Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/JyaL2Rz_Z_DybEA2Fdl4NZtsycQ.roa
File: JyaL2Rz_Z_DybEA2Fdl4NZtsycQ.roa (raw, json)
Hash identifier: jo+xOFODGcZ45pNn8QJNTde1EGD1ZgKV9LqCC1Fs42Q=
Subject key identifier: 27:26:8B:D9:1C:FF:67:F0:F2:6C:40:36:15:D9:78:35:9B:6C:C9:C4
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 0190742A2A637F8374B2D06A990662481EE5
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/JyaL2Rz_Z_DybEA2Fdl4NZtsycQ.roa
Signing time: Tue 02 Jul 2024 15:57:18 +0000
ROA not before: Tue 02 Jul 2024 15:57:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59633
IP address blocks: 185.149.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:2a:2a:63:7f:83:74:b2:d0:6a:99:06:62:48:1e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Jul 2 15:57:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27268bd91cff67f0f26c403615d978359b6cc9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:49:13:60:ab:65:be:ab:2b:28:8c:f4:99:22:
4d:e7:e8:7b:d7:54:5e:04:46:76:6a:f4:0b:d7:c8:
72:55:60:c8:13:3b:51:be:0f:4e:96:79:64:c0:25:
4b:26:56:f1:29:4d:4b:fe:6c:ff:39:48:54:8d:20:
39:a7:99:09:81:f2:e9:20:6f:c8:f3:fa:21:ea:c2:
99:de:eb:3a:56:80:0b:5a:c7:03:e4:df:02:ae:99:
20:7d:a0:1c:90:21:51:fa:30:e1:cf:e5:40:1e:6d:
34:98:05:c4:5f:92:e5:9e:d4:8b:0f:43:d3:4e:36:
be:70:c4:ad:8e:06:63:8e:0f:97:80:c8:7d:0a:f8:
e3:b3:c8:05:78:4e:4c:62:cd:6e:85:9f:25:57:50:
91:49:42:db:0a:e3:16:b2:51:d6:89:85:a7:16:71:
19:d9:0b:15:89:59:d9:ef:35:7f:b4:fa:fe:83:05:
24:ae:d4:52:d3:81:61:b4:e1:60:6e:68:9e:f8:49:
96:09:28:f8:c4:02:d5:18:19:a7:c6:98:f7:dc:7c:
b1:d2:ed:d3:d1:79:9f:55:fe:90:d2:1e:86:c9:ac:
c9:01:f8:ef:38:c5:9e:1e:89:e8:11:4c:63:3b:e0:
bf:c7:b3:92:f7:fe:88:3c:5c:be:14:03:2b:58:20:
03:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:8B:D9:1C:FF:67:F0:F2:6C:40:36:15:D9:78:35:9B:6C:C9:C4
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/JyaL2Rz_Z_DybEA2Fdl4NZtsycQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.122.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:74:d1:4c:cb:47:45:8b:cb:0e:e2:7c:ed:db:9e:fd:9a:f6:
20:a9:66:57:e8:d4:4b:7f:3c:4f:d5:be:b7:86:3c:11:07:92:
7b:b3:2a:f6:9f:7a:da:2e:01:bc:4d:b7:88:08:75:9f:2a:38:
6c:1d:9e:f8:8d:f3:fb:40:7e:bf:e3:4d:01:33:bc:9c:26:8a:
49:1c:ff:db:e2:3b:3a:95:67:3f:d4:b6:f3:13:48:c6:d1:8c:
92:c9:99:52:5e:fb:92:d8:7a:ed:7a:8a:92:42:c1:d3:35:c7:
14:d4:45:b6:4d:83:03:e2:b6:40:c9:56:6a:2e:18:44:3d:d9:
43:46:da:01:b2:0e:c3:6a:b5:d0:f8:0e:2d:96:df:83:1e:45:
a8:aa:0a:f2:95:f6:5e:a4:98:e7:4e:3f:25:80:fb:de:00:9e:
c1:20:b8:d4:d9:42:46:53:c6:fe:97:c8:99:32:d1:b1:4d:9d:
94:c1:b1:90:49:49:9d:c8:3c:89:6f:18:98:00:cf:20:ab:2d:
9c:38:85:ac:09:a8:3d:42:0a:04:ca:51:54:bf:0e:a2:bd:d1:
40:5c:79:ad:6a:94:7d:fe:e6:2c:b7:39:07:ae:b8:38:7e:1f:
bf:b5:61:18:cc:10:e6:bc:a0:5f:89:d7:00:cd:5e:21:da:6c:
aa:87:7c:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:47:27 2024 by rpki-client on console-fra.rpki-client.org