Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g3nlyhmvn7dBmbyCnQ5EXvcQGZA.roa
File: g3nlyhmvn7dBmbyCnQ5EXvcQGZA.roa (raw, json)
Hash identifier: Xe0IsmZCCVa9jHOzBPRYe1kSMo3RLNw1GT17fLxfW7U=
Subject key identifier: 83:79:E5:CA:19:AF:9F:B7:41:99:BC:82:9D:0E:44:5E:F7:10:19:90
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01933E0DC58E3F4EB9EBE0BAA67C2DA6F7AF
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g3nlyhmvn7dBmbyCnQ5EXvcQGZA.roa
Signing time: Mon 18 Nov 2024 06:55:09 +0000
ROA not before: Mon 18 Nov 2024 06:55:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 89.35.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3e:0d:c5:8e:3f:4e:b9:eb:e0:ba:a6:7c:2d:a6:f7:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 18 06:55:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8379e5ca19af9fb74199bc829d0e445ef7101990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:27:75:23:b6:06:ae:d1:18:db:29:38:6b:40:
91:65:27:03:82:3d:ec:f3:cf:dc:47:ef:ae:ec:d3:
2b:85:f0:32:15:da:14:91:6a:2e:41:21:39:dd:3c:
35:d6:5e:00:4c:40:1b:99:d6:b6:10:df:70:97:a0:
a0:86:35:0c:c8:e9:82:ab:fc:a0:4c:f3:b9:0d:09:
a3:f0:88:88:64:b1:0c:09:d4:9e:a2:29:0b:a4:06:
35:a4:1d:4c:34:23:1b:7d:ae:69:c6:b8:38:5e:cb:
ee:e9:a6:53:9d:52:66:74:40:9d:2e:d0:13:89:eb:
20:f6:07:15:b7:24:d9:88:13:e0:f1:58:b1:41:b3:
fd:e4:ae:d3:6d:b6:56:85:70:ff:64:77:00:7a:07:
6b:0a:ea:7e:7d:48:c0:a3:9f:11:72:86:b3:2f:1b:
11:d8:97:6c:c5:75:9b:15:ca:8e:8c:5b:16:02:51:
27:c6:4d:b3:28:84:9e:91:75:27:68:14:96:32:6d:
9e:ad:bc:8c:1e:01:4e:9d:f1:f0:d0:8c:f3:5b:8e:
b6:1e:3b:f2:0c:06:22:7e:a3:d7:07:26:f8:a0:55:
bf:13:0d:2a:94:40:ce:e9:14:7a:71:3a:b2:c9:03:
b0:50:9e:d4:c3:3f:55:1b:cc:c6:dd:41:de:c8:ed:
60:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:79:E5:CA:19:AF:9F:B7:41:99:BC:82:9D:0E:44:5E:F7:10:19:90
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g3nlyhmvn7dBmbyCnQ5EXvcQGZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.119.0/24
Signature Algorithm: sha256WithRSAEncryption
40:37:8a:5f:2e:f0:dd:04:e8:68:3f:96:74:6f:35:d3:67:08:
15:a8:6f:e5:a6:c0:ec:39:60:63:d3:fd:07:e8:77:96:9a:0f:
97:68:1e:7a:f4:ff:38:80:31:2a:38:77:29:8c:89:cb:7b:f5:
f1:cc:06:33:f6:39:47:59:1c:f6:11:2b:68:df:14:df:ef:14:
38:be:a2:c5:43:9d:e3:dc:72:98:3f:df:3d:8f:c4:d7:f0:93:
9c:d8:d5:eb:6b:fe:af:f7:8f:2e:e1:50:e0:8b:7f:dc:f7:f1:
39:65:64:5a:55:e0:5c:23:ca:37:7c:f5:a8:60:40:51:1b:67:
11:d2:02:9c:4b:7a:11:75:a8:02:58:ba:2b:37:bb:da:59:ab:
c0:fc:15:f6:51:22:64:8a:96:b2:48:01:7d:64:5a:83:41:16:
b1:fe:14:5d:02:72:71:2b:dc:f1:e6:77:88:33:79:42:4e:b9:
cc:82:55:93:2d:c9:c1:30:2b:34:97:09:f2:8d:c9:74:85:c0:
94:97:8f:3b:db:38:86:00:28:2f:78:1a:dc:38:94:4b:5d:ce:
96:e1:3d:34:22:d5:66:b5:90:07:a1:b9:6c:80:98:1a:10:0c:
b9:02:30:56:b1:d0:e2:ef:00:dd:43:1c:f2:7f:3b:96:94:7e:
9c:cd:96:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:54:10 2024 by rpki-client on console-fra.rpki-client.org