Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ef9pkDj4Yaj8jSXvdRWhIQJpNjg.roa
File: Ef9pkDj4Yaj8jSXvdRWhIQJpNjg.roa (raw, json)
Hash identifier: a1+Nvu2B33fQq9CvXv+bmtBmFT5Gj0H0Ej9O+cZS3qc=
Subject key identifier: 11:FF:69:90:38:F8:61:A8:FC:8D:25:EF:75:15:A1:21:02:69:36:38
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191A3781A81533A6061B30327F3BEA89A78
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ef9pkDj4Yaj8jSXvdRWhIQJpNjg.roa
Signing time: Fri 30 Aug 2024 13:27:22 +0000
ROA not before: Fri 30 Aug 2024 13:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 212.107.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a3:78:1a:81:53:3a:60:61:b3:03:27:f3:be:a8:9a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 30 13:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11ff699038f861a8fc8d25ef7515a12102693638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:2f:92:bb:2d:0a:e6:24:bf:6d:5a:02:29:
e6:39:e4:e9:60:ab:32:56:5d:58:2c:ee:1c:ba:16:
32:89:a8:5a:be:a8:13:dd:66:cf:7b:51:3d:f4:6e:
5b:f1:85:5a:4c:87:4b:5e:31:c2:3a:82:b9:ab:47:
cc:30:4e:41:e3:ec:15:9d:25:28:8c:42:56:3d:e3:
fc:9d:ad:fb:88:d6:6c:8c:02:08:0b:f1:8f:10:bf:
14:dd:61:77:df:93:e7:dc:dd:c9:0c:1c:a1:b4:69:
a6:c7:b4:96:41:6b:a7:79:9b:1b:a6:3d:18:0a:87:
26:a3:93:2b:8a:78:e8:b7:be:71:bd:35:50:79:18:
c0:fd:9f:0e:0e:0c:f2:27:a0:09:16:76:49:54:04:
0a:ba:fe:24:65:f5:68:4a:05:7f:88:64:b5:20:d5:
2e:8f:23:31:16:3f:4f:bb:94:b2:bc:7c:b2:23:13:
a2:4a:2b:5f:dc:3d:11:5e:23:ab:39:6f:b8:44:2e:
d2:3f:9d:0b:23:d3:85:db:ca:4a:8f:f2:a5:a4:a7:
51:2b:5e:44:7f:da:b5:59:51:ec:d0:c8:dd:71:aa:
38:02:da:5b:0f:af:74:ce:57:c8:a2:53:1f:90:7e:
1b:87:fe:89:da:d6:8c:59:31:c6:4f:0f:60:35:df:
57:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FF:69:90:38:F8:61:A8:FC:8D:25:EF:75:15:A1:21:02:69:36:38
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ef9pkDj4Yaj8jSXvdRWhIQJpNjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.107.27.0/24
Signature Algorithm: sha256WithRSAEncryption
86:af:f3:a0:a2:85:6b:66:11:73:4c:9b:ae:28:ef:05:e0:bb:
78:82:18:29:98:16:4b:0a:01:b0:17:c4:b5:1c:ad:d8:be:7c:
8e:6e:19:02:ec:20:84:a8:15:9c:62:28:d9:d1:8d:3c:8c:02:
87:c9:e9:c5:75:01:a0:81:e6:dd:9d:32:e7:92:cd:17:c4:30:
27:59:e0:08:36:50:b3:e3:34:5b:8c:d7:8a:15:0f:24:1c:a2:
69:6f:bf:f2:73:80:9d:80:d7:23:3d:db:09:a4:76:8f:58:f2:
ca:90:6f:b2:13:c8:ee:5c:0f:2f:98:86:44:8d:62:b7:63:00:
e1:16:1d:b2:2c:fa:bb:9d:da:eb:9e:5b:31:5e:62:be:ff:b1:
86:0a:9d:57:a4:58:a5:6c:ca:ca:53:97:0f:fd:30:17:c2:25:
a3:d8:db:58:9b:39:6f:e6:c6:08:1f:51:f2:16:0c:a5:6f:b8:
d7:48:1f:8f:73:7f:ad:3d:21:04:ab:14:51:99:0e:e9:32:aa:
4f:e0:1d:6f:67:b2:60:a5:37:9c:0d:c9:ac:6a:c9:bf:04:83:
fb:9b:a9:a3:10:82:90:8e:61:6e:73:60:6f:c2:e3:dd:9c:24:
36:68:b4:98:7f:c8:cd:65:32:a9:f4:a3:b7:71:41:0f:47:c2:
85:eb:f4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:53:17 2024 by rpki-client on console-fra.rpki-client.org