Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/CEy47N8bYEVLv_NfUiRjqC9ieJU.roa
File: CEy47N8bYEVLv_NfUiRjqC9ieJU.roa (raw, json)
Hash identifier: 0qx2prjXYrAP3DpMOaAwatzKptwAsRFST7frwoqkNI0=
Subject key identifier: 08:4C:B8:EC:DF:1B:60:45:4B:BF:F3:5F:52:24:63:A8:2F:62:78:95
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCA3B341DA93C0055277FB427CD642
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/CEy47N8bYEVLv_NfUiRjqC9ieJU.roa
Signing time: Tue 02 Jan 2024 10:33:52 +0000
ROA not before: Tue 02 Jan 2024 10:33:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1163
IP address blocks: 145.102.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 12:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a3:b3:41:da:93:c0:05:52:77:fb:42:7c:d6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=084cb8ecdf1b60454bbff35f522463a82f627895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:40:81:d1:a7:f3:39:f5:2a:49:4a:ac:68:cf:
91:54:8b:b6:fc:8b:39:0d:88:89:54:97:5a:2e:e0:
08:18:3a:2c:45:3d:11:7f:ce:a6:5c:89:ef:63:18:
17:60:dd:93:ff:51:48:bc:9f:b8:a0:3a:6f:72:c5:
2e:24:bf:92:27:22:73:6b:3a:96:a9:15:80:4b:df:
2b:61:83:5b:03:a4:f1:58:16:bf:c4:5b:c2:80:4e:
e7:86:21:57:10:7c:32:1e:c1:76:96:ee:c0:08:40:
25:63:b0:23:f0:0e:08:d5:c9:75:e6:60:e7:16:f2:
6c:04:e1:d1:b9:58:c6:97:c5:e3:bf:d4:11:de:b7:
cf:c2:11:f5:8e:e1:ac:e2:c6:6e:5c:ca:86:b4:c5:
83:80:bb:b9:2b:83:17:9e:64:2d:d0:09:ca:df:ca:
41:0e:9c:5a:ff:d1:7a:cb:30:b8:1a:14:85:71:eb:
e3:70:76:d9:51:15:95:a1:d4:7d:8f:71:96:e1:b5:
51:c5:a8:63:bc:cb:03:93:de:d6:7e:ba:da:78:0a:
9c:fe:73:8d:8b:bc:d8:9c:f8:f3:69:40:a6:69:3a:
50:e6:37:01:91:07:ce:e1:95:3d:ca:7a:2d:f9:e0:
52:2e:88:c0:11:86:bf:96:61:e3:24:32:a5:98:55:
0e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:4C:B8:EC:DF:1B:60:45:4B:BF:F3:5F:52:24:63:A8:2F:62:78:95
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/CEy47N8bYEVLv_NfUiRjqC9ieJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.102.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ba:4c:07:c0:49:03:af:bf:5c:55:ae:8a:0f:3b:ce:8a:7c:
12:b7:f0:8e:15:83:0d:77:f4:73:05:e1:01:9a:f2:fb:a9:7d:
85:3c:1a:31:24:d0:c6:e2:22:cf:1e:d4:a0:a2:35:a2:8a:1f:
85:91:98:66:a6:ee:e8:65:ce:ac:97:05:ee:11:eb:cb:a4:0a:
bf:92:ef:b0:c4:38:0b:24:90:0a:9e:c3:22:1a:a8:ae:4c:e1:
98:71:a1:9e:dc:b2:0e:a4:f6:f3:95:05:c6:ce:03:88:a8:b9:
e9:16:8d:3b:84:65:b7:4a:de:1a:31:48:bc:ab:e6:18:95:a9:
a4:c0:28:d3:c8:4d:f3:1f:0b:3d:13:f0:d7:63:43:18:45:02:
7b:57:fc:ae:d7:95:b0:76:d8:49:45:c8:99:cb:06:25:90:40:
fb:df:7b:f7:78:12:f3:45:e5:2a:f9:e0:2e:8b:2c:12:55:67:
81:80:39:bc:04:2a:15:b8:a2:b9:f6:19:a0:ac:87:e7:98:90:
19:da:b8:21:26:d2:4e:98:e5:40:b3:d3:96:a5:49:50:26:f8:
1a:aa:67:06:dd:0a:be:76:da:39:a0:c3:7a:98:b2:7c:da:5f:
89:3d:2d:bd:2f:7c:4a:7b:36:38:5a:54:3f:03:4c:f9:14:3d:
51:c9:ae:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:15:14 2024 by rpki-client on console-fra.rpki-client.org