Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/B2y_pF84whZjNQztzlMUugxQzjU.roa
File: B2y_pF84whZjNQztzlMUugxQzjU.roa (raw, json)
Hash identifier: gPsweXyy5FPiA0U8XRBCFQOaHFA04Tj+BtaShiSrZk4=
Subject key identifier: 07:6C:BF:A4:5F:38:C2:16:63:35:0C:ED:CE:53:14:BA:0C:50:CE:35
Certificate issuer: /CN=d4ca55d2e3b9163cc488b6f7abe62eb26e7a8c38
Certificate serial: 018EF0C2DBC2FF050568D6559CC7FAB0D5EC
Authority key identifier: D4:CA:55:D2:E3:B9:16:3C:C4:88:B6:F7:AB:E6:2E:B2:6E:7A:8C:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MpV0uO5FjzEiLb3q-Yusm56jDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/B2y_pF84whZjNQztzlMUugxQzjU.roa
Signing time: Thu 18 Apr 2024 10:31:25 +0000
ROA not before: Thu 18 Apr 2024 10:31:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42824
IP address blocks: 193.104.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/1MpV0uO5FjzEiLb3q-Yusm56jDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/1MpV0uO5FjzEiLb3q-Yusm56jDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MpV0uO5FjzEiLb3q-Yusm56jDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:c2:db:c2:ff:05:05:68:d6:55:9c:c7:fa:b0:d5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ca55d2e3b9163cc488b6f7abe62eb26e7a8c38
Validity
Not Before: Apr 18 10:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=076cbfa45f38c21663350cedce5314ba0c50ce35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:17:2d:54:ed:17:65:4e:51:fa:cb:ec:c7:71:
b2:3e:b3:30:21:eb:df:73:00:95:4f:72:df:8e:e6:
8a:29:c5:00:65:bd:87:cc:64:af:7d:e7:34:ea:5e:
d8:94:80:ca:1b:82:38:31:00:5d:31:25:ec:e9:97:
a1:fb:cc:e1:90:63:09:b3:b4:fa:27:d1:4d:37:c3:
7f:68:1c:72:d9:15:29:d1:d6:ce:cb:f5:89:0f:00:
3c:b9:3e:8a:6c:c7:10:3c:e7:c9:88:48:ba:8b:3f:
1b:b8:48:e8:98:71:ac:c5:bb:f8:5b:eb:fb:99:93:
99:e8:7c:c5:c6:3d:02:4c:cb:21:e9:36:86:8d:ea:
c2:29:12:29:ab:b5:d3:4f:8b:71:bc:bd:7c:9d:03:
5b:8a:11:49:3f:75:9b:00:df:1b:8f:39:40:9a:d3:
d4:4f:11:86:99:56:2c:54:cc:8c:da:f0:bb:95:2a:
e8:69:a8:58:5e:c0:7f:08:87:af:df:35:5b:67:ae:
6c:94:e7:ad:18:34:c1:4f:53:2d:b6:84:5d:8f:a7:
7c:6b:4e:2f:ad:b6:40:fb:ab:6b:ee:a6:61:fe:04:
a1:aa:6d:92:c8:11:be:42:4f:ff:56:b2:40:f7:ee:
05:8f:c2:f5:b3:0c:59:54:fc:93:04:bf:52:47:10:
37:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6C:BF:A4:5F:38:C2:16:63:35:0C:ED:CE:53:14:BA:0C:50:CE:35
X509v3 Authority Key Identifier:
keyid:D4:CA:55:D2:E3:B9:16:3C:C4:88:B6:F7:AB:E6:2E:B2:6E:7A:8C:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MpV0uO5FjzEiLb3q-Yusm56jDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/B2y_pF84whZjNQztzlMUugxQzjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1c605b-17b3-4833-a03a-a4f01293cc05/1/1MpV0uO5FjzEiLb3q-Yusm56jDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.189.0/24
Signature Algorithm: sha256WithRSAEncryption
37:af:c3:37:bb:99:93:ac:87:66:60:7b:2e:86:b6:27:ae:32:
e3:0e:93:01:d7:03:e9:0f:81:69:58:b6:3c:cc:ac:1f:0b:3f:
77:03:0d:ea:a5:d8:d1:4f:90:db:a3:44:11:29:30:9f:35:f9:
62:9a:72:70:4a:03:6d:9b:a5:da:d9:23:06:cb:28:67:a9:01:
76:63:8a:f2:56:af:df:fb:75:3d:69:a9:6d:c7:31:2f:e9:f1:
f0:95:b5:4a:f9:9d:84:71:9b:59:fb:96:81:22:27:0f:cd:2b:
19:f0:2b:d9:22:2c:95:99:1d:69:5d:4e:ea:7e:cd:9f:a5:1a:
a8:e7:8e:cb:c2:24:47:10:35:6c:01:16:ec:3f:b2:17:f1:b2:
db:1d:c6:01:3f:ef:53:a8:0f:1a:b4:d4:dd:cf:0b:b1:3f:3b:
40:3e:01:85:43:4b:c0:93:52:2b:2c:8f:d0:22:d5:0d:69:82:
44:4c:fc:ff:06:53:49:00:29:4b:5a:d4:8c:78:10:6e:6d:95:
ea:07:9e:1b:27:1b:1a:d9:15:74:dc:89:2b:f9:47:7b:59:70:
7c:f3:bc:e8:34:a6:eb:6f:6c:e1:0c:35:51:8d:98:df:58:82:
bb:72:db:f2:7c:87:ab:b8:a3:c4:24:8a:c8:3d:da:9e:c7:c8:
cb:55:6a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 23:52:00 2024 by rpki-client on console-fra.rpki-client.org