Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DcGCcjHvdcdVJJPes209wydaywQ.roa
File: DcGCcjHvdcdVJJPes209wydaywQ.roa (raw, json)
Hash identifier: 4AsNI4ge3tW0Qqs8hbY9BVKh/byPtcV7lU+e0Dp9W8s=
Subject key identifier: 0D:C1:82:72:31:EF:75:C7:55:24:93:DE:B3:6D:3D:C3:27:5A:CB:04
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EE357862B8081206760EAFE15A2D6CE7F
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DcGCcjHvdcdVJJPes209wydaywQ.roa
Signing time: Mon 15 Apr 2024 19:59:07 +0000
ROA not before: Mon 15 Apr 2024 19:59:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61003
IP address blocks: 213.232.116.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:57:86:2b:80:81:20:67:60:ea:fe:15:a2:d6:ce:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 15 19:59:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0dc1827231ef75c7552493deb36d3dc3275acb04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:cf:6f:5e:d7:5c:f5:be:df:91:cb:a1:97:
37:a6:57:e2:00:f6:d4:f6:bf:e3:db:ef:09:6c:23:
ab:ec:29:54:35:a1:b2:cc:9b:b4:f9:f2:d5:d3:c5:
f2:6c:a8:ae:da:0e:c9:50:ca:7d:75:2b:9c:0a:ff:
95:0f:51:f0:e6:6f:af:79:77:33:08:36:6a:7a:32:
3b:6e:d9:80:55:70:f3:1a:eb:3b:44:6d:63:b5:99:
07:a4:b1:fe:5e:b7:bc:44:49:5d:ce:bb:a8:0f:ee:
1f:04:c3:9b:60:78:52:74:f5:ed:8b:19:08:c6:2d:
40:98:8a:b2:39:da:0d:b1:3b:b8:44:83:24:48:62:
57:be:f5:07:99:47:5e:5f:ea:85:15:7f:fb:20:f3:
af:20:57:92:ef:31:27:73:96:70:34:9f:a3:66:17:
1f:50:8d:d5:e5:fc:4e:d1:1a:1b:b5:00:fd:ed:98:
46:9f:9d:39:d4:3d:c4:1e:f3:88:e2:42:a8:67:13:
81:32:17:a5:da:4b:51:a0:89:6e:00:88:ef:b9:2f:
6d:e4:f7:cb:a3:6e:ed:bc:3f:0a:c1:ca:f4:a3:e8:
a0:ac:81:a0:58:e7:97:ea:7a:df:5d:e1:9b:6d:06:
06:38:c1:cc:0d:6c:14:7a:6f:4e:a3:33:0e:10:b5:
34:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C1:82:72:31:EF:75:C7:55:24:93:DE:B3:6D:3D:C3:27:5A:CB:04
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/DcGCcjHvdcdVJJPes209wydaywQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:ff:6f:2d:81:96:cb:91:49:47:39:95:f1:f1:2a:d4:5b:43:
37:cf:88:92:36:8a:8e:e0:54:24:29:58:e4:0b:45:bc:09:c3:
86:50:f6:f3:f8:2e:e4:e7:0f:24:d3:10:f6:71:79:2f:a5:36:
c2:06:00:08:4d:44:ea:eb:d2:d9:46:08:eb:28:89:ec:90:d2:
e9:9a:50:cb:c8:8b:d8:77:84:42:42:dd:85:b6:d2:99:e6:d7:
ec:65:fa:25:14:83:29:f3:3d:47:05:5f:89:63:9a:13:c6:2c:
9a:f2:7e:fd:4d:c0:41:61:c1:57:6c:f7:28:12:24:65:39:d6:
fd:51:d2:b3:2c:98:a4:42:d3:2e:16:7c:61:a8:b1:95:fe:f3:
4b:bf:a5:5f:ee:bf:1a:47:ef:fc:bc:90:fa:c1:d0:3b:7e:8c:
87:03:45:2c:33:91:6f:a9:3a:45:9d:d9:cf:bb:6a:fa:0f:4a:
f5:ce:d9:5e:e9:54:17:a4:41:b6:27:19:63:9f:2a:ca:48:62:
5b:6d:5e:1a:73:01:40:7b:00:29:85:a6:aa:af:8e:9a:66:7c:
a2:9e:6a:bd:e9:c6:ee:02:a1:cc:ab:77:ad:ea:5d:21:6f:1b:
9c:f3:d7:b8:00:ff:05:3c:4c:95:c3:62:3d:93:31:09:b0:eb:
c0:3c:c0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:53:27 2024 by rpki-client on console-ams.rpki-client.org