Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-StXhm4zAdoS3Pq29Rd56qpdcQQ.roa
File: 1-StXhm4zAdoS3Pq29Rd56qpdcQQ.roa (raw, json)
Hash identifier: /RpF0NDCycIWVSaSdFyrJdvgVlkWLyaxWIClMNVDDD4=
Subject key identifier: F9:2B:57:86:6E:33:01:DA:12:DC:FA:B6:F5:17:79:EA:AA:5D:71:04
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A4E07FAD3F012422C5CA35016DACC
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-StXhm4zAdoS3Pq29Rd56qpdcQQ.roa
Signing time: Tue 02 Jan 2024 12:33:39 +0000
ROA not before: Tue 02 Jan 2024 12:33:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209213
IP address blocks: 92.253.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:4e:07:fa:d3:f0:12:42:2c:5c:a3:50:16:da:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f92b57866e3301da12dcfab6f51779eaaa5d7104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:30:41:4d:29:3e:50:14:3b:dd:18:7a:5f:
38:84:ba:b3:16:cd:fc:c2:9d:3d:74:88:78:7c:2f:
c4:30:90:d2:f4:0e:38:fe:22:da:a3:d5:ac:62:43:
72:c3:98:b3:67:cd:0d:5d:03:ac:29:26:3f:d2:08:
a4:81:6a:e5:f3:ac:86:48:12:5f:60:da:e3:5a:56:
02:4d:63:cd:53:12:a3:d1:a7:19:70:4f:5f:e3:47:
a7:0a:b5:9a:8f:2c:b2:9f:0e:a9:7a:08:dc:43:66:
48:e1:b8:61:76:68:2c:d8:60:5a:5c:f3:63:d4:19:
f8:6f:d4:96:5d:8f:43:e9:c4:48:79:f8:3f:41:9e:
44:b7:97:ef:2d:ea:35:02:40:ee:bc:3b:cb:43:ed:
97:37:0b:ee:02:25:50:7a:7b:e1:ba:e9:48:ba:07:
3d:9a:ef:43:58:00:10:68:15:b9:92:32:4d:ba:c3:
ec:7a:1b:9a:5a:4a:7a:fe:54:0f:50:bb:90:24:e5:
ec:a4:4a:2c:7e:8b:b7:48:e0:ab:b9:ee:e7:14:b4:
e1:d5:56:9b:95:e2:ed:ba:47:2d:d7:3a:1f:05:86:
98:b6:80:fb:5a:5b:6a:ed:37:59:ae:16:24:99:a9:
1e:e4:c0:a8:2b:74:4d:0a:f4:c7:34:94:ba:4c:a6:
40:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2B:57:86:6E:33:01:DA:12:DC:FA:B6:F5:17:79:EA:AA:5D:71:04
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-StXhm4zAdoS3Pq29Rd56qpdcQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.253.205.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:7e:42:d1:90:84:0a:7d:76:80:0a:54:5f:48:fd:de:43:ea:
fc:b7:0f:bf:e8:82:7e:1c:39:a4:8f:f3:12:0d:93:8b:e8:1c:
98:f6:e1:64:4b:1c:74:1d:cf:3c:51:42:fa:ae:b0:1e:ea:17:
0a:a2:ef:c2:89:27:53:0b:44:a9:4e:8a:78:97:c4:bc:57:74:
05:72:f9:54:c3:b7:f5:07:20:56:99:85:78:7f:c9:bf:4d:12:
87:ad:30:4e:3e:1b:ba:9e:e2:97:52:c7:ab:41:21:de:6c:d0:
42:34:36:c3:80:6c:0f:c9:5a:cf:0a:87:b1:9e:11:b1:fe:8c:
4b:eb:e3:89:c8:a5:68:4c:fd:12:2f:2f:34:e1:ad:4e:11:ee:
2e:02:67:ea:48:d8:24:52:93:61:bc:c2:46:87:be:71:f0:b5:
a6:76:32:fd:b3:e6:66:db:f9:9d:09:85:0e:45:fd:e8:cf:10:
c2:75:75:0a:7c:8a:46:5d:de:74:52:42:ca:34:95:d1:67:43:
fb:49:7a:f3:cd:c9:c5:57:62:e1:59:7d:44:ac:fe:81:07:5b:
c3:80:f0:3b:fd:e8:a4:8c:df:1d:67:16:1a:d2:00:10:66:4f:
ac:1c:26:ef:4b:5e:c8:1b:16:19:7d:17:cd:2f:fb:53:ff:cd:
66:55:8d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:46:09 2024 by rpki-client on console-fra.rpki-client.org