Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/AqsRllF6BfolPNfM6mzErEmlRQk.roa
File: AqsRllF6BfolPNfM6mzErEmlRQk.roa (raw, json)
Hash identifier: tqbvjvhSRkP/WnV7XLpjkJlf38EZFOWqAphMpzkJdOc=
Subject key identifier: 02:AB:11:96:51:7A:05:FA:25:3C:D7:CC:EA:6C:C4:AC:49:A5:45:09
Certificate issuer: /CN=1232303d1638e0735240491aaa9e42b1887adaca
Certificate serial: 018CC348DF044937A1FDFCBAE2841E84C3ED
Authority key identifier: 12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/AqsRllF6BfolPNfM6mzErEmlRQk.roa
Signing time: Mon 01 Jan 2024 04:29:41 +0000
ROA not before: Mon 01 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207951
IP address blocks: 185.7.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.mft
rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:df:04:49:37:a1:fd:fc:ba:e2:84:1e:84:c3:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1232303d1638e0735240491aaa9e42b1887adaca
Validity
Not Before: Jan 1 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02ab1196517a05fa253cd7ccea6cc4ac49a54509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d4:88:1b:5a:81:0f:48:38:a9:cf:e2:0f:f4:
48:29:31:82:6f:4a:cf:ca:16:eb:be:ef:2f:a4:78:
e1:a3:cb:d9:78:58:00:bd:c4:59:01:97:95:18:43:
4c:f7:65:9e:61:b0:b7:b5:c7:a7:71:74:c5:7a:09:
8c:ba:26:ec:1d:f2:71:33:b8:2c:e9:ea:69:aa:ad:
64:39:09:f3:43:7e:a1:1b:f6:ac:35:e9:28:6a:ea:
4f:4e:cf:b8:f3:d9:23:70:02:ae:a9:38:20:ef:fe:
87:79:90:a9:92:71:72:24:20:0b:0e:dc:44:e1:be:
4d:79:d5:0c:7c:f7:c1:1a:a1:79:92:0f:22:f1:69:
90:a6:1f:00:7e:6b:01:46:5e:66:8a:b4:e9:86:c2:
7b:01:70:4c:0e:77:cb:98:ce:3a:90:a5:3b:c8:0a:
12:7e:57:e8:76:30:fa:c8:6e:36:d8:7b:6c:27:60:
e7:85:16:7a:27:86:de:3a:3b:ca:2e:55:14:22:da:
9e:4a:3d:b6:be:3d:f1:b9:9c:d0:7d:37:bf:20:b3:
bd:cd:f9:38:5d:17:bb:c8:fa:27:72:f6:02:80:62:
cb:9d:9a:e5:91:3b:1f:b8:01:23:3c:bc:0d:a9:21:
a1:4f:18:7b:ec:64:eb:5d:e1:71:3d:aa:ad:dd:a1:
a4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AB:11:96:51:7A:05:FA:25:3C:D7:CC:EA:6C:C4:AC:49:A5:45:09
X509v3 Authority Key Identifier:
keyid:12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/AqsRllF6BfolPNfM6mzErEmlRQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.121.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:da:e7:9a:47:35:f6:83:32:f6:2c:4a:c8:a5:6c:51:f8:3f:
ae:09:88:e9:dc:f7:1b:54:5e:83:27:f4:ae:01:6f:d2:28:94:
db:df:9e:8a:ad:a5:d3:77:ea:8d:42:04:94:19:94:e3:42:06:
46:ef:fc:bf:0f:cd:f5:79:6a:bc:d8:9b:3a:93:b1:71:8e:5b:
83:88:98:d3:60:a3:7c:9a:5c:40:fe:81:2c:01:83:7f:a8:4a:
bb:50:63:de:82:75:38:28:38:d1:f3:de:f2:48:ad:cc:40:b7:
54:9a:40:36:82:fc:46:52:9d:6a:3d:74:f8:9c:18:24:3a:19:
17:24:9d:d2:de:b0:eb:f8:fa:83:84:a6:a4:23:d2:12:15:d3:
e8:65:0e:09:0a:05:a0:cd:c5:ee:5b:f2:89:fe:57:e7:1c:e7:
6b:b1:d6:e6:5b:82:7a:0f:22:1e:2e:1b:eb:e4:b5:d7:1a:d0:
bf:b7:b6:d6:2d:69:cf:fc:72:7f:22:12:40:b0:9d:e2:39:d3:
1b:b7:42:c2:d3:97:44:ee:7a:a4:c1:f6:96:0d:ee:7b:94:ea:
bb:36:f9:27:7d:79:52:7e:17:4d:31:00:ff:f6:04:10:39:af:
d0:67:0c:00:93:46:5f:02:3e:d7:f5:23:c6:3b:53:21:a5:e0:
4a:88:4a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 05:35:59 2024 by rpki-client on console-fra.rpki-client.org