Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sMJZ-kHs12ZwILiHY0nT988iRCI.roa
File: sMJZ-kHs12ZwILiHY0nT988iRCI.roa (raw, json)
Hash identifier: WLwrm7tP9knOxgXfqqQta9/BqtNxeogiAQDfuEByhcg=
Subject key identifier: B0:C2:59:FA:41:EC:D7:66:70:20:B8:87:63:49:D3:F7:CF:22:44:22
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 018ECED89F73081D95724C18094DD8131055
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sMJZ-kHs12ZwILiHY0nT988iRCI.roa
Signing time: Thu 11 Apr 2024 20:28:06 +0000
ROA not before: Thu 11 Apr 2024 20:28:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59432
IP address blocks: 185.251.80.0/24 maxlen: 24
194.4.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ce:d8:9f:73:08:1d:95:72:4c:18:09:4d:d8:13:10:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Apr 11 20:28:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0c259fa41ecd7667020b8876349d3f7cf224422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:44:6d:55:f4:1d:96:6d:45:35:a4:29:95:
1b:11:ad:62:17:19:45:28:46:5c:68:74:f2:88:de:
16:bb:53:21:8c:70:ff:f2:b7:e1:16:5d:45:9b:ae:
cd:c0:3e:74:16:a1:11:b4:c3:47:99:cd:f8:83:c9:
6a:6c:76:14:cd:3a:ff:06:07:fa:fc:6e:29:b0:ce:
1e:2b:93:61:f4:f9:59:31:71:33:22:1b:d5:99:cd:
50:1e:3e:a8:f9:84:1f:d0:a7:92:05:9a:ab:bc:8a:
ec:7d:dd:5e:9b:72:64:b0:1d:32:6b:22:40:60:13:
00:c6:ab:e6:5c:3c:a0:21:4c:47:cf:b2:68:8b:b1:
51:15:0f:63:13:6b:51:95:34:7a:ac:f9:d7:f6:9a:
d7:0b:1e:74:31:94:54:69:da:f2:13:c6:6b:79:b0:
65:55:96:2f:e9:e5:e4:00:20:0d:82:a1:97:55:81:
04:cd:59:8b:fa:57:ce:66:c0:83:8f:d3:6d:5f:bc:
68:c8:9c:5f:4b:46:54:55:f6:68:3c:bc:6a:23:a6:
6e:9b:e7:d1:9a:81:d4:18:17:99:69:99:f7:38:b7:
51:12:aa:d7:fc:3a:ee:35:96:d2:ed:64:6e:e8:1a:
86:6e:13:38:b5:e9:3b:e2:5f:0d:35:1f:2f:24:61:
34:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C2:59:FA:41:EC:D7:66:70:20:B8:87:63:49:D3:F7:CF:22:44:22
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sMJZ-kHs12ZwILiHY0nT988iRCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.80.0/24
194.4.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:38:7b:00:cb:33:af:28:1f:1a:3a:74:e7:4a:c1:52:24:f7:
7a:35:98:4a:fd:70:a4:8c:82:d1:b5:17:34:1b:38:fb:5c:2a:
de:2f:a6:28:e9:91:f5:20:2b:0b:d5:98:9d:3e:74:ed:9a:a7:
7b:6c:e0:e9:12:84:d5:c0:e4:46:c4:4f:1f:e1:9e:0e:ff:dd:
db:a0:b8:b4:77:f4:7b:22:09:1b:ec:53:6d:8f:98:cc:ad:bb:
d4:f9:1e:de:60:27:bc:a8:bd:09:30:b1:d4:4e:fc:8c:d8:23:
f9:82:65:d8:04:17:58:89:65:da:2c:4e:ca:02:ed:2e:9d:78:
ad:56:2c:a5:19:0f:99:13:9f:97:d4:86:8f:60:09:28:48:8b:
d1:18:77:2b:a7:81:11:e6:97:d4:2f:a9:aa:d9:58:65:8b:57:
62:f5:99:05:fa:5a:a9:6d:36:f5:59:d2:82:e0:85:47:0d:d3:
a8:21:cc:74:47:72:9e:77:07:f4:5b:f2:af:1f:0b:a0:9d:40:
ec:cf:2d:68:39:72:48:36:1f:17:2a:dd:8b:a6:b0:3c:16:83:
b4:94:11:03:21:6b:f9:6a:06:ad:f6:e5:39:26:24:a5:70:2a:
cc:b7:25:22:38:28:8f:7a:d1:9d:aa:5d:f4:f8:01:70:83:9c:
88:ad:20:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 22:04:47 2024 by rpki-client on console-fra.rpki-client.org