Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/zwnrv3ZN0tty92tuZcDCK25R34Q.roa
File: zwnrv3ZN0tty92tuZcDCK25R34Q.roa (raw, json)
Hash identifier: APvbpVbOJ+MxSkSKLXmuCnRd/ny1/J768rX2S8RuFz4=
Subject key identifier: CF:09:EB:BF:76:4D:D2:DB:72:F7:6B:6E:65:C0:C2:2B:6E:51:DF:84
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191277D3DE0BC4E23B858D59F7E52F07FA5
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/zwnrv3ZN0tty92tuZcDCK25R34Q.roa
Signing time: Tue 06 Aug 2024 11:40:04 +0000
ROA not before: Tue 06 Aug 2024 11:40:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39238
IP address blocks: 195.216.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:27:7d:3d:e0:bc:4e:23:b8:58:d5:9f:7e:52:f0:7f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 6 11:40:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf09ebbf764dd2db72f76b6e65c0c22b6e51df84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:4f:07:5f:e5:7c:4b:86:2f:5a:c5:e1:26:
99:71:6f:8d:41:76:14:d5:1e:55:75:c9:43:87:4f:
58:50:2f:82:25:27:26:c5:91:30:43:6c:5c:4c:1e:
8b:f2:c9:f4:9b:ab:5a:46:6e:1e:ad:e3:1e:57:4f:
13:b6:98:bb:c5:a4:d8:c0:44:88:60:7f:4f:94:e3:
ea:64:53:90:5f:8c:92:be:38:99:2a:b8:42:fc:c6:
39:1d:6f:23:63:ee:9c:c9:71:3d:e4:37:c2:0d:f3:
8e:36:01:0e:91:b6:3a:20:0d:25:6b:ba:c7:1e:81:
7e:4f:94:0e:b3:ae:38:9e:81:bf:d5:dd:13:99:7c:
4d:d0:26:18:05:07:62:82:61:2a:c7:64:be:ed:66:
b5:36:ad:55:6e:7a:11:2c:d4:44:43:ce:e5:51:81:
a9:40:b3:99:f3:f9:89:91:68:eb:15:ef:e6:e0:2f:
2a:e6:d9:e4:5a:a6:30:7a:80:07:c9:da:6a:44:5e:
c3:36:0c:08:7a:01:80:f7:f9:e1:0d:bb:72:cf:e5:
a6:89:59:a2:67:0d:b9:b8:14:05:04:41:50:23:a9:
c5:29:0d:ec:d4:5b:dd:e6:95:16:ad:33:22:a0:00:
97:0b:03:15:08:b0:8f:7c:08:92:a2:74:db:8f:ca:
13:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:09:EB:BF:76:4D:D2:DB:72:F7:6B:6E:65:C0:C2:2B:6E:51:DF:84
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/zwnrv3ZN0tty92tuZcDCK25R34Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.155.0/24
Signature Algorithm: sha256WithRSAEncryption
21:39:8e:7b:dc:5a:64:36:6e:be:b8:dd:d5:a5:26:87:7e:01:
7f:d5:ad:ea:42:4a:bc:27:d2:03:ec:90:5d:d9:32:2a:53:39:
b8:c8:55:ce:b6:03:ed:0d:a7:23:e0:45:46:fe:11:7e:e2:66:
75:42:4f:25:07:ed:6f:50:b0:fa:34:77:fa:42:7f:f1:00:8c:
a7:96:49:3a:61:5f:ec:db:f1:42:52:b3:15:b9:9a:b9:a6:28:
1e:ad:fc:83:ce:fa:ac:cc:9c:da:8b:9f:19:69:1d:fa:28:f1:
88:47:71:14:4e:84:68:83:94:63:49:d9:31:71:67:56:33:a9:
4e:39:68:4b:9f:1d:10:ff:30:13:97:b1:f5:26:3d:57:c8:f9:
61:bd:27:ee:1a:81:b1:d8:b8:d3:2f:2d:98:37:ff:20:71:82:
19:6c:c3:66:38:ef:9c:8e:9e:f1:ac:e9:97:48:68:86:b3:77:
19:c9:c4:d2:aa:fb:37:a0:25:d4:0d:4c:99:5f:df:35:4c:7a:
48:58:b7:58:17:8d:34:40:3c:de:3f:4c:9c:43:ea:57:98:a3:
4d:37:85:77:e6:e0:04:76:f3:83:fe:db:19:c2:1a:f1:1e:00:
ac:d5:75:2b:66:d4:51:70:8d:98:3f:38:e1:d5:a5:cb:59:d1:
4b:86:43:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:53:18 2024 by rpki-client on console-fra.rpki-client.org