Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6QuTZ2zKl-0_uh_D4OmpZFFios8.roa
File: 6QuTZ2zKl-0_uh_D4OmpZFFios8.roa (raw, json)
Hash identifier: 7iEmZFrsQTOByP6GrrJZwpJ6HpH1orpEp9mD0C8mbJ8=
Subject key identifier: E9:0B:93:67:6C:CA:97:ED:3F:BA:1F:C3:E0:E9:A9:64:51:62:A2:CF
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7954BE652C55055AEFDB628CF1719A9
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6QuTZ2zKl-0_uh_D4OmpZFFios8.roa
Signing time: Tue 02 Jan 2024 00:31:39 +0000
ROA not before: Tue 02 Jan 2024 00:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42225
IP address blocks: 86.105.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 May 2024 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:4b:e6:52:c5:50:55:ae:fd:b6:28:cf:17:19:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e90b93676cca97ed3fba1fc3e0e9a9645162a2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8c:48:3d:ec:60:72:2d:3b:69:80:93:d3:5a:
96:29:43:5c:f7:a9:0a:18:52:90:20:b3:c5:05:87:
18:d7:fe:da:64:1c:e2:06:33:0e:a3:73:c1:b6:e8:
7e:08:65:00:dd:bc:4d:dd:5d:ee:33:6f:e0:6e:d7:
55:3b:95:76:f0:a5:a8:79:cc:f9:03:e2:47:75:dc:
1f:9c:ed:9a:54:63:31:ad:4a:f9:94:a8:c7:d3:83:
b2:9b:5e:cc:4e:28:3c:6d:9a:d6:9a:b6:09:58:db:
34:39:c7:86:dc:41:91:bd:38:c0:44:09:07:18:20:
19:b2:33:6a:f1:8a:04:6b:ae:07:99:99:04:49:61:
38:2f:6a:9c:77:7c:5d:60:73:4c:18:b7:dc:77:df:
ba:d1:6a:b0:6a:ca:d5:98:39:8d:be:f5:e0:d9:d1:
62:17:7c:c2:8c:84:91:6e:d5:1e:8c:6f:da:b6:1a:
bf:3c:57:71:74:bc:00:fe:f3:e3:b0:15:77:2a:c6:
84:3d:91:56:33:cd:7b:56:06:1d:ba:37:dd:22:d8:
60:3c:e5:bc:46:f5:c4:ef:8b:0d:55:bf:dc:b9:f2:
77:5c:15:ad:61:40:d7:a4:62:b3:14:cb:62:f9:a5:
fc:01:c2:8f:28:b6:0b:41:67:92:d2:8d:44:bf:2f:
a6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0B:93:67:6C:CA:97:ED:3F:BA:1F:C3:E0:E9:A9:64:51:62:A2:CF
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6QuTZ2zKl-0_uh_D4OmpZFFios8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.171.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c3:2c:71:8b:3a:62:74:1b:7c:2e:5e:cc:cb:11:86:6e:bd:
52:e9:2c:12:d8:7b:77:11:1e:05:bf:7e:93:8f:47:4f:6a:b0:
bb:c7:cd:6d:2b:70:86:64:5f:2b:6c:6d:22:3b:bd:ef:81:35:
83:01:2f:3d:b8:8d:20:e0:41:78:21:26:a8:c2:34:d3:81:95:
48:d0:c9:a2:37:61:71:6a:bf:1d:46:be:91:fe:22:01:48:fd:
37:88:76:8c:85:f9:d9:0b:c6:d5:52:a4:86:9a:63:bd:07:c2:
45:ec:9c:a3:96:3e:98:bb:ce:e8:7b:4d:38:9c:44:af:be:7f:
32:47:5c:6a:b7:ec:63:3e:30:dd:72:61:eb:78:88:35:2a:16:
30:31:e3:ae:81:be:eb:70:08:d6:11:04:bf:33:7a:8d:72:44:
4b:ea:92:94:1e:e8:85:fd:50:ce:9d:4e:6c:82:00:3e:ea:59:
b5:8c:dc:92:95:1c:be:bb:4f:7c:14:92:98:e3:f5:6e:58:bf:
a4:8e:a7:dc:a9:36:a5:af:80:99:bc:35:2e:7d:a4:39:dd:e5:
ac:c7:aa:4f:75:cc:f8:23:44:dd:39:57:8d:9f:9b:c8:56:57:
12:25:4a:17:5b:19:e9:86:6f:8a:1d:ae:24:c8:f7:f7:ff:79:
53:f3:26:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 20:08:44 2024 by rpki-client on console-fra.rpki-client.org