Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/hhm4UpwZDeUKtjteUj476rZeP4U.roa
File: hhm4UpwZDeUKtjteUj476rZeP4U.roa (raw, json)
Hash identifier: VB32cqMYw6O5d/0Gy7DvdiR9jkP4R7tb5FE5GUMmdJ8=
Subject key identifier: 86:19:B8:52:9C:19:0D:E5:0A:B6:3B:5E:52:3E:3B:EA:B6:5E:3F:85
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 018CC4254D88055245B7F5A82289180E0EB6
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/hhm4UpwZDeUKtjteUj476rZeP4U.roa
Signing time: Mon 01 Jan 2024 08:30:28 +0000
ROA not before: Mon 01 Jan 2024 08:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206394
IP address blocks: 195.150.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:4d:88:05:52:45:b7:f5:a8:22:89:18:0e:0e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 1 08:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8619b8529c190de50ab63b5e523e3beab65e3f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:86:7b:89:17:9c:58:7b:41:5e:0b:a6:59:3d:
a8:58:e4:96:0b:c0:1f:55:84:b3:a4:1e:15:e9:8b:
50:f5:70:85:36:7b:58:15:90:12:1a:73:a8:1c:4f:
b2:cc:ed:ba:33:a8:73:2b:14:a7:9a:41:d6:68:36:
c9:95:93:6b:b2:05:df:56:1f:bc:22:cb:1f:31:dc:
c6:a0:ea:98:7f:67:a1:3c:04:7d:90:2c:ce:5c:28:
d9:e6:47:76:6c:11:e1:d0:a9:0f:b6:cf:62:7d:30:
53:02:e0:ba:15:8f:4f:19:fa:06:9e:a3:ca:c1:4d:
c2:e0:45:a1:6b:8b:16:40:6d:85:78:c7:d7:70:bc:
b9:ec:61:24:2d:8d:e3:7b:e6:26:61:7a:a8:73:89:
f3:1b:73:91:a7:28:d9:54:df:d1:82:d1:a1:22:da:
ed:ce:9b:e2:6e:14:eb:ef:5b:e1:15:12:db:18:4d:
57:57:dd:c2:01:b1:fa:38:1b:da:92:a0:bd:b6:b6:
98:e4:1a:25:6e:26:41:d3:df:e7:14:22:15:23:35:
21:eb:6d:6b:7f:25:78:8d:60:8e:17:af:62:86:4c:
48:a8:25:6c:1f:77:b2:3d:5d:be:d5:e0:5c:aa:1f:
9b:3c:53:f3:b6:d3:3c:49:5d:a4:e9:a8:d8:13:c1:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:19:B8:52:9C:19:0D:E5:0A:B6:3B:5E:52:3E:3B:EA:B6:5E:3F:85
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/hhm4UpwZDeUKtjteUj476rZeP4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.200.0/24
Signature Algorithm: sha256WithRSAEncryption
38:4f:34:df:c1:27:34:da:00:a1:fd:08:57:91:8b:dd:f2:35:
63:72:17:d9:97:f0:50:e3:21:31:c3:6d:d0:54:4f:89:50:a8:
5b:a9:5e:dd:ef:15:8e:c0:f4:e8:44:52:e2:1a:f3:62:5b:92:
7a:85:6c:04:98:06:28:48:07:65:ff:5c:84:cd:7b:0f:0e:19:
fa:e2:a3:88:f3:eb:cc:6d:b1:d4:00:2f:4c:e1:b8:d7:fc:a7:
e2:5c:85:6d:f4:75:be:5e:7f:8b:e7:c5:5f:72:bb:9f:60:d8:
72:25:bb:51:a4:d1:f9:4d:b6:8e:cb:b3:89:86:33:53:d2:b8:
be:ed:cc:d6:0e:42:c6:18:32:54:23:0d:be:3c:e4:e8:71:9d:
69:0d:12:d5:94:f7:ab:89:45:77:98:9a:58:6f:11:ba:84:12:
ae:3e:57:37:ca:68:8c:48:86:67:ee:1b:31:fa:84:d1:76:38:
d4:1e:81:a0:a6:af:d6:be:00:c3:a2:58:f1:e6:44:6e:2f:03:
01:cd:23:93:35:1d:3a:83:12:27:50:cd:0f:01:43:d2:21:e0:
82:eb:9a:73:00:23:03:a6:43:39:bf:4a:9e:c9:1a:6f:b1:b6:
d8:a2:68:b2:eb:37:30:1b:cb:f3:f9:41:ad:18:a6:cd:a9:ea:
be:a2:39:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:12 2024 by rpki-client on console-fra.rpki-client.org