Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/QiDhtR_o5z5uABAa8gP_5dZr17M.roa
File: QiDhtR_o5z5uABAa8gP_5dZr17M.roa (raw, json)
Hash identifier: zMBV7C8hETAEkTz0rh7GP8tZ1LRUJYseC7oCcWk0i48=
Subject key identifier: 42:20:E1:B5:1F:E8:E7:3E:6E:00:10:1A:F2:03:FF:E5:D6:6B:D7:B3
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 0192F1AC49F9DE48761A19651C5DFD6166A3
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/QiDhtR_o5z5uABAa8gP_5dZr17M.roa
Signing time: Sun 03 Nov 2024 10:57:33 +0000
ROA not before: Sun 03 Nov 2024 10:57:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18186
IP address blocks: 87.229.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f1:ac:49:f9:de:48:76:1a:19:65:1c:5d:fd:61:66:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Nov 3 10:57:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4220e1b51fe8e73e6e00101af203ffe5d66bd7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5c:eb:4d:86:a6:b1:70:59:d2:03:8a:18:6c:
24:4d:61:26:2f:c9:7f:ee:49:49:92:50:19:22:b9:
bc:81:0e:56:4f:df:ee:c2:32:dd:d9:a0:d0:17:b9:
e8:fc:f4:a6:2c:54:3b:4c:af:53:0c:18:4d:0c:ef:
5b:c7:79:44:cc:93:24:b5:a9:91:9a:80:12:42:bc:
1d:5f:6a:93:b4:cd:4c:1c:a0:ad:72:91:a0:ec:7c:
c8:2a:0f:f6:38:c3:88:fd:fc:53:e5:ce:b9:1a:44:
04:2d:cb:f3:ad:10:ff:a6:a3:af:04:42:22:cd:15:
2d:b8:11:2d:46:eb:5f:c9:90:d6:20:bd:59:87:2d:
47:c5:60:d6:cb:f7:12:f4:0e:ab:b3:2b:44:6b:87:
72:2f:8a:d4:68:ed:a0:2f:e1:95:e5:0c:55:bf:14:
e9:ee:de:06:2f:d3:c6:45:f2:45:5c:71:4f:80:0f:
7a:a7:a6:d1:0a:50:bc:4a:2c:35:dd:a9:d3:d3:c8:
6a:ee:6e:2b:ba:81:b7:99:3c:33:a1:b1:dd:d6:e4:
f0:91:b0:b9:2d:c6:cd:aa:3f:f9:39:1e:9a:2e:4b:
32:80:4c:df:d8:c9:aa:fa:2f:f6:b3:7f:76:76:64:
45:16:3b:ed:41:a1:d9:0d:43:7c:be:75:3f:aa:6b:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:20:E1:B5:1F:E8:E7:3E:6E:00:10:1A:F2:03:FF:E5:D6:6B:D7:B3
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/QiDhtR_o5z5uABAa8gP_5dZr17M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ca:fa:69:db:cc:36:c1:3a:42:59:98:87:e9:10:58:80:ff:
b8:1c:3b:44:eb:d3:7e:f5:bd:58:2f:60:4b:ff:c3:39:4b:ab:
50:9c:4b:11:85:61:6c:64:04:19:3d:67:55:87:99:c4:b4:04:
12:a1:a1:57:e8:ae:92:58:e3:84:a0:de:82:85:02:29:94:0a:
45:f6:1a:03:15:52:18:80:b7:0a:bd:b2:03:48:72:00:df:b9:
fe:60:f6:8f:04:4f:da:05:ff:a7:1e:2e:aa:4e:72:d8:c3:ad:
78:96:19:b5:e9:3a:a7:98:77:d4:8a:d7:7c:90:bf:42:f5:9d:
58:00:7c:29:08:c2:23:95:1f:c7:db:be:71:c6:dd:db:14:68:
7e:94:24:e2:6e:cc:ce:f7:b5:08:8c:7e:f7:15:6a:d6:7a:8d:
cb:62:3c:ef:98:98:6f:dd:d7:1d:45:47:16:19:fe:e5:a6:16:
88:bb:68:57:35:ed:fb:04:12:0f:8a:f8:ff:38:1e:41:1a:03:
ed:05:6b:59:99:c8:cc:9f:4f:68:44:2b:ff:db:4b:8f:c5:90:
96:e8:31:52:cd:b8:5b:c4:c0:da:6d:db:e2:c5:c6:b0:1e:73:
81:c2:36:5d:4d:b6:56:f4:0c:d6:aa:02:d3:d1:33:60:a8:86:
4a:7f:f1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:51:43 2024 by rpki-client on console-fra.rpki-client.org