Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/TMVokBe3dtP3n6N9EitDv4Z4XYc.roa
File: TMVokBe3dtP3n6N9EitDv4Z4XYc.roa (raw, json)
Hash identifier: 5VBjVRJPsFIH3qY0lhObWwMW+BtkJQ2vRjYn7PJWw38=
Subject key identifier: 4C:C5:68:90:17:B7:76:D3:F7:9F:A3:7D:12:2B:43:BF:86:78:5D:87
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 0191756CB107A5705CFDCB6D4E66D7E10EAF
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/TMVokBe3dtP3n6N9EitDv4Z4XYc.roa
Signing time: Wed 21 Aug 2024 14:52:22 +0000
ROA not before: Wed 21 Aug 2024 14:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 93.177.114.0/23 maxlen: 24
185.251.80.0/24 maxlen: 24
185.251.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:75:6c:b1:07:a5:70:5c:fd:cb:6d:4e:66:d7:e1:0e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Aug 21 14:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cc5689017b776d3f79fa37d122b43bf86785d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:87:c7:e6:d8:cb:8c:37:4b:60:0f:0a:a6:92:
44:06:12:2e:54:5e:e8:9b:74:4e:c6:85:32:e9:17:
a6:56:48:84:27:ea:d4:4f:27:3a:82:43:69:d4:f5:
3a:f7:82:81:99:96:05:89:b5:ef:14:f8:cd:33:fc:
f6:2c:dd:7c:26:00:f9:d8:78:cb:dc:a6:16:2e:3c:
f7:f8:71:59:71:69:35:be:89:44:89:71:33:ee:16:
b4:f4:5c:ae:4a:5f:43:bd:48:c8:50:20:61:cd:82:
5f:92:e6:9d:56:96:be:e8:86:ff:04:8a:00:dd:6d:
1f:5c:81:cc:b4:ae:92:ba:0b:32:5e:f2:6f:e1:69:
c4:10:f4:d3:36:e3:c7:d5:7c:09:65:50:7b:7a:a9:
7c:d8:8e:b4:f1:50:52:0a:e4:99:17:64:1d:71:9c:
60:45:45:57:5c:2a:7e:85:50:e5:06:78:28:70:db:
b5:3b:38:97:16:67:78:90:8d:07:1a:7c:ac:0e:2d:
f5:48:b7:02:e4:57:f2:c4:f8:76:c6:7f:4f:da:2f:
7e:24:9d:de:e7:9e:1d:43:a3:30:67:bd:c7:1c:b1:
2a:10:13:51:ed:91:aa:29:b8:f9:7f:ef:ea:ad:4c:
44:3f:0e:83:47:14:ab:45:62:dc:2e:2d:c1:ff:b5:
50:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C5:68:90:17:B7:76:D3:F7:9F:A3:7D:12:2B:43:BF:86:78:5D:87
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/TMVokBe3dtP3n6N9EitDv4Z4XYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.114.0/23
185.251.80.0/23
Signature Algorithm: sha256WithRSAEncryption
89:ef:9b:b6:89:04:14:c4:51:8f:c1:76:62:d1:d9:0f:63:56:
82:78:8d:fd:bd:51:2e:36:55:71:ff:1a:a5:d1:ff:50:d9:ad:
3e:22:7e:3a:0b:ed:40:77:62:ce:24:8e:78:7d:d9:c8:be:ef:
bd:23:cf:2b:4a:36:7b:1e:94:8b:96:bd:88:46:65:e8:8d:c4:
5a:8a:09:6b:94:49:ce:35:d0:7c:85:bb:49:d2:d0:75:b3:69:
c6:33:08:ae:f1:48:4e:d1:82:ce:90:6d:a2:69:2b:c3:17:fe:
c9:40:90:4d:c7:e4:94:6b:13:c0:52:1c:e4:ee:12:e5:ef:0c:
c4:d1:56:ed:98:c5:bc:b0:bf:7d:65:67:36:6e:3a:3a:25:af:
ba:10:48:59:25:b6:75:59:16:b5:bd:1f:83:c3:08:c7:e4:a9:
22:b8:f9:a3:92:3f:4c:b1:aa:9b:56:1c:5c:ea:bf:11:b2:bb:
af:6d:a2:fb:65:7b:ea:87:4e:dd:2b:71:05:da:47:8f:25:f7:
8e:89:5b:43:04:b9:27:11:7b:7c:70:5b:94:5f:55:a3:e9:dd:
e1:de:fa:5a:75:df:50:72:23:f5:1f:93:ff:bf:f3:f3:07:1c:
bd:4e:d1:68:41:75:1f:37:7d:7f:9c:e4:a2:36:3d:a0:36:20:
45:75:63:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 00:02:38 2024 by rpki-client on console-fra.rpki-client.org