Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/g39Xu1-SJ0SS6cO_EoI5TLLkjFs.roa
File: g39Xu1-SJ0SS6cO_EoI5TLLkjFs.roa (raw, json)
Hash identifier: GVrX7ykJFSlps0yw3juykuGLW8tZaLSMKlHEFO7Ojtw=
Subject key identifier: 83:7F:57:BB:5F:92:27:44:92:E9:C3:BF:12:82:39:4C:B2:E4:8C:5B
Certificate issuer: /CN=5be39da3aaa52d130ff074fb049221966d2b57c6
Certificate serial: 018CC64A5CAD10EB2E338A84C7443C9C029E
Authority key identifier: 5B:E3:9D:A3:AA:A5:2D:13:0F:F0:74:FB:04:92:21:96:6D:2B:57:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/g39Xu1-SJ0SS6cO_EoI5TLLkjFs.roa
Signing time: Mon 01 Jan 2024 18:30:11 +0000
ROA not before: Mon 01 Jan 2024 18:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208240
IP address blocks: 193.176.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:5c:ad:10:eb:2e:33:8a:84:c7:44:3c:9c:02:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be39da3aaa52d130ff074fb049221966d2b57c6
Validity
Not Before: Jan 1 18:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=837f57bb5f92274492e9c3bf1282394cb2e48c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:92:72:5b:c7:3a:ab:09:25:6c:aa:97:01:9f:
0e:bb:6e:48:40:00:6e:f9:7b:3a:61:bf:14:b3:f1:
f8:6d:a9:23:b5:9d:d7:dc:54:d4:be:d5:39:37:99:
82:84:30:3a:97:5d:c4:c3:04:2d:36:08:2c:c1:bb:
ce:28:94:57:ca:c5:cf:4d:8b:37:a1:71:16:09:f2:
fe:14:b8:bd:28:6d:93:8c:97:e8:89:94:68:8c:2c:
e4:04:ff:72:b1:d4:91:3c:e7:fc:6c:aa:8d:0d:74:
5a:17:7a:19:5f:a4:74:93:b8:56:e3:02:34:6d:a2:
90:c3:74:58:fe:01:59:07:95:57:57:c3:9b:da:d4:
68:f5:d4:b4:0b:95:6c:0a:1a:62:15:6e:8c:3d:64:
67:8a:bf:8c:45:a1:88:c9:3f:1b:6e:8e:7b:10:b2:
f7:6e:33:e0:c6:ab:f7:aa:64:6f:87:44:7a:3c:c9:
a6:f0:50:be:ad:6c:be:99:c2:03:2f:3e:e0:7b:dc:
49:a8:78:8b:21:6b:c9:de:53:67:11:eb:1a:b5:df:
9a:37:a5:46:bf:96:0e:1b:fb:4d:2e:11:ef:f9:d4:
8a:56:48:a6:e9:ee:4f:93:97:bf:ea:9d:e1:0b:bd:
83:d1:7c:11:fd:15:6a:43:80:c1:9f:d8:ad:1b:98:
8d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7F:57:BB:5F:92:27:44:92:E9:C3:BF:12:82:39:4C:B2:E4:8C:5B
X509v3 Authority Key Identifier:
keyid:5B:E3:9D:A3:AA:A5:2D:13:0F:F0:74:FB:04:92:21:96:6D:2B:57:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/g39Xu1-SJ0SS6cO_EoI5TLLkjFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.221.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e8:73:5c:ed:f7:38:5d:44:50:b2:bf:94:b5:74:9c:7b:7d:
fe:c2:68:5f:81:4f:39:80:17:e5:f7:d2:84:eb:f8:4c:64:8f:
5a:db:9e:96:1b:83:43:7e:08:a8:2b:1c:62:fa:30:4a:62:47:
5b:f6:6b:9f:32:d3:59:9e:9d:8f:8f:11:c7:b7:aa:15:04:39:
53:94:28:57:ee:37:0d:e7:53:cd:8b:3f:10:e7:5f:6e:c5:7c:
49:66:8e:e5:7b:9d:cd:d9:20:aa:7e:c5:3a:ee:dd:01:73:41:
88:6f:1c:f7:d1:59:9d:26:61:8e:b9:22:a1:90:f6:a9:c9:c5:
75:fe:7a:a0:01:38:69:69:a6:47:f4:3f:6a:7c:de:b6:88:24:
17:96:c7:28:1c:e0:03:77:71:23:21:7e:61:d4:04:a4:c1:58:
69:71:ce:bb:52:93:e5:18:da:58:e1:25:1c:46:94:64:a3:57:
b5:a3:29:9c:0e:a2:1d:ab:ca:b6:6e:43:f8:c0:62:0d:e1:85:
2a:12:0b:fb:71:e4:1c:db:5b:3d:e8:74:8a:0f:8e:9b:e1:cf:
6e:54:c0:fa:9e:15:99:d6:82:5c:33:a0:e1:2b:b6:1f:c2:b5:
a4:ad:df:38:2c:e2:da:9b:db:b3:b5:30:ca:57:f0:4a:fe:f3:
02:12:98:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 18:20:13 2024 by rpki-client on console-ams.rpki-client.org