Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/HF8Y1hdgoYMrAyt4_f6nZSee3sk.roa
File: HF8Y1hdgoYMrAyt4_f6nZSee3sk.roa (raw, json)
Hash identifier: itGcAAPmaQXitGpBJoane8AcfQVQF3/wnVykkEFJbbg=
Subject key identifier: 1C:5F:18:D6:17:60:A1:83:2B:03:2B:78:FD:FE:A7:65:27:9E:DE:C9
Certificate issuer: /CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Certificate serial: 018CC2DB3625C007A968D1FED0CBC5A52784
Authority key identifier: 82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/HF8Y1hdgoYMrAyt4_f6nZSee3sk.roa
Signing time: Mon 01 Jan 2024 02:29:55 +0000
ROA not before: Mon 01 Jan 2024 02:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59455
IP address blocks: 185.98.108.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/gmkF0cEWiypmBwmtsg80xuTAPX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/gmkF0cEWiypmBwmtsg80xuTAPX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:36:25:c0:07:a9:68:d1:fe:d0:cb:c5:a5:27:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Validity
Not Before: Jan 1 02:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c5f18d61760a1832b032b78fdfea765279edec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:80:eb:87:8f:fe:03:67:4e:b6:2f:8d:82:95:
86:80:c7:ad:0f:b4:5d:04:ac:d6:03:c8:55:8c:7f:
5b:da:82:15:fb:6b:8f:ce:58:2b:b6:49:c8:66:82:
96:8a:97:3c:d7:52:03:57:44:a3:29:08:44:49:9e:
0b:ae:ff:84:43:28:55:07:19:7d:f6:0c:c6:e2:92:
40:fa:48:32:0e:79:d8:69:3b:21:39:2e:2f:99:43:
45:c3:73:2c:35:44:c5:fa:1a:d8:a0:4a:5f:2e:75:
e3:de:15:12:5f:41:d7:9e:21:4e:27:9f:d0:cb:7e:
ef:30:c8:0c:6a:00:e5:a1:6e:7f:54:1a:9a:1d:b5:
65:77:7b:d7:98:3b:ae:f0:77:0d:87:74:5e:4a:52:
d1:bc:3b:ff:c7:52:67:6f:78:a2:7c:4d:35:c9:14:
a8:9f:b2:12:7a:c6:5b:86:59:67:aa:15:29:18:66:
92:30:91:63:fe:32:6e:61:6d:66:aa:e2:e2:3c:93:
ef:8a:00:e1:9b:05:2a:51:47:fd:d7:fe:cf:6c:14:
52:9d:db:64:06:98:54:0d:d7:29:f9:96:cd:f7:32:
b2:e5:9a:67:b5:ff:62:23:9a:dd:59:98:93:da:3b:
e4:5c:91:12:7e:e6:da:d8:a2:7c:ac:e2:9f:89:db:
6b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5F:18:D6:17:60:A1:83:2B:03:2B:78:FD:FE:A7:65:27:9E:DE:C9
X509v3 Authority Key Identifier:
keyid:82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/HF8Y1hdgoYMrAyt4_f6nZSee3sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/gmkF0cEWiypmBwmtsg80xuTAPX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.108.0/22
Signature Algorithm: sha256WithRSAEncryption
48:48:f4:c7:fc:ae:2d:cb:73:33:d4:17:37:fb:37:b3:d9:47:
d7:56:9c:c0:f5:90:16:0e:b1:1d:18:07:5e:99:5c:13:85:e3:
37:9b:c6:86:fb:46:88:6e:3b:b4:ed:1d:de:d2:b4:67:5b:09:
a2:ce:2d:ce:fb:c7:32:3e:40:5f:33:da:fc:a8:b6:bd:26:0f:
9e:9c:a5:64:e3:d2:48:00:f6:59:5d:0f:38:1f:9a:3d:c6:c1:
94:c7:21:10:49:c2:4d:89:47:80:b7:b1:ef:21:bb:05:58:bd:
ec:4a:10:2e:a7:b9:d9:fb:0e:20:45:48:c8:7b:56:ed:9f:e2:
31:b8:4e:af:93:fe:eb:b8:ec:66:4b:40:d5:e9:6a:6f:72:87:
7b:8e:49:d2:4d:cb:bc:e8:ae:04:15:bd:75:c1:6e:f1:ea:6e:
aa:be:7a:cc:e7:13:9d:9e:ce:c5:cc:20:a5:a2:9f:d2:19:a4:
22:87:e5:43:c6:4b:80:9b:15:29:19:46:00:a0:1f:27:ed:e2:
73:70:ee:d6:7b:f1:18:6b:63:0f:12:8e:9e:a7:3f:c6:83:22:
6a:5c:44:28:0c:e0:fe:36:2b:00:27:87:d4:0f:44:6d:9e:a8:
3b:76:13:f5:ce:28:65:83:9a:1d:c0:78:40:35:bf:5e:52:e0:
36:12:b1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:02:31 2024 by rpki-client on console-fra.rpki-client.org