Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/oszc4jibPLjoL4SC3l6ARZsssM0.roa
File: oszc4jibPLjoL4SC3l6ARZsssM0.roa (raw, json)
Hash identifier: 3dJGRtW4sh/wQA5sMR76aNFCzXcFEzEbIM/coacbczQ=
Subject key identifier: A2:CC:DC:E2:38:9B:3C:B8:E8:2F:84:82:DE:5E:80:45:9B:2C:B0:CD
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 018FBF8DA68A050108FCB8252DDE1266EDEC
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/oszc4jibPLjoL4SC3l6ARZsssM0.roa
Signing time: Tue 28 May 2024 14:14:42 +0000
ROA not before: Tue 28 May 2024 14:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206804
IP address blocks: 37.0.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:8d:a6:8a:05:01:08:fc:b8:25:2d:de:12:66:ed:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: May 28 14:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2ccdce2389b3cb8e82f8482de5e80459b2cb0cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8c:95:0c:e3:d0:89:e8:7e:34:3c:5b:32:b2:
1f:f4:b7:00:50:fe:0c:fb:52:13:b8:68:93:d0:73:
88:28:7c:39:22:4b:6e:78:d4:f1:39:9f:b9:1c:8d:
8d:7a:cd:f4:28:7d:48:68:98:46:67:45:cf:a0:6b:
51:42:10:55:32:8e:12:fc:e1:ac:14:8b:2d:d0:66:
4f:87:2d:1d:da:69:a4:f9:82:19:2d:75:1c:99:f4:
36:9d:e6:a5:72:5b:30:ee:73:9a:47:72:97:67:9f:
46:00:51:03:6e:6e:4e:66:dc:cf:be:b9:eb:88:00:
bd:aa:5e:93:33:e9:44:e9:a5:c2:22:1d:e3:a7:c5:
be:27:73:cc:f6:31:2c:2a:bd:04:dc:eb:96:f8:ce:
6b:c8:1e:83:99:b5:68:ae:db:6d:3a:b8:cb:f2:00:
9b:5e:48:27:28:6b:29:24:a9:ff:75:ab:83:86:b7:
9c:ce:7f:d7:10:a8:b2:a6:d7:d8:e4:ae:bf:86:80:
2c:ed:78:13:43:db:77:1b:2d:1a:b2:e3:7a:02:ba:
9a:94:f6:1f:91:01:02:b1:3d:62:5e:3d:77:fa:8d:
14:76:b8:d0:7a:7e:e6:53:b2:fa:55:f3:df:b0:e3:
57:3d:71:dd:8b:02:f2:e1:27:f0:c4:49:cf:ef:d8:
c4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CC:DC:E2:38:9B:3C:B8:E8:2F:84:82:DE:5E:80:45:9B:2C:B0:CD
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/oszc4jibPLjoL4SC3l6ARZsssM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.12.0/24
Signature Algorithm: sha256WithRSAEncryption
04:cd:8e:b9:b6:d9:d4:fc:9f:bc:9e:47:4a:fb:8e:4c:ad:74:
61:38:40:df:55:44:fc:99:34:d0:6c:c9:da:fa:bf:3c:a0:ae:
ff:cb:20:f9:4b:9b:71:1a:d6:a9:34:34:12:03:42:f0:da:96:
a2:2a:bd:1f:9b:31:cf:4c:c1:93:cd:7a:60:16:75:5f:2d:66:
55:03:fd:a9:b4:e0:65:e8:b0:54:7c:ce:74:1b:7b:4b:40:72:
d2:6c:d0:1b:6a:4f:e2:ab:2b:7c:65:e6:56:1c:86:44:92:7f:
9a:dd:2b:ff:b6:4f:8f:a8:5d:d2:39:31:f8:67:ae:da:e1:a7:
39:bc:1d:04:8d:b0:92:8c:80:9f:c9:e5:08:68:86:63:f2:81:
bf:0d:f1:2e:15:d9:bb:3b:b6:29:7f:eb:7d:47:57:d0:1f:df:
5a:64:f5:ad:d7:54:14:9d:00:9d:1c:ce:b4:19:6b:b6:2f:76:
ac:3c:07:db:ec:51:e3:79:7f:bd:3b:b9:33:30:56:6f:c4:81:
42:d0:99:7c:2f:a6:75:ef:74:17:2b:c6:8b:13:a8:fa:b7:c1:
ed:d9:13:8a:e9:55:d9:e9:17:16:4a:04:cb:c1:66:b0:e6:2d:
dc:a6:ce:4f:87:36:ce:50:17:2b:ad:e6:37:20:ea:4e:a3:69:
c2:5c:76:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:26:58 2024 by rpki-client on console-ams.rpki-client.org