Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/s1p0xE25CPAXNs_Er9e_lQ14u_c.roa
File: s1p0xE25CPAXNs_Er9e_lQ14u_c.roa (raw, json)
Hash identifier: mM6H1wUXzuohBuA8V28X48/+7YBLHkdkK8v9lmEZ6zE=
Subject key identifier: B3:5A:74:C4:4D:B9:08:F0:17:36:CF:C4:AF:D7:BF:95:0D:78:BB:F7
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 018CC80300B98FB215BE1F4BBB32C47F9BE8
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/s1p0xE25CPAXNs_Er9e_lQ14u_c.roa
Signing time: Tue 02 Jan 2024 02:31:29 +0000
ROA not before: Tue 02 Jan 2024 02:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 666
IP address blocks: 84.205.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:00:b9:8f:b2:15:be:1f:4b:bb:32:c4:7f:9b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Jan 2 02:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b35a74c44db908f01736cfc4afd7bf950d78bbf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:db:32:26:e2:f6:fa:60:d3:d9:cc:76:81:91:
0f:58:13:cb:f6:16:6e:8c:f9:8a:dd:41:1c:ce:eb:
d6:76:85:50:ec:5d:cf:50:11:05:53:95:98:d4:1f:
29:ce:f1:f7:ac:aa:b9:00:08:af:8a:7f:91:e4:94:
ff:4b:1d:b4:1f:3d:9b:c1:de:6f:6e:2a:e6:c7:e2:
e8:09:b9:7d:f0:fa:c0:ea:b9:29:f1:8b:58:f0:6d:
81:89:a9:f9:73:0b:6a:59:41:82:6c:64:8d:f0:10:
db:2e:8e:e6:c9:7a:d9:11:c3:8f:9f:c5:75:a7:b8:
58:e4:d9:55:65:f8:2d:71:59:57:2e:e6:6e:7c:cc:
ea:c5:0f:5f:75:6f:34:e1:b2:3d:c3:d3:9d:3d:93:
ad:ac:75:d2:81:21:d3:e3:ee:45:78:d1:d7:64:08:
ee:a9:bd:f0:81:7e:3b:a8:79:31:6e:63:00:28:2e:
fe:2f:c8:f2:c7:91:4f:e6:21:23:33:5d:50:5e:a1:
b7:31:ea:f6:ac:d6:15:99:62:50:81:a2:ec:4f:bf:
6b:52:9c:13:c4:5e:fb:63:91:42:9a:2c:e3:af:65:
12:1a:b3:88:59:5e:d6:2b:e9:ca:09:98:18:ed:00:
fa:f9:d0:83:46:0a:39:ba:09:97:27:63:4d:3a:5c:
e4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5A:74:C4:4D:B9:08:F0:17:36:CF:C4:AF:D7:BF:95:0D:78:BB:F7
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/s1p0xE25CPAXNs_Er9e_lQ14u_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0e:e3:04:83:73:6a:21:b9:08:6b:87:ed:8d:1b:a2:78:0b:
5f:a0:55:bb:4d:02:b8:51:0b:b2:f1:e5:42:09:a6:51:6e:fa:
f2:1f:39:ac:cd:51:2f:c2:69:57:ff:88:c9:0f:7c:7f:56:5c:
40:1c:4f:39:e7:88:4d:66:dd:2d:41:09:8d:2d:22:78:c2:48:
f6:75:9a:6c:45:b6:ba:ef:dc:02:e2:70:94:54:4b:fd:d0:94:
31:39:1d:a0:ee:4e:82:20:d8:c1:44:73:19:72:21:9e:08:03:
56:7f:e9:45:a9:84:0f:17:75:b9:1f:6a:6e:3c:01:d8:5d:34:
87:81:89:87:18:5d:6f:69:99:cd:93:0e:a1:52:02:0c:69:c7:
50:80:ff:ba:6c:48:8d:da:a6:d4:a7:3a:14:62:b8:09:eb:e8:
c2:9b:04:80:b3:c6:66:be:e3:e4:71:e9:44:d9:50:bd:30:ae:
99:b6:db:34:bf:9f:df:c4:12:d5:d3:7b:1f:62:82:57:3d:5f:
73:b1:26:bb:d1:d4:c5:7e:ad:b4:45:19:d6:26:8a:4b:1c:45:
f0:ac:7b:e2:97:b0:09:04:51:5a:f2:ed:77:ce:5f:21:54:dd:
e7:31:15:82:98:31:a9:87:fc:95:80:ab:db:71:eb:f1:4e:2f:
13:3d:2d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:46:58 2024 by rpki-client on console-fra.rpki-client.org