Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/nY9WTpmUEGZkmE_VupP-WWfJl-g.roa
File: nY9WTpmUEGZkmE_VupP-WWfJl-g.roa (raw, json)
Hash identifier: dZOgOkwi1dT5Nr+d5x9P6LSsn+TYCydDKYrdJavua7k=
Subject key identifier: 9D:8F:56:4E:99:94:10:66:64:98:4F:D5:BA:93:FE:59:67:C9:97:E8
Certificate issuer: /CN=f811fa5eff370bc36d0e3929625e3414081a2392
Certificate serial: 018CC8DD979FF64A8681A2298807ED88CBF5
Authority key identifier: F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/nY9WTpmUEGZkmE_VupP-WWfJl-g.roa
Signing time: Tue 02 Jan 2024 06:30:14 +0000
ROA not before: Tue 02 Jan 2024 06:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205063
IP address blocks: 94.127.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 May 2024 13:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:97:9f:f6:4a:86:81:a2:29:88:07:ed:88:cb:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f811fa5eff370bc36d0e3929625e3414081a2392
Validity
Not Before: Jan 2 06:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d8f564e9994106664984fd5ba93fe5967c997e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d2:05:31:0a:0d:c7:04:70:40:aa:6e:a8:eb:
a7:28:42:36:3d:f6:23:af:6d:23:96:5e:0a:ab:f0:
1a:9c:75:cd:f9:65:9b:3e:de:b5:a3:6d:d1:e1:82:
4a:dc:2b:aa:a9:bd:12:0c:f8:9d:02:ee:0a:c5:a6:
c1:4f:1e:fd:69:54:98:c2:7a:5b:28:01:3c:bb:76:
74:8b:70:b1:02:6e:0b:ec:a0:54:4d:4f:48:47:ab:
40:af:49:75:b7:20:24:b0:50:53:cd:f1:66:19:15:
85:c4:72:30:5c:94:b2:83:12:99:a7:95:38:56:93:
15:59:24:35:46:11:cb:aa:bf:f2:a5:57:39:a8:3d:
4b:f6:3f:9c:e2:90:39:ce:43:02:9b:ff:dc:79:21:
ec:a4:f0:70:75:62:94:93:80:20:3b:c0:39:56:d7:
3d:56:79:e9:68:a7:c2:54:96:e4:52:6c:82:f0:93:
92:68:b0:0a:21:c0:71:f4:22:ac:f5:1a:72:83:90:
07:64:01:f9:ea:27:1a:3d:60:60:a3:68:67:fe:92:
cd:73:25:83:aa:a2:19:da:42:3d:42:ac:55:2c:75:
bf:40:98:2a:f6:76:38:bc:19:36:d8:61:69:f7:3f:
77:6c:2f:d4:ff:5a:71:c3:9c:bb:21:a6:c5:a4:f9:
0d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8F:56:4E:99:94:10:66:64:98:4F:D5:BA:93:FE:59:67:C9:97:E8
X509v3 Authority Key Identifier:
keyid:F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/nY9WTpmUEGZkmE_VupP-WWfJl-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.93.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:2f:4a:6d:87:85:8f:b4:b9:96:09:35:87:43:b6:07:cc:86:
c0:3a:16:3e:e1:4a:62:6e:79:79:0c:58:82:c7:e0:e9:48:18:
6d:60:92:16:3a:2d:a1:89:9c:9d:b5:45:9b:b2:4a:b8:d2:28:
88:48:6d:2f:af:20:c8:e8:19:0d:86:8e:59:c3:8f:27:35:66:
27:0a:07:50:37:30:a1:30:64:b7:c4:57:55:97:38:f0:b9:d0:
61:08:79:4b:b9:9a:b2:6c:44:7f:06:6a:9d:67:83:cd:66:cc:
51:1e:34:ba:9b:fc:1e:d9:79:a9:3e:11:b3:6c:d8:73:0d:58:
1d:58:29:ee:73:17:95:e5:bc:93:b6:69:f6:f4:ff:ad:8b:47:
7c:89:a4:c8:01:73:f7:49:99:34:7f:c2:c4:f2:ee:6f:e6:97:
b1:f9:8a:9c:bc:c4:20:f3:c7:3e:f0:88:c7:89:02:e0:cb:43:
71:de:24:6c:96:62:5a:55:7f:01:ba:cc:60:b4:5f:dd:45:54:
60:59:ce:37:2b:b3:68:8a:a5:79:21:1e:04:6f:ca:a5:04:33:
2b:29:39:a9:0b:78:88:75:53:be:8e:1a:5b:86:a7:01:d9:15:
64:ad:ad:46:22:4a:1d:c2:b2:10:dd:c8:f9:c6:e9:a3:29:3f:
a4:95:18:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 21:42:53 2024 by rpki-client on console-fra.rpki-client.org