Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/I8dtoumBp_EDBSNg5QgMN7h76OY.roa
File: I8dtoumBp_EDBSNg5QgMN7h76OY.roa (raw, json)
Hash identifier: NrK6NnuBmbkC2wUR5NPIefOStdS0Y0I5FLNHT/DtdgU=
Subject key identifier: 23:C7:6D:A2:E9:81:A7:F1:03:05:23:60:E5:08:0C:37:B8:7B:E8:E6
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 018CC80301C4C22769586EBEE353EB0F5D39
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/I8dtoumBp_EDBSNg5QgMN7h76OY.roa
Signing time: Tue 02 Jan 2024 02:31:29 +0000
ROA not before: Tue 02 Jan 2024 02:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12859
IP address blocks: 93.175.159.0/24 maxlen: 24
2001:67c:2d7c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:01:c4:c2:27:69:58:6e:be:e3:53:eb:0f:5d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jan 2 02:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23c76da2e981a7f103052360e5080c37b87be8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e7:94:29:ec:59:8c:65:f6:be:33:fb:7f:c3:
5d:a0:79:2d:36:ea:6d:3e:e4:41:40:a9:71:2b:6f:
8f:91:c9:68:b9:cd:1c:2f:14:31:17:ad:18:48:58:
86:7f:7d:43:9b:a6:47:0c:99:cd:b0:ef:cc:f7:2e:
36:15:2e:8f:7a:52:64:1d:cb:20:1f:8f:5b:96:c9:
5f:4b:e1:e0:28:86:2d:96:78:cf:93:c5:49:1b:a3:
35:4d:51:37:41:25:26:db:54:5a:db:4b:d0:12:81:
f2:ba:b6:6f:6d:09:34:30:0c:0d:c7:65:54:09:8a:
6b:33:9f:1b:92:f3:ff:b8:81:ce:52:0e:eb:d4:c4:
18:15:04:69:1f:5f:08:af:0a:a3:9d:e4:ff:0a:97:
4e:ab:05:a7:71:d6:d4:2a:44:bb:a3:ad:ba:f2:b1:
1c:d5:1d:bb:9e:14:f3:68:db:01:61:62:c0:ca:dd:
8e:b3:38:c1:4a:c6:98:80:88:8d:54:4d:e2:7b:c7:
20:62:88:dd:68:41:05:a7:0b:e8:67:80:fc:de:b0:
ba:e9:4a:63:7e:6e:86:18:53:80:8c:2d:8e:36:8b:
8e:62:90:30:f6:f2:15:59:e5:f4:53:0c:b5:72:e2:
5a:a7:ef:5e:13:26:5a:d3:3b:90:ba:26:b7:1c:a5:
96:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C7:6D:A2:E9:81:A7:F1:03:05:23:60:E5:08:0C:37:B8:7B:E8:E6
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/I8dtoumBp_EDBSNg5QgMN7h76OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.175.159.0/24
IPv6:
2001:67c:2d7c::/48
Signature Algorithm: sha256WithRSAEncryption
38:a1:1e:34:91:67:98:05:63:39:89:e9:74:9b:41:8b:75:96:
ae:b6:cc:ff:0a:8e:b3:72:be:f2:ca:36:0c:22:73:c2:ea:8e:
bc:43:39:26:d7:a5:3c:ef:72:12:39:da:0a:20:dd:6f:9d:d7:
7b:eb:db:34:ea:26:34:a4:7d:12:6a:28:78:64:f8:63:26:ef:
85:f7:7e:1f:cd:54:b1:ec:d2:78:3a:55:5d:43:15:ac:72:ca:
ae:22:a5:ae:5a:96:5a:f7:a4:4d:49:68:c3:89:50:be:c1:4b:
bb:9c:32:cb:f6:37:71:92:80:4e:f5:4a:52:d3:60:b6:96:f9:
2e:6a:0c:98:93:57:21:42:b6:9b:df:03:b8:92:b5:b4:29:ec:
6e:5e:df:05:2c:a7:34:6d:2e:20:6b:f9:2b:4f:13:6a:0c:fa:
d1:3d:d6:02:10:07:8b:ea:86:b5:93:ae:25:65:e1:da:be:19:
33:a0:73:c2:72:73:e0:f8:f0:e8:af:92:73:d6:17:b6:e1:03:
47:2c:e3:60:9c:c5:f3:e1:75:b6:ba:d4:95:73:3f:f4:d2:30:
45:09:5b:1e:fa:65:07:05:f3:06:00:6a:08:d3:e0:a2:20:62:
66:0f:68:bb:43:e9:07:58:17:90:1e:8b:dd:08:14:af:f9:b5:
69:04:2e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 01:44:49 2024 by rpki-client on console-fra.rpki-client.org