Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/1-sO9TeI7neZ-f-VTM8X1TmoTyzg.roa
File: 1-sO9TeI7neZ-f-VTM8X1TmoTyzg.roa (raw, json)
Hash identifier: w6jHoMj8lJ6W9EKGavClt5BsCD8O0FLtTiplmXW/b+k=
Subject key identifier: FA:C3:BD:4D:E2:3B:9D:E6:7E:7F:E5:53:33:C5:F5:4E:6A:13:CB:38
Certificate issuer: /CN=8f2ae45c509041a796a968953581f51d45bfce55
Certificate serial: 018CC86FADEFC555AD02176C1CC954F5BC5F
Authority key identifier: 8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/1-sO9TeI7neZ-f-VTM8X1TmoTyzg.roa
Signing time: Tue 02 Jan 2024 04:30:11 +0000
ROA not before: Tue 02 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 77.75.112.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.mft
rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ad:ef:c5:55:ad:02:17:6c:1c:c9:54:f5:bc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2ae45c509041a796a968953581f51d45bfce55
Validity
Not Before: Jan 2 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fac3bd4de23b9de67e7fe55333c5f54e6a13cb38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fd:a8:90:fd:44:99:1b:3e:58:8c:fd:d4:76:
46:22:55:d7:e4:0e:01:7f:32:3e:ca:1c:46:58:43:
97:51:1e:f6:e8:41:d6:a0:00:26:07:48:bf:f7:8f:
92:ea:f3:c2:bc:2a:41:a6:da:01:52:4d:a4:65:8b:
ca:12:eb:94:08:1d:d6:cb:61:bd:2c:64:d1:29:a8:
48:a7:4d:00:32:e0:41:a1:79:0a:24:f2:75:c3:f6:
31:84:69:56:43:17:21:2b:bb:11:fa:8f:00:d9:0a:
a2:c9:d6:26:34:80:34:e4:e9:60:42:e6:ad:d9:e5:
41:ad:84:e2:6f:0f:95:4f:87:97:18:35:36:d3:f8:
20:ae:39:1a:c5:f9:cb:8f:ec:e1:ee:1e:29:0e:19:
4a:b4:f7:a4:39:77:0e:bd:ef:40:a1:27:85:46:44:
01:6a:40:dd:a7:43:0a:9c:ee:8d:28:3d:84:c1:d8:
93:1e:fb:e5:ff:13:38:46:67:2c:c5:88:f9:5c:b3:
0d:68:a7:c4:d4:f5:d5:3a:83:b7:3f:4f:16:3a:c0:
8a:65:51:cf:ff:5a:2e:85:b5:22:da:57:81:0c:49:
ed:67:1f:74:b1:4f:cf:9c:82:33:99:9a:3a:49:4a:
70:d0:33:66:99:2d:3a:a6:bf:45:8a:12:cc:e5:41:
21:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C3:BD:4D:E2:3B:9D:E6:7E:7F:E5:53:33:C5:F5:4E:6A:13:CB:38
X509v3 Authority Key Identifier:
keyid:8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/1-sO9TeI7neZ-f-VTM8X1TmoTyzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.112.0/21
Signature Algorithm: sha256WithRSAEncryption
10:68:36:21:c3:d4:9a:f1:18:9b:c8:26:63:7d:04:ec:ee:e3:
aa:6e:31:30:63:ee:ae:bd:cb:55:02:c5:2b:01:6d:d6:85:91:
61:6d:27:19:20:9f:15:a4:7e:c6:02:1b:b6:85:69:ad:15:b1:
65:70:c0:79:e8:34:f5:9a:e7:02:b1:6c:eb:6a:fc:b1:1b:2c:
c7:e5:35:c7:9e:f7:fd:88:42:25:c7:20:de:ca:d8:af:4f:47:
2e:a4:cc:4c:d8:11:ea:af:51:6e:a6:ce:ff:a3:a1:02:33:e6:
f7:89:6a:75:1f:d8:2c:64:1b:30:f3:b3:d0:8e:11:3f:7a:1b:
f4:92:14:c1:9a:36:7f:c5:46:3a:bd:91:ec:2b:1e:08:f2:5f:
72:78:35:89:29:23:6e:45:c8:b2:23:75:a3:c7:3e:1e:bc:93:
1e:f2:3e:63:70:19:fb:a4:68:bb:da:54:27:52:80:08:8c:44:
52:b6:9c:c4:02:f9:7d:93:0d:ba:e9:ad:59:7c:dd:79:6e:c2:
56:e8:36:28:65:39:1c:54:5e:e5:b5:34:8c:77:8d:af:ff:5c:
2a:0e:aa:90:9c:77:73:fc:a4:fb:23:5e:b0:a1:3a:14:69:c4:
55:e3:04:e0:f1:27:1d:b4:f1:d1:53:2b:f9:95:89:46:d5:a4:
2b:bf:ab:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:22:13 2024 by rpki-client on console-ams.rpki-client.org