Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/zcEx4almOyGg4WRz5VkAARE0ioQ.roa
File: zcEx4almOyGg4WRz5VkAARE0ioQ.roa (raw, json)
Hash identifier: OaNlZnGIo7jJ4M1wu3JhljaSFoDPForWKXTLEAtSrNU=
Subject key identifier: CD:C1:31:E1:A9:66:3B:21:A0:E1:64:73:E5:59:00:01:11:34:8A:84
Certificate issuer: /CN=78dedb8988bc8bb1a5f9e55f41726b65446c25ec
Certificate serial: 018E3BBDE78646A09D0B6FE96FD492153030
Authority key identifier: 78:DE:DB:89:88:BC:8B:B1:A5:F9:E5:5F:41:72:6B:65:44:6C:25:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eN7biYi8i7Gl-eVfQXJrZURsJew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/zcEx4almOyGg4WRz5VkAARE0ioQ.roa
Signing time: Thu 14 Mar 2024 06:54:45 +0000
ROA not before: Thu 14 Mar 2024 06:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208161
IP address blocks: 193.242.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/eN7biYi8i7Gl-eVfQXJrZURsJew.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/eN7biYi8i7Gl-eVfQXJrZURsJew.mft
rsync://rpki.ripe.net/repository/DEFAULT/eN7biYi8i7Gl-eVfQXJrZURsJew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Jun 2024 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:bd:e7:86:46:a0:9d:0b:6f:e9:6f:d4:92:15:30:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78dedb8988bc8bb1a5f9e55f41726b65446c25ec
Validity
Not Before: Mar 14 06:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cdc131e1a9663b21a0e16473e559000111348a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1c:1c:b3:62:ea:a5:48:02:56:b4:3e:17:86:
36:4a:c7:04:de:35:ab:27:b1:9b:d8:b3:04:43:12:
19:69:21:df:02:33:92:ab:21:f6:48:4e:3e:0d:d9:
b6:98:0b:ab:0e:be:6a:6b:5b:a5:c3:c4:33:a8:08:
62:dd:0f:83:1c:c7:ad:c9:06:d5:2e:48:e6:0f:c2:
4b:26:e4:61:ff:b4:25:cc:d6:b3:67:5f:63:dd:97:
35:83:b8:1e:d0:76:3a:d3:5d:22:2d:74:ee:fe:87:
5e:b6:ec:aa:2f:b8:71:e9:a3:0e:29:ed:f8:94:f3:
4b:f1:cc:8f:3f:fd:60:69:60:9d:e4:52:96:76:38:
11:a0:a8:0c:22:0f:e7:4d:42:c8:89:ad:f8:de:d1:
6c:5e:bc:ce:e0:73:0c:28:2e:fc:cb:9d:d2:eb:4a:
30:60:2d:4c:54:c3:e0:6b:fd:34:45:25:96:c3:a4:
d0:99:81:8a:3d:72:be:10:b2:a2:49:86:09:4d:c7:
62:c3:21:b0:25:90:50:d7:67:2f:97:66:98:95:1b:
71:c1:ef:21:af:50:6a:d7:f9:d6:28:83:22:fe:85:
16:ea:0a:ce:b7:ef:c4:f3:36:9c:fc:6c:86:d5:64:
c2:3c:26:e4:5f:28:b0:19:7a:f3:31:4e:66:94:56:
3c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C1:31:E1:A9:66:3B:21:A0:E1:64:73:E5:59:00:01:11:34:8A:84
X509v3 Authority Key Identifier:
keyid:78:DE:DB:89:88:BC:8B:B1:A5:F9:E5:5F:41:72:6B:65:44:6C:25:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eN7biYi8i7Gl-eVfQXJrZURsJew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/zcEx4almOyGg4WRz5VkAARE0ioQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/081a4c-d631-4311-9bd5-a6254df526c1/1/eN7biYi8i7Gl-eVfQXJrZURsJew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.209.0/24
Signature Algorithm: sha256WithRSAEncryption
53:46:69:d7:44:34:9e:70:cf:8d:83:c0:30:f1:53:32:97:63:
7c:56:bf:21:26:26:d2:cb:17:5b:fa:07:72:b8:c7:6c:9f:36:
a0:85:0a:b9:55:06:f2:aa:61:5c:e8:4c:47:da:e7:b6:3d:62:
e4:75:33:50:ee:ca:46:24:23:2a:9d:68:14:02:a5:1e:71:6d:
7c:4e:81:16:ca:73:aa:1e:1b:82:6c:5a:88:c5:2f:bd:92:f1:
0f:63:24:7f:71:fc:d9:7e:4e:3c:b7:d0:1b:c9:18:46:c3:a9:
06:d2:90:24:84:87:df:50:18:04:4e:13:27:e0:95:09:1e:2c:
1e:cd:b9:35:2f:60:49:34:4b:fc:51:9c:57:c9:22:6e:83:e1:
ae:9f:e4:93:85:22:88:f0:39:8a:04:20:66:d2:a3:90:c4:42:
9f:f9:cd:3b:c1:73:72:3a:66:a2:f6:5e:5b:fc:ab:9c:16:e7:
d9:75:ba:96:7d:52:57:16:85:70:7f:b0:78:2d:4b:19:f2:36:
6a:f5:43:cf:07:12:7d:0d:5f:3c:33:14:f6:5d:90:b4:8a:0a:
cb:05:3c:70:b6:13:fb:65:d8:1a:3d:67:9c:27:2a:23:da:35:
f2:2f:e8:7c:70:b0:4c:c2:36:6a:0b:3e:ad:7d:4a:10:0f:9f:
65:45:8a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 4 14:01:07 2024 by rpki-client on console-fra.rpki-client.org