Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vB-YHj-ZspgrzJjr0PaSX9H_leQ.roa
File: vB-YHj-ZspgrzJjr0PaSX9H_leQ.roa (raw, json)
Hash identifier: rjQfs7sIE0xL/1Fjq6VRCo/yZw0QBSAAmVK7Jc4t1HI=
Subject key identifier: BC:1F:98:1E:3F:99:B2:98:2B:CC:98:EB:D0:F6:92:5F:D1:FF:95:E4
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018E9F31B13506FB959227CEAFD2F72B5D0E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vB-YHj-ZspgrzJjr0PaSX9H_leQ.roa
Signing time: Tue 02 Apr 2024 14:23:37 +0000
ROA not before: Tue 02 Apr 2024 14:23:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203004
IP address blocks: 195.80.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 18:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9f:31:b1:35:06:fb:95:92:27:ce:af:d2:f7:2b:5d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 2 14:23:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc1f981e3f99b2982bcc98ebd0f6925fd1ff95e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:07:19:d8:46:19:8b:74:14:62:b2:fd:79:
6d:d5:86:59:62:ed:38:22:e7:70:e2:37:1a:fb:53:
80:9a:3d:4a:92:8c:fe:ee:b3:19:45:d7:43:88:f7:
99:53:4b:fa:a1:75:bb:ca:4b:9c:ff:3f:88:53:be:
22:2e:e8:39:7c:eb:da:77:b3:4a:d7:4e:89:b3:c4:
d1:69:8c:01:50:24:14:17:0a:3d:e1:f5:da:ba:29:
a9:39:15:6d:b8:17:87:df:c3:85:c5:ab:90:fe:e2:
e3:94:e6:d9:5e:27:e2:25:f1:97:aa:67:16:3a:eb:
4d:0b:7f:bc:e5:16:d1:28:d9:77:e1:2f:0f:06:4d:
49:61:ab:79:26:a3:b6:4c:00:5b:e4:95:ef:ad:7c:
01:af:d4:22:a5:ed:c3:fa:e3:c0:52:1c:fa:d7:ad:
ab:71:58:c4:dc:0f:95:17:d9:86:a2:89:f4:6d:91:
1b:b1:7d:b6:76:bf:01:f5:c4:ce:85:02:b1:b3:b0:
43:a9:80:ce:7a:1d:aa:aa:59:00:a3:1a:49:6d:86:
fa:20:b0:96:23:49:a2:dc:d4:57:69:59:ad:24:44:
1a:0d:16:77:a8:90:3a:24:77:50:7b:7a:ef:9c:9a:
3d:c4:f0:16:18:4d:20:42:b8:73:e5:ed:b9:f5:59:
f8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1F:98:1E:3F:99:B2:98:2B:CC:98:EB:D0:F6:92:5F:D1:FF:95:E4
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vB-YHj-ZspgrzJjr0PaSX9H_leQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.238.0/24
Signature Algorithm: sha256WithRSAEncryption
40:65:b8:9a:53:f3:e6:6b:72:77:5c:46:6a:42:03:c6:93:cc:
d9:e7:e6:63:4e:cf:4d:38:d2:88:48:ef:2b:6d:cf:32:01:d2:
bb:a0:59:7c:b5:c1:8f:b6:5c:3d:b3:b8:ed:d4:81:4e:25:65:
9e:d8:5c:cc:4d:0e:55:a7:cb:67:fe:8b:a3:7e:78:69:f2:99:
14:cf:87:1b:11:57:c7:96:a2:9a:1a:d5:71:ef:16:df:e1:9e:
43:07:ac:7d:57:3d:ae:aa:82:22:33:c5:86:60:10:f9:53:76:
3d:bc:60:58:1f:5c:24:9c:f2:fa:04:64:df:c3:4b:6c:d9:a3:
4e:fe:cc:2a:7a:08:d1:43:03:36:cb:80:76:87:e6:a9:fd:08:
b6:a5:df:61:84:75:ce:8e:07:94:d2:c2:28:6a:7d:05:63:af:
62:39:d4:f6:8e:57:55:ec:39:67:a1:9b:fe:db:ca:bf:03:c2:
78:f7:8e:19:56:8c:2f:2b:c0:03:b9:36:4d:7c:1c:d5:f1:ff:
f2:29:05:cd:83:67:8c:d4:25:da:60:8d:65:83:ac:3f:ce:6d:
ab:8c:1d:f4:35:a2:bb:69:15:a5:7e:0a:59:bc:d9:f9:ad:e1:
0a:cb:c2:4b:29:47:7d:f9:66:aa:d1:78:41:de:cc:7c:c5:7c:
1b:1a:be:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:27:57 2024 by rpki-client on console-ams.rpki-client.org