Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/M6GtxjvyWIzcnUXc4JSIazo_sGY.roa
File: M6GtxjvyWIzcnUXc4JSIazo_sGY.roa (raw, json)
Hash identifier: 1iW9Y8yEu9PK9Ojnd+FUE3qiXwqFZOtSoayrnT16ibc=
Subject key identifier: 33:A1:AD:C6:3B:F2:58:8C:DC:9D:45:DC:E0:94:88:6B:3A:3F:B0:66
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 019146EF65647AA9D7991D6B52CB23B1936A
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/M6GtxjvyWIzcnUXc4JSIazo_sGY.roa
Signing time: Mon 12 Aug 2024 14:12:59 +0000
ROA not before: Mon 12 Aug 2024 14:12:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216445
IP address blocks: 95.130.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:ef:65:64:7a:a9:d7:99:1d:6b:52:cb:23:b1:93:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Aug 12 14:12:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33a1adc63bf2588cdc9d45dce094886b3a3fb066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:01:ef:39:0b:78:31:69:42:bb:71:8e:8e:6d:
dd:da:a4:35:86:66:37:2b:8f:26:11:fd:fa:81:30:
8d:36:d6:88:d7:3d:6d:df:52:42:81:2a:68:7c:27:
b7:37:4c:84:77:3f:94:d8:08:0e:f1:82:ca:aa:bc:
24:83:87:a1:2d:f4:19:f9:73:a9:bf:d2:9a:45:05:
a1:5c:4c:0d:9e:21:94:f7:74:c6:41:2e:8e:19:92:
12:41:c1:d6:68:92:22:67:37:c0:20:7b:30:d3:ad:
40:f4:60:d2:f7:47:21:46:f2:75:af:21:32:6c:7c:
54:be:dd:d2:6b:88:3b:b0:50:bc:c2:4c:92:00:32:
62:ad:c3:05:7a:cd:af:e6:e9:7f:75:ed:cf:7a:1c:
33:35:62:63:a6:f0:6c:16:83:93:a7:8d:51:f5:b7:
18:67:9c:6d:f7:f7:fd:42:61:cf:a2:67:0f:43:61:
d9:40:0f:8a:0d:ab:0d:d4:ff:aa:c8:84:e5:31:82:
d8:48:5b:02:10:c1:5d:ec:bd:71:10:6d:99:e8:34:
5b:2c:26:04:bf:01:94:1b:ab:c7:b2:00:b6:a2:4f:
5c:b1:61:7d:79:ca:e5:84:85:06:2f:8a:fa:6f:8d:
99:4e:98:78:2d:21:09:4f:c9:7e:c4:71:cb:a1:10:
f6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A1:AD:C6:3B:F2:58:8C:DC:9D:45:DC:E0:94:88:6B:3A:3F:B0:66
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/M6GtxjvyWIzcnUXc4JSIazo_sGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.172.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:59:01:4a:b5:13:6b:48:d1:c7:a8:83:de:35:9d:f4:ca:59:
1d:df:a5:78:79:15:97:57:da:94:31:bb:a1:2d:5e:25:42:e5:
78:77:8c:86:48:a0:96:c1:24:d0:3a:31:9e:5d:58:74:1a:5b:
f2:87:0f:6f:92:ee:f9:40:17:2b:72:5a:10:64:fc:20:ea:5c:
e1:44:8a:44:5c:c0:f6:d4:99:3b:ab:b4:4f:31:db:00:9b:99:
6d:93:00:9d:a9:51:ae:df:3e:1f:27:49:e9:2e:27:1e:67:07:
01:18:02:80:f6:4d:f5:b6:ff:09:c0:d9:86:12:80:b8:ed:c1:
d9:5d:73:bf:61:f0:46:ac:69:2f:33:3b:05:2c:7d:68:96:81:
a8:26:76:9b:03:57:db:4e:78:01:fd:80:f9:7d:17:fa:02:c6:
4e:8d:37:eb:9c:fb:3e:b6:c2:03:90:90:86:e8:10:ff:9a:7d:
70:22:cb:6f:ed:0b:81:c7:11:74:8f:51:ab:96:c3:d4:f5:63:
f9:46:17:1e:c0:79:3f:23:7f:d2:84:18:82:81:7b:e2:4f:0d:
4c:ff:da:dd:f0:1c:0a:a9:2b:60:e9:54:72:5f:8f:19:b5:be:
6f:96:98:7b:c0:ed:d6:29:2d:31:9a:0b:4e:cb:02:49:70:9d:
53:7d:4f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:13:07 2024 by rpki-client on console-fra.rpki-client.org