Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/jH5CbANqnBNxtHE4Wfn6BqAisQM.roa
File: jH5CbANqnBNxtHE4Wfn6BqAisQM.roa (raw, json)
Hash identifier: yqpwFWnkJn/4zzbeVulGFjO5sHw8ZkDZgD/nyBcu7+A=
Subject key identifier: 8C:7E:42:6C:03:6A:9C:13:71:B4:71:38:59:F9:FA:06:A0:22:B1:03
Certificate issuer: /CN=a0368a741c7ac68965e90d4e6cb26848eb3b992b
Certificate serial: 018CC794F20032D1F9D0ABCB98F1EF401404
Authority key identifier: A0:36:8A:74:1C:7A:C6:89:65:E9:0D:4E:6C:B2:68:48:EB:3B:99:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oDaKdBx6xoll6Q1ObLJoSOs7mSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/jH5CbANqnBNxtHE4Wfn6BqAisQM.roa
Signing time: Tue 02 Jan 2024 00:31:16 +0000
ROA not before: Tue 02 Jan 2024 00:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31134
IP address blocks: 193.23.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/oDaKdBx6xoll6Q1ObLJoSOs7mSs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/oDaKdBx6xoll6Q1ObLJoSOs7mSs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oDaKdBx6xoll6Q1ObLJoSOs7mSs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 21:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:f2:00:32:d1:f9:d0:ab:cb:98:f1:ef:40:14:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0368a741c7ac68965e90d4e6cb26848eb3b992b
Validity
Not Before: Jan 2 00:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c7e426c036a9c1371b4713859f9fa06a022b103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:6c:ba:cf:af:ec:70:04:3b:8e:07:06:03:
df:8e:05:b7:d2:bb:27:57:0a:9f:80:63:2c:f5:e8:
cb:3d:ee:e8:71:82:8b:5b:4c:80:e2:52:e4:a4:a3:
fd:db:13:50:00:96:8c:48:a3:a2:1a:7f:0a:6e:79:
b7:08:9c:d4:bb:3b:3b:61:d2:f1:fa:1d:c2:0e:a3:
39:87:9f:f1:31:d7:8d:03:ef:04:f4:53:ad:0c:a2:
73:b6:2c:06:31:4e:c7:b2:52:6a:cc:67:5b:80:96:
21:5d:d1:b8:e8:83:6d:55:8b:93:de:a2:31:be:10:
18:56:32:f6:6d:a6:1f:28:b0:e1:27:b5:3a:c5:77:
c0:48:3b:97:58:db:5a:f8:85:dc:56:75:aa:6c:85:
2b:b3:fd:4b:fa:e5:6b:a3:99:c7:b4:fb:6e:4c:b6:
e4:e9:19:af:9f:36:8d:e5:0c:03:73:cf:96:fe:8a:
78:9b:b2:c6:ed:3d:96:70:f8:09:1e:9a:09:95:10:
40:57:5a:b1:98:b0:ab:c5:bd:e1:a9:d8:4c:50:f8:
ae:f4:50:52:80:a7:5c:ed:00:0d:7a:56:07:1d:9e:
6e:0b:1a:c0:3c:67:e2:5e:9a:78:ee:2f:4d:65:d4:
2f:d0:b0:b0:c2:1e:4d:23:58:32:09:a2:ad:2d:00:
ad:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7E:42:6C:03:6A:9C:13:71:B4:71:38:59:F9:FA:06:A0:22:B1:03
X509v3 Authority Key Identifier:
keyid:A0:36:8A:74:1C:7A:C6:89:65:E9:0D:4E:6C:B2:68:48:EB:3B:99:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oDaKdBx6xoll6Q1ObLJoSOs7mSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/jH5CbANqnBNxtHE4Wfn6BqAisQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a9fe99-a535-44ab-a1bb-5e30b86fd1ab/1/oDaKdBx6xoll6Q1ObLJoSOs7mSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.62.0/24
Signature Algorithm: sha256WithRSAEncryption
06:72:de:20:87:bc:3b:40:ed:4f:50:0c:24:bd:71:22:9f:14:
81:df:de:ba:6d:f9:a8:c1:8a:56:ef:98:5a:2d:ee:e0:a8:00:
04:0d:93:84:9c:33:d2:d6:9e:77:c4:f7:12:00:f0:eb:b5:9e:
0c:9f:fd:34:1d:b1:17:22:1a:68:90:5a:71:98:8b:fb:78:b0:
61:97:d0:19:93:bf:e5:14:80:9b:18:f0:d1:45:4c:1b:12:5f:
cc:0e:69:b5:df:8a:46:70:34:9f:36:5e:ac:50:8c:66:95:71:
04:0a:12:2c:bb:5c:bf:50:25:f5:6c:fe:ee:a3:dc:15:4c:11:
3c:a1:84:e6:ab:69:eb:76:7f:88:50:a1:1a:76:ff:5d:4e:89:
04:8a:8a:67:ac:b3:cf:59:d5:df:e9:8f:56:06:fd:d8:07:7f:
44:03:f2:c9:3c:3b:1c:65:34:28:c0:ef:ff:2a:7d:e7:6a:24:
7a:0f:7f:41:de:a4:27:b1:cd:39:8c:69:dc:43:70:d5:30:31:
b2:22:48:ef:02:bf:b7:29:34:70:a5:e5:35:0f:d4:21:e8:02:
2a:89:7e:f6:ef:e6:2b:eb:4e:22:fe:92:de:51:c9:07:9b:88:
cd:3c:e5:7b:b1:bf:80:8b:16:3d:0c:58:ed:5e:f3:34:ca:2b:
51:34:62:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:27:27 2024 by rpki-client on console-ams.rpki-client.org