Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8pRap_03-LQYpOvdGRVqHOHZ3v8.roa
File: 8pRap_03-LQYpOvdGRVqHOHZ3v8.roa (raw, json)
Hash identifier: Ewf9eUrc3anopfNoi/uKSJZ3e39HVI3zGKxLLJe4JKs=
Subject key identifier: F2:94:5A:A7:FD:37:F8:B4:18:A4:EB:DD:19:15:6A:1C:E1:D9:DE:FF
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 0190E5254A52F4F3B0A3F815BB9F47CD130B
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8pRap_03-LQYpOvdGRVqHOHZ3v8.roa
Signing time: Wed 24 Jul 2024 14:29:04 +0000
ROA not before: Wed 24 Jul 2024 14:29:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197000
IP address blocks: 193.0.8.0/23 maxlen: 23
193.0.8.0/24 maxlen: 24
193.0.9.0/24 maxlen: 24
2001:67c:e0::/48 maxlen: 48
2a13:27c0:30::/44 maxlen: 44
2a13:27c0:30::/48 maxlen: 48
2a13:27c0:3f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e5:25:4a:52:f4:f3:b0:a3:f8:15:bb:9f:47:cd:13:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jul 24 14:29:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2945aa7fd37f8b418a4ebdd19156a1ce1d9deff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:64:df:17:92:92:64:7a:5d:ba:f1:d7:9a:a4:
9d:f0:a2:89:7f:0e:59:e6:1e:0d:79:1d:9a:78:79:
75:49:f2:dd:d9:d1:0c:23:0c:c7:f3:c0:03:cc:9f:
77:b3:35:22:3a:05:b6:82:7f:56:65:78:61:1f:c5:
f5:28:ff:94:67:60:c1:a3:ae:1b:8c:2d:fc:9d:30:
97:ee:30:37:0b:8e:24:b3:3a:d2:49:65:8c:4a:31:
43:99:b4:83:9b:3a:8d:3e:a3:d4:1a:de:b7:1f:45:
f8:76:76:2b:48:90:cd:be:e0:60:3d:e9:48:f3:14:
07:79:a3:ea:33:7e:31:97:99:20:47:14:a9:71:9c:
9e:e8:0a:35:45:47:73:97:e9:ec:b4:af:b6:94:3d:
18:df:b3:5e:27:5a:41:10:c0:c3:2f:71:78:79:44:
de:9e:d5:6d:75:75:8a:17:ce:21:fc:67:53:20:05:
5f:53:aa:62:47:87:c2:b7:1f:11:b1:60:a4:8f:bc:
2a:bf:d9:bc:3e:93:b3:cc:93:f3:d8:8f:50:fb:1a:
6e:fb:4e:a5:57:12:7c:e3:67:9c:6b:9f:39:60:bf:
58:92:5f:de:65:27:f3:b6:24:db:18:e5:6e:38:62:
9c:be:c4:e8:95:0d:fc:2c:8d:be:dc:5f:f3:bb:75:
2f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:94:5A:A7:FD:37:F8:B4:18:A4:EB:DD:19:15:6A:1C:E1:D9:DE:FF
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/8pRap_03-LQYpOvdGRVqHOHZ3v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.8.0/23
IPv6:
2001:67c:e0::/48
2a13:27c0:30::/44
Signature Algorithm: sha256WithRSAEncryption
6f:72:12:44:ca:4f:13:db:2f:80:88:49:9c:07:c1:dc:86:95:
bd:7c:09:9d:c5:fc:26:db:7b:b0:99:b0:ae:3f:fc:44:02:1d:
93:36:f4:b2:7d:3c:f1:3c:5f:68:e6:7f:a9:f4:0e:cf:14:28:
da:63:ec:62:f8:0d:3d:da:44:2f:1e:56:d2:19:c3:75:30:59:
a2:d2:f0:24:37:95:60:e9:22:1e:19:43:4f:cc:ee:bd:03:5e:
37:4d:dc:92:4a:17:ec:5c:86:c3:8a:0a:a0:9a:69:0c:2d:1b:
d5:9d:0b:c8:4a:ab:53:8a:18:34:7b:19:d6:6f:38:32:dc:b5:
4f:c8:10:00:07:c8:a0:e6:c9:e1:cb:5e:66:f9:4e:3f:fc:d6:
a3:e0:e5:e2:d4:b8:63:bf:6c:2f:e8:29:18:2d:39:1d:66:c6:
3a:54:0b:7b:63:76:96:4b:16:08:38:b7:86:c6:0d:d6:0b:62:
79:12:05:a8:b8:0b:65:9f:4e:95:09:14:aa:f6:28:8b:2c:db:
4c:67:00:22:e5:1a:63:f2:8f:7b:89:24:9f:8b:74:94:e0:aa:
06:8f:8c:a0:9a:3c:66:c1:8c:93:2c:f1:b6:4c:7d:ad:32:25:
8e:86:68:28:4d:01:0d:c0:d5:4a:09:16:f9:8c:06:ed:f5:d8:
e0:26:6d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:33:41 2024 by rpki-client on console-ams.rpki-client.org