Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/Fu1VK4j8_UVdVYjazM5j8Tk3aRE.roa
File: Fu1VK4j8_UVdVYjazM5j8Tk3aRE.roa (raw, json)
Hash identifier: rizKWg+SeXgVsm+jqTRb7tfbfdRL3s768hCrATF2OlM=
Subject key identifier: 16:ED:55:2B:88:FC:FD:45:5D:55:88:DA:CC:CE:63:F1:39:37:69:11
Certificate issuer: /CN=1903647efb243662e57e61d4ec45b4a25a37eac8
Certificate serial: 018CC349363EA80F2AEFCAE40343BED6B859
Authority key identifier: 19:03:64:7E:FB:24:36:62:E5:7E:61:D4:EC:45:B4:A2:5A:37:EA:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQNkfvskNmLlfmHU7EW0olo36sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/Fu1VK4j8_UVdVYjazM5j8Tk3aRE.roa
Signing time: Mon 01 Jan 2024 04:30:04 +0000
ROA not before: Mon 01 Jan 2024 04:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25538
IP address blocks: 217.10.0.0/20 maxlen: 20
193.110.90.0/24 maxlen: 24
91.210.72.0/22 maxlen: 22
2001:1410::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/GQNkfvskNmLlfmHU7EW0olo36sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/GQNkfvskNmLlfmHU7EW0olo36sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQNkfvskNmLlfmHU7EW0olo36sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:36:3e:a8:0f:2a:ef:ca:e4:03:43:be:d6:b8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1903647efb243662e57e61d4ec45b4a25a37eac8
Validity
Not Before: Jan 1 04:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16ed552b88fcfd455d5588daccce63f139376911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:5b:d9:34:94:5d:8d:11:cd:6c:14:6a:eb:
53:5b:94:1d:25:cf:e1:3a:c7:0b:69:a1:28:35:30:
65:1c:3d:cf:75:67:74:18:09:97:58:e9:8f:5e:0e:
5d:39:58:65:07:1c:f3:70:ed:00:d3:38:e9:dc:e5:
a2:1d:b1:aa:f8:23:86:04:4e:e2:1b:d7:30:b7:95:
80:1a:b5:85:b1:2f:69:e1:df:1a:9d:33:94:28:57:
ec:1d:91:28:46:bd:67:65:f6:e1:f5:de:3f:c0:35:
37:88:c4:d5:81:4f:30:09:3c:d9:02:40:32:94:4e:
27:99:47:6c:aa:e5:88:d6:de:20:6d:97:9a:26:db:
3a:19:cb:15:5f:e5:e9:2b:f4:f3:ee:4e:71:39:0a:
f6:65:28:7e:0d:d7:81:14:f0:ae:ab:89:d0:25:ae:
d4:0a:96:4f:bb:81:06:5e:8b:f5:62:9d:7b:07:ea:
c9:ab:0a:6f:6d:66:86:ce:19:b1:3d:1a:4e:7b:09:
36:1f:b5:f2:9d:43:4e:0f:13:fb:8e:92:49:09:b2:
6d:4c:95:95:18:66:a8:0a:bd:dc:79:95:0c:1c:0b:
d8:72:59:b9:1f:26:e6:a0:02:98:4f:13:fd:b2:3c:
ee:67:28:19:9f:1f:46:56:29:e2:83:ef:0d:ed:6b:
b0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:ED:55:2B:88:FC:FD:45:5D:55:88:DA:CC:CE:63:F1:39:37:69:11
X509v3 Authority Key Identifier:
keyid:19:03:64:7E:FB:24:36:62:E5:7E:61:D4:EC:45:B4:A2:5A:37:EA:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQNkfvskNmLlfmHU7EW0olo36sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/Fu1VK4j8_UVdVYjazM5j8Tk3aRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/GQNkfvskNmLlfmHU7EW0olo36sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.72.0/22
193.110.90.0/24
217.10.0.0/20
IPv6:
2001:1410::/32
Signature Algorithm: sha256WithRSAEncryption
1e:8c:c3:16:1d:50:2d:da:b7:77:b7:ab:f1:d9:4c:b6:e1:17:
c3:5a:6d:f3:39:dd:d2:87:0a:ef:bc:16:b6:07:f1:84:22:de:
3a:19:51:86:16:89:bc:29:4c:5a:b0:32:7e:85:cd:87:53:dd:
08:ea:b7:4c:1d:a5:f7:b6:d2:3d:83:2c:97:6c:2e:e6:ba:4e:
f8:74:0d:c5:41:a0:d4:06:13:10:69:83:de:ad:84:a4:d3:93:
22:36:7d:b5:06:10:c5:f4:91:d2:7b:56:c3:35:8a:ef:75:4a:
7c:b4:e3:e9:2f:eb:f1:d0:12:1e:a4:a1:48:12:38:33:44:ca:
c1:6d:83:04:f0:da:e6:58:f8:18:f9:89:b5:c5:ff:cb:1c:e5:
1c:15:ae:f9:85:5c:86:a9:cb:88:12:8e:e9:da:86:d7:e1:8b:
da:5c:d5:e6:3d:8e:e8:da:c8:08:ff:45:d8:9f:e2:e0:c8:dc:
80:29:7f:58:31:e4:68:f1:6a:39:62:3b:bd:fb:e3:5a:ab:9a:
b3:1e:e5:25:c7:3e:c6:a8:23:74:05:45:4f:c6:56:ff:b4:3b:
d6:7d:23:97:f4:6a:a5:13:f8:ae:a2:78:68:6e:f6:fb:36:13:
7d:81:21:ed:8f:b8:7c:a9:1d:3a:ca:39:a2:14:5f:1e:5a:28:
2e:3e:51:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:20:38 2024 by rpki-client on console-ams.rpki-client.org