Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/f_482ydyxNzx9GswK_Ngm9M7fqg.roa
File: f_482ydyxNzx9GswK_Ngm9M7fqg.roa (raw, json)
Hash identifier: /aEDvPx0B9npuHVDB6bSyjG8rxpfBxRoz15uREeoa4U=
Subject key identifier: 7F:FE:3C:DB:27:72:C4:DC:F1:F4:6B:30:2B:F3:60:9B:D3:3B:7E:A8
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 01917000BF072DA97EE73E47FF9068017AC9
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/f_482ydyxNzx9GswK_Ngm9M7fqg.roa
Signing time: Tue 20 Aug 2024 13:36:22 +0000
ROA not before: Tue 20 Aug 2024 13:36:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399471
IP address blocks: 85.202.168.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:00:bf:07:2d:a9:7e:e7:3e:47:ff:90:68:01:7a:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Aug 20 13:36:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ffe3cdb2772c4dcf1f46b302bf3609bd33b7ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:25:01:0a:bd:b8:79:ef:86:9b:14:84:75:b6:
f1:74:62:ab:56:a2:dc:95:2e:4d:c9:27:d2:e9:8f:
93:42:a6:8b:b7:4f:b0:a6:1b:0f:5b:66:47:f3:84:
cb:18:8c:ad:a1:ff:6f:62:37:96:af:a3:93:3d:a0:
d0:0d:c0:74:32:78:e1:63:8a:34:e8:e2:66:eb:e3:
d1:50:51:01:27:1d:27:91:6d:96:de:63:55:b3:94:
6f:fc:82:1e:40:a3:e0:21:55:6b:13:d7:20:2e:23:
9a:b6:21:ab:7f:16:c0:fa:ad:a5:e0:a0:9a:e2:a7:
56:c9:6f:60:16:a3:d0:a0:3b:2a:d0:cc:d4:1c:34:
58:5e:0c:32:49:1c:fb:36:f7:0b:90:9a:da:28:52:
aa:7b:02:54:2f:a6:f8:c1:b9:7f:58:74:95:4d:8b:
f9:2e:31:6f:9d:b7:54:61:0b:8f:04:3e:a7:2c:ab:
75:52:fb:a7:5d:8e:01:b3:6d:a3:63:1d:e3:92:1e:
bd:88:4a:d5:b4:76:67:53:49:1c:f9:fa:e3:96:7a:
9b:ee:12:86:7b:af:5e:11:e0:ad:e2:32:26:d9:23:
b0:31:54:99:5c:dd:8e:e5:d1:51:10:b8:9f:43:cb:
b8:e6:d2:33:06:94:b1:cf:02:ef:0c:76:da:32:86:
68:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FE:3C:DB:27:72:C4:DC:F1:F4:6B:30:2B:F3:60:9B:D3:3B:7E:A8
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/f_482ydyxNzx9GswK_Ngm9M7fqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.168.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:a5:e3:aa:18:26:b2:2a:32:26:98:ef:2b:31:a8:99:06:53:
81:3b:23:92:10:f8:76:a8:c2:22:e8:d5:20:e6:e1:ff:b3:94:
8c:02:7b:aa:a1:4e:e3:78:59:67:bd:ed:f6:c1:6d:fb:13:4c:
d9:e7:d9:f7:67:f8:28:87:00:e0:7e:f4:42:61:cc:ec:ab:4c:
b6:78:dc:8e:ed:9e:d0:9f:db:cb:e8:f8:de:79:6d:66:a5:72:
73:d4:a1:4a:04:ce:c8:45:8c:09:55:be:78:82:f2:1b:1a:12:
a1:ca:87:50:f1:3f:02:2d:fb:3a:b2:9e:c2:1f:0e:b1:41:8b:
b9:ca:3b:af:fb:46:48:04:0e:c1:01:4e:f5:eb:86:7e:ac:a5:
b8:68:84:1b:1d:2e:25:17:80:7c:5e:d2:14:9e:fc:a1:75:de:
be:67:16:e2:e4:b0:a4:e6:c1:c0:e9:cd:ea:c1:3c:f6:13:d9:
4a:00:4a:3f:ae:86:b8:e5:ac:55:12:6d:bd:d3:4f:87:90:41:
1c:e3:37:ae:23:5f:a0:07:76:df:a7:ad:10:80:43:41:8c:4f:
7a:4e:10:27:08:69:37:65:4a:f2:2a:80:74:3f:9b:de:4c:68:
c3:dd:b8:d1:2e:c7:88:d3:d4:f4:62:b4:83:81:6d:71:93:dc:
92:17:10:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:54:04 2024 by rpki-client on console-fra.rpki-client.org