Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/huGx7ZCw10nCfq_YBoAbwzCRORc.roa
File: huGx7ZCw10nCfq_YBoAbwzCRORc.roa (raw, json)
Hash identifier: UKNpvkXVBGsbWA05tP1A97ZVijUBTesn7XA9HJhTxyw=
Subject key identifier: 86:E1:B1:ED:90:B0:D7:49:C2:7E:AF:D8:06:80:1B:C3:30:91:39:17
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018D784EA48D5ACE94B885AE08E0CBEEBD2C
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/huGx7ZCw10nCfq_YBoAbwzCRORc.roa
Signing time: Mon 05 Feb 2024 08:07:16 +0000
ROA not before: Mon 05 Feb 2024 08:07:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56486
IP address blocks: 151.247.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:78:4e:a4:8d:5a:ce:94:b8:85:ae:08:e0:cb:ee:bd:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Feb 5 08:07:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86e1b1ed90b0d749c27eafd806801bc330913917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d1:54:06:19:92:d2:f5:da:f2:28:5c:ed:30:
6a:70:8a:3b:37:fb:07:ba:84:e3:d2:74:e3:18:8e:
ef:ff:ca:b9:dc:cd:3c:96:c4:09:cb:8c:9e:62:69:
6e:a7:cb:49:60:c1:e9:80:e2:b3:18:3b:96:c8:70:
46:ba:2e:67:83:80:08:b9:86:46:66:87:f3:ed:9a:
9b:2e:b9:b7:0a:4d:ea:36:bb:cf:a7:a1:c8:c7:62:
1c:2b:76:c1:9e:b8:ad:3d:3e:0e:d2:f1:b8:42:51:
2a:d2:24:97:68:16:f5:ea:e2:74:52:1c:44:40:ef:
69:3b:5d:39:97:fd:32:96:40:c1:80:bf:0a:1e:27:
1d:1e:b6:20:fd:af:2e:39:1c:e0:b2:c5:95:14:95:
69:a7:3b:2b:1a:ae:0f:ba:b8:c1:4c:a3:16:56:52:
2d:a7:d8:56:63:f5:f7:19:52:88:bc:45:53:67:26:
9c:bc:32:ff:27:7b:fe:54:dd:ff:ff:31:04:6d:15:
77:51:f7:b4:96:93:4b:29:bf:22:cd:1d:7c:95:31:
59:0c:0d:93:c6:90:7c:d0:ea:c4:7e:6f:6e:2d:9f:
f8:47:64:6b:d5:3c:62:e1:d7:19:b2:95:81:21:ad:
e9:fc:c1:66:99:40:d4:cb:c5:df:17:95:01:c0:c4:
7f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E1:B1:ED:90:B0:D7:49:C2:7E:AF:D8:06:80:1B:C3:30:91:39:17
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/huGx7ZCw10nCfq_YBoAbwzCRORc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.247.242.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:76:68:84:60:f9:27:20:76:93:db:73:01:f7:81:40:0f:55:
f9:bc:00:45:31:a0:a1:c7:fa:52:51:27:41:36:3e:c4:7e:c7:
18:2f:5e:fb:40:43:75:d1:52:90:18:51:f1:5d:70:b5:ee:44:
b5:ae:50:80:f8:01:ac:46:7f:e2:11:85:75:d2:a7:4d:7f:91:
0b:ed:3c:d6:63:60:42:3c:44:2f:b7:c7:10:3f:0a:b4:80:6a:
62:35:7a:bf:85:7d:84:07:e1:98:88:60:54:57:19:7e:cf:69:
c4:c1:dd:35:bc:5d:50:3f:d8:b5:29:17:bb:35:cc:0f:dd:71:
52:2b:87:dc:e1:78:1b:14:5e:07:a3:0a:13:cb:35:ec:f7:9d:
1e:14:03:0f:b1:e7:49:be:e7:a8:da:c0:e8:80:c1:b4:b2:db:
85:81:3e:b0:8f:d0:66:11:9a:23:21:a9:bf:5f:c2:2b:60:12:
be:94:5c:0a:fe:93:c2:47:fc:2f:5d:40:d2:8c:67:1b:9c:74:
3a:c7:84:a7:26:f0:bc:28:34:2e:df:ec:1d:3d:86:1a:1d:0e:
d4:12:a6:03:b7:b7:18:1d:04:1a:3c:41:0c:32:5b:86:18:96:
a1:b1:00:83:fa:94:2b:8f:47:ac:75:f5:1b:85:5d:1b:b0:79:
15:09:6a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:00:40 2024 by rpki-client on console-ams.rpki-client.org