Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/FaUjfNfjuQbJ8sozL1aanMHDHYU.roa
File: FaUjfNfjuQbJ8sozL1aanMHDHYU.roa (raw, json)
Hash identifier: FGYdTQKPztK2r/uw8YC+PAbwHeLxqUFwSJ8QKO38CQA=
Subject key identifier: 15:A5:23:7C:D7:E3:B9:06:C9:F2:CA:33:2F:56:9A:9C:C1:C3:1D:85
Certificate issuer: /CN=11e5af4c72869209539b1194597b03fa3a4a554a
Certificate serial: 018CC3B671FA1C4495382E70220E8C8A2654
Authority key identifier: 11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/FaUjfNfjuQbJ8sozL1aanMHDHYU.roa
Signing time: Mon 01 Jan 2024 06:29:22 +0000
ROA not before: Mon 01 Jan 2024 06:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 193.3.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/EeWvTHKGkglTmxGUWXsD-jpKVUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/EeWvTHKGkglTmxGUWXsD-jpKVUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 12:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:71:fa:1c:44:95:38:2e:70:22:0e:8c:8a:26:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11e5af4c72869209539b1194597b03fa3a4a554a
Validity
Not Before: Jan 1 06:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15a5237cd7e3b906c9f2ca332f569a9cc1c31d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:15:aa:14:aa:19:91:d2:23:3f:db:b7:07:47:
c6:2f:30:46:72:cf:09:7a:92:d7:59:a4:89:79:ac:
43:0a:31:1b:f6:c1:2d:bb:2d:0d:6e:16:3f:f8:c8:
88:0e:1b:4f:09:fd:c6:1e:1a:01:46:7d:1f:5a:b2:
3e:77:49:57:ff:95:03:ad:28:9e:72:8a:5c:b0:cf:
65:5e:cc:f1:4a:89:65:0f:5c:4d:cc:af:a2:23:ab:
70:95:91:54:53:dc:e4:e9:1e:87:a0:4f:2a:a1:b4:
79:42:aa:3d:7d:71:8c:db:6b:de:00:d6:4c:ae:57:
41:75:25:7a:f6:c0:ac:43:35:1a:a7:08:19:84:24:
95:40:a2:74:2a:aa:56:5f:88:d6:42:24:2a:51:a7:
08:cd:98:eb:6f:43:35:6e:a1:ab:04:45:7f:fa:e7:
2f:bc:8b:ea:da:93:52:06:d5:da:23:ca:a5:7e:1c:
1f:ab:bf:f8:58:ab:2b:71:7f:d8:7c:88:0b:85:94:
10:c7:f7:c3:bb:cc:fe:8f:1c:1b:f3:e3:8c:1f:fd:
ca:c7:7a:ea:a5:7f:3d:49:9f:97:e2:59:af:a2:aa:
d6:96:c9:4e:c8:39:b2:17:0e:bf:d5:61:bf:30:79:
d2:8f:27:90:ba:ae:3d:12:0b:1c:14:92:8a:39:23:
71:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A5:23:7C:D7:E3:B9:06:C9:F2:CA:33:2F:56:9A:9C:C1:C3:1D:85
X509v3 Authority Key Identifier:
keyid:11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/FaUjfNfjuQbJ8sozL1aanMHDHYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/EeWvTHKGkglTmxGUWXsD-jpKVUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.160.0/24
Signature Algorithm: sha256WithRSAEncryption
78:69:cc:0c:de:0b:65:db:18:53:94:0d:53:76:ce:a8:d0:a7:
a7:e8:b4:a1:7d:e5:d5:50:14:38:78:59:b6:0d:d9:2e:de:1c:
03:34:d3:8f:95:c2:63:5e:1b:10:6a:dc:ca:28:ab:7a:f1:83:
38:b5:a7:d2:00:4c:bd:08:d5:0b:6c:17:d1:24:c7:b1:3b:9c:
61:c5:79:6f:30:fd:0b:35:52:70:72:ba:e7:24:88:09:79:a9:
dd:ab:95:41:78:43:10:9e:8e:a4:cf:55:a7:68:ee:ae:b6:01:
08:a2:1e:5b:4f:d0:8d:fb:e8:f5:a4:fb:9f:89:53:bb:e4:35:
bd:99:6e:75:09:d1:6f:ae:18:4c:02:41:02:be:8f:49:91:90:
7f:bd:a0:ef:5e:85:a3:25:54:25:f8:c8:4e:15:f4:57:2a:95:
a0:94:59:fa:fd:fc:4e:5c:e7:22:57:5c:16:b5:9d:de:db:b7:
c8:85:85:13:5e:3f:16:ad:a0:cd:22:81:ed:e8:ab:1b:ef:aa:
7b:4e:ec:95:db:53:4a:3d:72:06:c3:72:e6:0c:d1:1b:f1:aa:
ac:28:08:75:f5:32:b4:28:8d:05:94:4e:f5:ef:0a:18:1c:1d:
ca:39:df:3b:06:51:89:6c:5b:11:5a:93:b4:3d:14:3d:b4:2a:
dd:71:46:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:42:40 2024 by rpki-client on console-fra.rpki-client.org