Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l1PmOT5sQRutdgi5SLIX8JYEeEY.roa
File: l1PmOT5sQRutdgi5SLIX8JYEeEY.roa (raw, json)
Hash identifier: iG+gE+AnOIuqrDxTqkZvUakjrlEnXS4voyyOKXR500A=
Subject key identifier: 97:53:E6:39:3E:6C:41:1B:AD:76:08:B9:48:B2:17:F0:96:04:78:46
Certificate issuer: /CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Certificate serial: 018CC26D4ADE9F4D7AD4EF23E710409FFABE
Authority key identifier: 0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l1PmOT5sQRutdgi5SLIX8JYEeEY.roa
Signing time: Mon 01 Jan 2024 00:29:51 +0000
ROA not before: Mon 01 Jan 2024 00:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60664
IP address blocks: 92.43.50.0/23 maxlen: 23
185.97.178.0/24 maxlen: 24
185.97.177.0/24 maxlen: 24
185.97.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4a:de:9f:4d:7a:d4:ef:23:e7:10:40:9f:fa:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Validity
Not Before: Jan 1 00:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9753e6393e6c411bad7608b948b217f096047846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f1:1e:51:1b:85:9e:11:2c:31:6d:be:14:9f:
75:c7:73:6b:70:44:b2:d4:42:4e:63:fd:e2:75:6b:
15:18:94:df:ff:42:bc:00:44:2b:33:c2:5e:4c:81:
b4:35:7f:3a:24:21:f6:0d:f9:70:12:71:9b:0f:60:
37:0c:93:e6:58:3c:22:14:3f:d4:d7:e3:24:a2:a6:
8f:66:12:f8:21:d7:d6:2a:4f:5b:78:80:e4:c9:17:
52:3f:5e:d6:fb:a4:62:fc:d8:7a:33:9e:2e:60:51:
42:ad:6e:ab:ba:5a:02:65:38:f3:bf:7e:34:ca:2a:
ed:31:04:18:5c:90:e6:f3:ba:ce:a2:4d:fe:16:c6:
d3:cf:3d:95:7a:10:ad:ef:cf:b6:84:ca:58:f6:3e:
1a:d4:69:82:f5:61:4e:45:5d:b7:7b:4a:74:26:40:
bb:ab:f5:eb:b8:f3:ad:0b:af:3c:16:a8:ef:b7:79:
63:16:cd:2a:53:33:fd:18:4a:f0:4e:a3:f5:0d:f9:
e2:50:cb:2f:a5:eb:08:03:23:7e:97:71:28:95:a8:
18:07:46:1c:72:6b:d7:3f:61:4c:44:27:78:0d:8c:
02:ba:f2:2a:41:24:55:2a:3c:90:70:a1:e2:93:64:
7a:a3:ef:7e:3a:19:bb:87:39:58:92:12:48:5c:6d:
d2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:53:E6:39:3E:6C:41:1B:AD:76:08:B9:48:B2:17:F0:96:04:78:46
X509v3 Authority Key Identifier:
keyid:0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/l1PmOT5sQRutdgi5SLIX8JYEeEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.50.0/23
185.97.176.0-185.97.178.255
Signature Algorithm: sha256WithRSAEncryption
31:b2:fb:50:a3:ec:62:5a:23:ff:85:d7:45:74:9d:88:77:a7:
32:fd:57:d7:09:bf:e9:75:9e:91:0c:38:62:fd:74:f4:4d:ff:
b5:27:08:6b:87:e2:9d:f0:1b:a7:5c:37:a8:49:44:20:da:00:
2a:a4:2d:04:29:05:0c:71:35:ba:d8:32:e2:97:76:f5:98:3c:
16:43:bd:92:14:40:f2:a0:c0:98:22:05:12:1e:fb:61:7d:43:
e3:e1:7f:f4:29:ad:65:4a:75:3d:07:67:18:57:c1:49:9f:4a:
7e:68:84:da:90:eb:23:a5:f3:b8:3e:cd:16:c9:4b:71:ea:f3:
5c:82:3b:60:c4:a8:2d:db:94:1e:9f:cb:14:90:59:de:1d:20:
7b:bd:80:77:cb:af:2c:5d:8e:64:50:1f:50:79:77:bc:43:b9:
99:31:59:ad:3e:1e:e5:d6:8d:70:3a:34:4a:23:a9:2f:26:20:
f3:19:63:00:36:42:ef:cc:24:47:36:a8:d8:09:54:97:4c:51:
0c:0f:ce:2f:cf:9c:d9:26:82:0e:e7:38:ed:33:76:97:87:23:
75:5c:97:98:64:8a:f9:21:df:26:f1:25:e5:da:78:60:01:78:
75:80:06:34:c0:c7:b4:61:d5:bb:f4:8d:00:b1:91:a4:11:6e:
bb:eb:39:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 18:10:35 2024 by rpki-client on console-fra.rpki-client.org