Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/1ESXNafcRm0Y4ztw2XV2s7gTUBw.roa
File: 1ESXNafcRm0Y4ztw2XV2s7gTUBw.roa (raw, json)
Hash identifier: hFdYg3lvZyEKV/JZEKe9l14Xa+L8WBpynqnUAdvp518=
Subject key identifier: D4:44:97:35:A7:DC:46:6D:18:E3:3B:70:D9:75:76:B3:B8:13:50:1C
Certificate issuer: /CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Certificate serial: 018CCA2A3193BD1341B960AA5784620E1EEA
Authority key identifier: 80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/1ESXNafcRm0Y4ztw2XV2s7gTUBw.roa
Signing time: Tue 02 Jan 2024 12:33:31 +0000
ROA not before: Tue 02 Jan 2024 12:33:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51859
IP address blocks: 91.185.199.0/24 maxlen: 24
91.185.218.0/23 maxlen: 24
91.185.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/gPmiS9JsyCF1GKEfWY5jcgJeiuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/gPmiS9JsyCF1GKEfWY5jcgJeiuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:31:93:bd:13:41:b9:60:aa:57:84:62:0e:1e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f9a24bd26cc8217518a11f598e6372025e8ae9
Validity
Not Before: Jan 2 12:33:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4449735a7dc466d18e33b70d97576b3b813501c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:15:8f:9f:14:2f:52:b4:47:6b:aa:0c:b0:5f:
92:dd:67:35:f5:97:8b:33:5a:fd:5c:0d:d2:9b:33:
35:21:2f:3e:83:dd:f4:8a:af:b2:15:60:f8:0e:9a:
05:86:c5:c6:5e:c4:76:10:3b:04:87:90:0d:6f:a1:
1a:14:4a:a5:fe:1d:ed:91:5d:82:58:90:0f:bb:c7:
43:c8:85:1c:63:5c:e2:4f:53:c8:48:dc:8f:83:b3:
d9:d3:07:b6:93:7c:0a:a3:c0:4f:db:d8:06:c2:15:
98:e3:12:7e:5d:55:97:5e:f3:d0:fe:6f:99:b0:8e:
70:7e:8c:ad:eb:04:fa:3d:34:b1:97:17:26:5f:a4:
ec:4a:c1:78:6c:2d:81:b2:13:c3:65:31:04:4a:de:
45:0a:a9:f4:da:02:bf:0b:f0:9f:f9:03:71:37:0e:
3b:43:af:0f:42:9b:ba:34:f6:91:ed:4a:d6:f8:8c:
ce:8a:85:5f:40:db:66:75:70:ed:62:ee:ec:b8:14:
5c:1d:fe:75:ba:59:8a:54:54:b0:59:0a:8a:94:db:
06:ea:a0:77:85:05:0e:78:35:bd:44:d5:03:d5:e3:
98:f4:5f:d5:68:bf:b4:7a:69:3d:f4:b6:b7:b5:72:
59:e6:c6:66:63:42:ef:2b:cd:d6:28:10:e2:17:64:
4e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:44:97:35:A7:DC:46:6D:18:E3:3B:70:D9:75:76:B3:B8:13:50:1C
X509v3 Authority Key Identifier:
keyid:80:F9:A2:4B:D2:6C:C8:21:75:18:A1:1F:59:8E:63:72:02:5E:8A:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPmiS9JsyCF1GKEfWY5jcgJeiuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/1ESXNafcRm0Y4ztw2XV2s7gTUBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/fb212a-7a76-42e2-8989-965529f20d11/1/gPmiS9JsyCF1GKEfWY5jcgJeiuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.185.199.0/24
91.185.218.0/23
91.185.223.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3f:79:c8:e1:cf:42:d0:7e:9a:bd:1e:e3:ad:be:d7:4a:20:
63:33:cc:f1:42:7a:49:d3:86:f6:93:87:1d:74:16:0b:a4:d5:
4d:42:2b:b9:20:e0:a9:13:81:07:96:4f:1a:1f:07:74:21:5f:
99:2d:c4:1a:4d:4d:42:88:70:19:7b:74:0f:32:66:f8:db:fb:
c9:71:94:31:58:d1:80:33:de:2e:71:d2:de:25:0a:15:72:66:
8d:14:e3:a3:8e:84:a6:51:ed:04:ce:1a:8f:34:3d:78:d4:8c:
86:8d:ac:ec:0c:5d:6d:d0:a9:48:93:4e:0e:83:10:22:61:ef:
b5:6d:44:c2:8f:51:b7:21:29:08:4d:43:79:10:90:f2:5f:e7:
45:4a:ca:c1:b5:c1:f7:bb:59:3b:f7:8e:62:37:85:80:b5:f2:
0c:2a:a0:85:f8:94:13:4a:1c:c3:7d:01:1f:9f:90:47:ab:46:
de:39:ce:d1:89:e0:1b:1c:77:a1:2d:50:86:9e:f2:78:82:35:
5a:7f:be:4b:2e:dc:27:13:fb:2f:35:af:fd:a8:b2:b0:76:b5:
51:48:b8:1a:dc:8f:f7:03:b1:cc:be:87:04:06:3c:72:be:a3:
0a:67:61:61:59:59:ac:9e:c0:10:98:cf:92:6a:97:f1:4b:3f:
06:1b:3c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:10:22 2024 by rpki-client on console-ams.rpki-client.org