76:f2:
8c:c3:69:bd:6b:8a:10:c4:d7:bd:d5:22:fc:5a:22:ae:17:a7:
b3:a9:6c:28:13:35:0b:a4:57:02:d8:b8:1d:f4:16:21:49:d6:
02:ff:8b:6c:8e:05:a6:b6:58:a2:1f:a9:2b:46:7c:e4:5d:98:
ab:03:a1:0a:d9:20:1b:e7:d7:7c:ed:ac:c9:39:d6:55:a5:52:
b6:fc:06:dc:ea:2b:0d:ac:8f:aa:2b:89:76:1e:57:76:6f:76:
28:83:13:22:6f:b1:88:c0:07:50:0e:23:9f:f3:b9:df:84:8a:
82:1c:38:44:b7:ee:59:89:06:52:75:80:a2:b4:ec:98:3b:38:
fb:ed:68:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 08:32:08 2024 by rpki-client on console-fra.rpki-client.org