Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/9qPOZ2oLq0dEOMzsdfl4Ni0LHu8.roa
File: 9qPOZ2oLq0dEOMzsdfl4Ni0LHu8.roa (raw, json)
Hash identifier: 5lczE5uODbAom7JKwqTjzMx10fVu0Tjhs3dKhLW4kb4=
Subject key identifier: F6:A3:CE:67:6A:0B:AB:47:44:38:CC:EC:75:F9:78:36:2D:0B:1E:EF
Certificate issuer: /CN=3d98a3b62d5abb1dcaf68ae23f531ee82240f203
Certificate serial: 018CC802DDA7CB83DABBB952C7C289304182
Authority key identifier: 3D:98:A3:B6:2D:5A:BB:1D:CA:F6:8A:E2:3F:53:1E:E8:22:40:F2:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZijti1aux3K9oriP1Me6CJA8gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/9qPOZ2oLq0dEOMzsdfl4Ni0LHu8.roa
Signing time: Tue 02 Jan 2024 02:31:20 +0000
ROA not before: Tue 02 Jan 2024 02:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9022
IP address blocks: 193.21.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/PZijti1aux3K9oriP1Me6CJA8gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/PZijti1aux3K9oriP1Me6CJA8gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZijti1aux3K9oriP1Me6CJA8gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:dd:a7:cb:83:da:bb:b9:52:c7:c2:89:30:41:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d98a3b62d5abb1dcaf68ae23f531ee82240f203
Validity
Not Before: Jan 2 02:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6a3ce676a0bab474438ccec75f978362d0b1eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:a8:58:97:06:75:9b:59:b3:75:a0:46:e5:
34:3b:0e:7a:bc:3a:ee:a8:b0:aa:5f:83:5b:3a:d1:
e4:05:7f:c7:d5:f6:90:a7:f1:2a:1f:bc:27:a1:ef:
26:dc:53:da:bc:3f:93:be:d1:ae:9c:1b:7c:7d:61:
d8:b3:99:00:4f:d9:b3:0b:98:11:44:e3:28:0f:08:
ab:51:3d:74:33:16:9e:01:c3:11:a5:86:db:27:c9:
ba:49:92:37:bc:c3:3f:e5:d7:d3:3f:77:5d:e9:bb:
81:45:6c:c4:83:b7:7f:a3:68:9a:5f:bf:89:a6:45:
8a:6c:b2:b7:56:2b:41:74:b7:ce:0d:03:79:bf:39:
b0:46:d4:b4:53:00:d4:53:a0:d5:1b:23:f4:ca:21:
fb:9e:1a:7c:d9:e1:34:9a:90:93:fc:52:99:be:12:
d7:91:14:69:e1:44:29:ea:f5:d0:4c:1b:41:99:57:
6f:b5:fe:c3:a9:59:13:e6:1f:0e:15:a3:b2:f0:69:
28:79:4b:ac:68:49:f0:2d:1c:63:97:d4:86:b8:ac:
c3:a2:7b:a0:ab:aa:09:af:54:a0:62:fd:d6:2b:1b:
0c:3d:fe:2d:93:e8:48:95:d5:5a:05:75:3b:5e:76:
d0:b6:31:5a:a6:40:ed:5e:2c:0b:c5:e9:ca:9e:9e:
c4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A3:CE:67:6A:0B:AB:47:44:38:CC:EC:75:F9:78:36:2D:0B:1E:EF
X509v3 Authority Key Identifier:
keyid:3D:98:A3:B6:2D:5A:BB:1D:CA:F6:8A:E2:3F:53:1E:E8:22:40:F2:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZijti1aux3K9oriP1Me6CJA8gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/9qPOZ2oLq0dEOMzsdfl4Ni0LHu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/PZijti1aux3K9oriP1Me6CJA8gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.21.251.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:de:84:c7:8b:23:1e:ed:ae:e8:56:b9:6b:ea:cc:36:a7:bd:
0c:0c:7c:b8:61:45:4b:9d:93:b7:03:c1:1f:b2:74:4b:e9:69:
92:20:fc:01:47:08:10:3b:bf:89:95:32:ef:5e:d2:85:bb:52:
93:56:05:16:57:a1:32:f1:b0:5b:1c:f3:2b:a0:5c:ca:42:37:
89:5e:d5:0f:52:35:4a:eb:39:5c:f6:5e:62:ca:75:10:f6:3a:
e8:9a:37:54:47:82:06:c3:76:06:43:fb:39:3c:1b:9b:c4:26:
8c:68:20:32:d5:5f:94:86:71:72:92:b9:52:67:1b:80:5b:5e:
6a:30:18:6d:7e:c8:7a:a0:06:c2:90:f5:8c:22:d5:ac:89:f5:
41:6b:10:fd:15:ad:ec:3c:21:2f:fd:54:67:6b:5d:70:6f:38:
4a:cf:0e:e0:0c:b0:4b:1c:a0:64:9b:88:e6:d3:91:7a:5f:03:
db:4a:2e:91:1c:16:96:ae:69:b5:0d:84:5c:33:48:ef:d4:a0:
8f:fa:a1:fd:df:f6:8f:8d:4a:2a:a5:8a:d8:e2:58:f6:be:8c:
4d:d2:dd:50:ca:c1:41:22:f0:ab:56:c6:13:d2:8e:27:24:63:
cc:47:4f:d1:02:fc:16:30:e5:20:74:9f:cd:db:13:39:9a:aa:
2b:04:99:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:19:56 2024 by rpki-client on console-ams.rpki-client.org