Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/IHf19OW0lYP5bUrgsHJ7rc75jj8.roa
File: IHf19OW0lYP5bUrgsHJ7rc75jj8.roa (raw, json)
Hash identifier: 5UJkcu7leqfiMJG5yV2facGdQFJrT3ichvdVBYffYyo=
Subject key identifier: 20:77:F5:F4:E5:B4:95:83:F9:6D:4A:E0:B0:72:7B:AD:CE:F9:8E:3F
Certificate issuer: /CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01
Certificate serial: 018CC94BFF9000D84AB90359FE5D568587E1
Authority key identifier: 9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/IHf19OW0lYP5bUrgsHJ7rc75jj8.roa
Signing time: Tue 02 Jan 2024 08:30:50 +0000
ROA not before: Tue 02 Jan 2024 08:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15685
IP address blocks: 92.63.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.mft
rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 11:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4b:ff:90:00:d8:4a:b9:03:59:fe:5d:56:85:87:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ff33d4f3ac0a887840a284cdc1abeb7dd642f01
Validity
Not Before: Jan 2 08:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2077f5f4e5b49583f96d4ae0b0727badcef98e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:a0:b9:67:ac:d9:22:c3:cd:d3:33:49:86:
43:d3:f6:91:67:f3:92:9a:31:38:c4:6a:be:d6:a7:
c8:22:b5:81:8b:0b:d8:06:54:4e:f1:c3:ea:34:58:
53:36:6a:8f:30:33:74:83:55:5f:89:2b:51:82:c8:
91:93:b0:68:72:37:3f:6d:2e:fa:81:40:09:d6:ae:
36:c7:0a:41:a5:d3:1f:96:87:26:67:b9:65:eb:14:
a5:1d:33:47:af:34:32:ca:f1:ff:a7:0d:75:cf:81:
dc:d1:98:7e:b6:1f:6b:8f:7a:6f:4f:f3:a0:6d:80:
17:d1:2a:97:bd:41:4a:19:45:67:c5:19:27:39:0d:
08:b5:90:fa:95:9d:ea:18:c3:33:23:50:a7:ba:5a:
5b:96:51:df:27:10:0d:da:10:90:40:4a:df:b1:a0:
c6:db:8e:2c:87:81:d9:af:db:3d:05:fb:26:b0:1f:
3b:52:34:86:59:a1:18:39:7f:aa:05:3c:c9:6b:e9:
d6:b1:0e:ac:ba:b0:ae:d9:93:76:c8:1f:e1:ca:c9:
1b:8f:11:f9:f1:b7:e5:85:f4:34:8c:26:84:b7:da:
41:5f:9f:03:5c:76:37:26:76:e5:3e:1d:90:cc:b6:
40:a4:96:5d:e3:d3:a6:2b:45:77:1c:4b:23:ca:2c:
1d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:77:F5:F4:E5:B4:95:83:F9:6D:4A:E0:B0:72:7B:AD:CE:F9:8E:3F
X509v3 Authority Key Identifier:
keyid:9F:F3:3D:4F:3A:C0:A8:87:84:0A:28:4C:DC:1A:BE:B7:DD:64:2F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n_M9TzrAqIeECihM3Bq-t91kLwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/IHf19OW0lYP5bUrgsHJ7rc75jj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/127684-5afe-4f18-b95d-3072503d8607/1/n_M9TzrAqIeECihM3Bq-t91kLwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.57.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:32:84:83:47:27:b0:ae:e7:42:ca:b6:69:b5:07:64:21:84:
50:41:08:3a:da:4c:e3:c7:f0:26:b9:01:a9:3b:38:58:25:ab:
de:34:2a:9e:42:66:91:c4:6d:6f:98:33:db:56:62:e5:a1:3e:
fa:17:72:30:a3:99:ad:a8:f1:6e:93:e0:a7:49:51:c7:a6:ef:
cf:14:95:54:10:ac:7e:41:f5:5d:ef:6c:68:3a:e9:23:08:62:
3c:5b:d9:25:d3:86:1c:a6:51:c9:86:22:bc:b3:47:29:b3:c5:
f1:9a:bc:e2:b7:0e:09:d6:39:35:2a:e5:c6:bc:1d:78:91:56:
49:de:84:98:44:2b:aa:a1:de:67:5a:b4:22:99:d0:e4:21:7b:
d2:ef:e8:28:b2:ab:8c:ff:a4:ce:da:52:53:20:64:bc:80:45:
62:c1:df:c3:97:00:52:64:69:eb:56:1c:6d:14:5f:0f:6d:07:
54:5d:8e:a9:d8:67:a2:8c:18:54:5a:6d:6d:69:b1:46:bf:6c:
f7:73:89:e8:41:b6:b7:1f:15:49:ac:52:5f:ff:de:04:8b:8f:
73:66:10:aa:33:9f:b1:95:d6:f8:e8:a5:1c:1a:72:8c:e6:c0:
49:c9:a1:af:19:12:7e:8f:4f:c7:cc:f1:08:0b:19:4d:8c:2b:
dc:83:e0:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:25:41 2024 by rpki-client on console-fra.rpki-client.org