Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/8wSvWzQRRru1ErGI5oBgqptZKj4.roa
File: 8wSvWzQRRru1ErGI5oBgqptZKj4.roa (raw, json)
Hash identifier: jH4mEsY+heOOqqzOs+iIfTXWlYAxpHVXBWlRfpErbL4=
Subject key identifier: F3:04:AF:5B:34:11:46:BB:B5:12:B1:88:E6:80:60:AA:9B:59:2A:3E
Certificate issuer: /CN=17f57430b1048a923a89d6cfa2a3cb3bfc2f1258
Certificate serial: 018FE7FC607BDBD3BE8A98895355581BAD4A
Authority key identifier: 17:F5:74:30:B1:04:8A:92:3A:89:D6:CF:A2:A3:CB:3B:FC:2F:12:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F_V0MLEEipI6idbPoqPLO_wvElg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/8wSvWzQRRru1ErGI5oBgqptZKj4.roa
Signing time: Wed 05 Jun 2024 10:40:27 +0000
ROA not before: Wed 05 Jun 2024 10:40:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44662
IP address blocks: 91.235.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/F_V0MLEEipI6idbPoqPLO_wvElg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/F_V0MLEEipI6idbPoqPLO_wvElg.mft
rsync://rpki.ripe.net/repository/DEFAULT/F_V0MLEEipI6idbPoqPLO_wvElg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 19:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:fc:60:7b:db:d3:be:8a:98:89:53:55:58:1b:ad:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17f57430b1048a923a89d6cfa2a3cb3bfc2f1258
Validity
Not Before: Jun 5 10:40:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f304af5b341146bbb512b188e68060aa9b592a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:94:d6:64:7f:de:e7:2d:a1:12:8a:56:8b:3d:
d4:cf:ce:a3:32:2f:d0:63:c4:c0:24:f2:75:90:cb:
71:8b:cf:32:e3:95:c7:81:85:95:4d:98:e1:9b:a9:
36:0f:b9:c5:b0:3d:0a:06:77:df:75:8a:89:a7:f5:
ab:2d:27:97:86:11:51:bf:8f:89:b2:e9:df:33:a2:
71:93:19:47:94:e4:b3:ff:70:f5:f9:04:76:6e:ba:
12:f9:ff:45:6a:c1:65:e2:33:af:59:7e:5b:31:97:
6d:67:81:f0:6e:fd:99:53:95:08:0f:54:c6:ed:a8:
c5:32:ee:cc:b8:13:6b:63:12:da:86:2d:98:00:33:
27:6f:a6:6c:7b:7e:65:72:28:66:e1:c8:17:57:16:
37:d9:64:de:72:9f:ea:cc:b9:25:26:64:ea:4d:ca:
db:4c:f8:1e:73:24:19:cf:5c:d9:89:a5:67:9c:57:
c7:7c:3a:48:a6:c7:0a:f3:bd:a9:28:f9:ef:53:b0:
a3:6b:c2:ea:99:bb:ea:b6:04:34:1c:ba:d5:e6:43:
81:87:95:7f:6e:45:36:54:8d:7d:ce:df:df:a1:c0:
d2:04:9a:34:84:f7:b4:96:10:a3:77:b4:f0:96:10:
9e:d5:f9:ed:f0:49:7b:85:46:ef:23:5d:c4:2f:55:
de:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:04:AF:5B:34:11:46:BB:B5:12:B1:88:E6:80:60:AA:9B:59:2A:3E
X509v3 Authority Key Identifier:
keyid:17:F5:74:30:B1:04:8A:92:3A:89:D6:CF:A2:A3:CB:3B:FC:2F:12:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F_V0MLEEipI6idbPoqPLO_wvElg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/8wSvWzQRRru1ErGI5oBgqptZKj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/127268-6cf5-4694-ae11-e09408ae4666/1/F_V0MLEEipI6idbPoqPLO_wvElg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.233.0/24
Signature Algorithm: sha256WithRSAEncryption
41:1d:ae:2a:20:cf:bd:8a:b2:a5:32:12:4b:9e:1b:2c:aa:77:
29:18:7b:88:3d:4d:d0:ff:6a:44:00:14:22:66:63:09:03:a8:
5f:99:af:67:55:3e:a0:e5:28:57:9b:c6:71:40:a4:57:73:5b:
7b:3b:f3:80:dc:04:0e:26:64:dc:48:10:79:2a:a6:22:e5:4f:
bc:41:80:ef:53:00:54:f3:9e:d8:55:2a:b5:6f:0f:b5:20:8a:
bf:5a:55:8e:2d:62:ec:1c:a8:5e:43:3f:61:a4:bd:89:c8:5e:
fe:25:89:84:d5:77:97:e8:de:3e:e1:df:73:b2:7f:ab:5a:52:
e9:44:a4:e5:a8:2a:f2:7c:dd:6f:97:f8:b1:45:0a:c9:74:f3:
a2:b7:86:41:fe:c7:73:79:ba:30:ef:7d:6e:cf:19:3c:fb:14:
bb:3e:e9:ca:66:84:94:ec:80:98:58:0e:65:68:7f:8d:f4:d2:
c0:7c:ce:85:ea:32:7f:75:25:c7:ba:ee:f7:36:e8:c3:35:f2:
07:8a:4f:e0:87:52:56:61:bf:3f:ea:f6:2a:01:a5:80:16:c2:
5d:49:2a:67:02:6c:c3:79:b7:b3:d2:26:9f:3e:78:26:d8:48:
20:f7:42:fc:db:e4:0d:e7:f0:33:54:88:af:e2:f2:46:6a:c3:
79:10:a2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:25:58 2024 by rpki-client on console-ams.rpki-client.org