Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/7YOusaKLJ8pIs_k5EVCkumHpVK0.roa
File: 7YOusaKLJ8pIs_k5EVCkumHpVK0.roa (raw, json)
Hash identifier: xyjy36aC3yH+bR2qZjciQkjuIo6u0e59MwjJr5xyx4c=
Subject key identifier: ED:83:AE:B1:A2:8B:27:CA:48:B3:F9:39:11:50:A4:BA:61:E9:54:AD
Certificate issuer: /CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Certificate serial: 018CC793FC273C4EBA284347FDA7A5D2FB7E
Authority key identifier: 31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/7YOusaKLJ8pIs_k5EVCkumHpVK0.roa
Signing time: Tue 02 Jan 2024 00:30:13 +0000
ROA not before: Tue 02 Jan 2024 00:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1103
IP address blocks: 193.176.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:fc:27:3c:4e:ba:28:43:47:fd:a7:a5:d2:fb:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Validity
Not Before: Jan 2 00:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed83aeb1a28b27ca48b3f9391150a4ba61e954ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:d3:73:4d:b2:e0:7e:33:10:fb:12:fc:b8:
d7:1c:f0:f2:99:4d:41:83:1e:93:a4:7d:c0:58:83:
a2:c0:f8:6e:ae:b9:9c:69:a6:86:ef:25:96:30:6e:
19:9c:4f:75:70:9b:8d:5c:fb:e3:0c:5a:68:7a:a0:
3b:58:1e:3d:f6:88:b2:9d:c8:bb:62:2d:a0:7a:ce:
53:e7:c9:c1:6c:54:55:86:d6:fc:75:0e:38:20:ad:
05:0b:d2:4e:13:04:4c:e2:80:d0:12:72:a9:1a:52:
08:f0:ac:ef:32:31:2a:23:e0:f8:dd:02:97:5b:6c:
6e:44:87:ed:16:f7:5f:c0:05:9b:54:dc:60:a8:20:
85:3b:13:a6:e4:43:ed:a0:b2:5d:e7:40:1a:2e:be:
e7:36:50:06:36:29:09:b4:6d:08:bf:ab:be:ca:91:
2c:7e:46:c8:ac:70:0e:0b:36:38:b4:57:c5:8e:dc:
ab:60:b9:9f:bc:38:fd:6a:7e:90:3c:f2:f7:cb:04:
0a:dd:fd:67:6c:55:e0:2d:f1:18:ca:75:ff:50:45:
0e:2b:8f:06:88:23:b8:32:a4:8d:2c:4a:ed:d2:96:
bb:e3:8e:78:57:9b:f8:5c:51:0c:73:c9:91:36:0e:
77:0a:18:30:c7:f6:cc:5a:95:45:4e:22:19:19:35:
27:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:83:AE:B1:A2:8B:27:CA:48:B3:F9:39:11:50:A4:BA:61:E9:54:AD
X509v3 Authority Key Identifier:
keyid:31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/7YOusaKLJ8pIs_k5EVCkumHpVK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a8:b9:1b:a4:d0:71:89:fd:e4:b7:6d:b3:29:8f:9c:b2:4e:
8b:59:91:d7:c3:75:d5:84:86:18:e4:70:29:91:fc:cc:ab:97:
8a:16:7d:b7:9d:3a:d8:b3:94:2d:ad:9d:99:fd:bd:34:1b:28:
37:53:c7:56:3c:43:cc:7a:27:be:8c:c0:1b:4a:71:5c:eb:c7:
ec:ae:82:cc:bb:62:9a:0e:4d:16:0a:89:5e:47:fc:d3:f3:ce:
46:28:7b:93:38:72:7a:4d:f6:2a:35:76:dc:28:02:97:fb:06:
f2:0d:d0:03:0a:96:1d:02:ab:f0:68:af:5e:d2:e4:1d:ce:7e:
4f:79:56:28:b5:8c:b7:de:50:71:77:70:89:2e:8f:12:6a:55:
d8:4d:be:a4:f9:84:24:f8:64:e7:73:c2:03:97:b8:0c:fd:83:
a1:a5:f7:05:55:f0:3c:f0:fa:bb:62:21:b8:96:f6:81:95:b6:
da:82:d8:fa:4c:78:21:fc:8f:e6:53:04:13:8f:d4:1f:a6:22:
6f:d9:99:55:f5:60:a6:e9:91:24:18:47:03:0f:84:12:93:b8:
67:ab:ff:28:a6:8c:3f:90:0c:e1:5d:2f:0d:6a:58:ac:2d:6c:
22:35:2f:bc:49:da:0b:8f:cb:26:15:f0:dc:60:86:e3:5a:e1:
30:e3:61:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:42 2024 by rpki-client on console-ams.rpki-client.org