Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/L0lJ-m63UBCg3qylE6nYzhK_WxE.roa
File: L0lJ-m63UBCg3qylE6nYzhK_WxE.roa (raw, json)
Hash identifier: VAuyhh9aoEK35Yd1yy+sFbp+5BW1eoVueDqbh86o+R0=
Subject key identifier: 2F:49:49:FA:6E:B7:50:10:A0:DE:AC:A5:13:A9:D8:CE:12:BF:5B:11
Certificate issuer: /CN=7240ba744e09e1d36cb7046cb58995c1e3513220
Certificate serial: 018CC26CF8B64197D9AAE8DB0605656D066C
Authority key identifier: 72:40:BA:74:4E:09:E1:D3:6C:B7:04:6C:B5:89:95:C1:E3:51:32:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckC6dE4J4dNstwRstYmVweNRMiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/L0lJ-m63UBCg3qylE6nYzhK_WxE.roa
Signing time: Mon 01 Jan 2024 00:29:30 +0000
ROA not before: Mon 01 Jan 2024 00:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47692
IP address blocks: 193.84.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/ckC6dE4J4dNstwRstYmVweNRMiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/ckC6dE4J4dNstwRstYmVweNRMiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckC6dE4J4dNstwRstYmVweNRMiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f8:b6:41:97:d9:aa:e8:db:06:05:65:6d:06:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7240ba744e09e1d36cb7046cb58995c1e3513220
Validity
Not Before: Jan 1 00:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f4949fa6eb75010a0deaca513a9d8ce12bf5b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:1f:1d:8b:3b:55:b7:6c:ca:d4:ca:79:c6:
d0:a1:38:3d:87:5d:a0:12:a9:8d:7c:eb:ea:12:a2:
8c:f8:e3:a4:f4:39:b6:91:30:b7:13:44:73:23:18:
b2:dc:de:f5:1a:86:99:32:12:69:55:4d:cd:20:76:
d7:43:7f:04:bb:0a:7b:f8:36:d4:19:1c:5c:d9:57:
4d:fe:e7:09:b6:b2:cb:4a:73:0d:dc:aa:2f:d9:c8:
76:b2:0d:5a:de:1f:b5:40:ea:92:67:b6:dc:50:ec:
05:bb:44:9e:56:92:85:c2:d4:8d:83:09:85:7f:8d:
ad:17:a1:d1:f8:07:fa:aa:4b:ba:69:b7:16:7e:2d:
5b:d4:09:ed:cc:ca:76:0b:7b:31:36:08:bc:a6:da:
b6:6a:f0:c5:d8:ba:c2:9d:5c:1d:87:05:48:2d:9f:
22:86:be:2d:af:ee:f0:34:12:2e:df:28:5b:e6:61:
1b:8e:aa:fc:a7:0d:7c:40:f9:a2:54:f1:d6:3a:88:
c4:e3:1a:80:4a:fa:e8:5e:a1:f7:9f:03:0e:c2:e7:
cb:11:f6:e8:6c:f1:88:ef:ff:13:d5:0e:36:bb:56:
7b:0e:fd:eb:32:19:8f:9e:65:57:bd:19:9a:00:02:
3a:d8:59:6f:f7:17:b5:e9:52:7e:1b:b4:2d:9d:f2:
97:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:49:49:FA:6E:B7:50:10:A0:DE:AC:A5:13:A9:D8:CE:12:BF:5B:11
X509v3 Authority Key Identifier:
keyid:72:40:BA:74:4E:09:E1:D3:6C:B7:04:6C:B5:89:95:C1:E3:51:32:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckC6dE4J4dNstwRstYmVweNRMiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/L0lJ-m63UBCg3qylE6nYzhK_WxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/614d77-d34c-4fba-94e3-2b5ec652af6d/1/ckC6dE4J4dNstwRstYmVweNRMiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.52.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c1:30:7c:a9:68:bd:5a:1f:27:9e:c7:c2:39:71:55:da:60:
e8:d6:6d:c2:d4:08:c8:cf:09:08:7a:7a:0f:bd:9c:6f:02:0d:
d9:f9:cb:b0:cc:04:f4:20:fe:83:16:02:b3:36:4d:5b:0d:96:
fd:39:30:19:f4:42:96:0d:28:ad:84:a6:ae:04:c6:14:b4:d5:
77:6b:c6:8f:33:b6:42:16:10:4c:fa:5a:20:28:8a:6e:ea:51:
20:54:18:8c:2d:e2:36:1b:9f:1e:a5:1e:eb:e5:87:5b:36:6c:
ae:6c:c1:ad:b0:1a:5a:a4:75:98:46:0b:25:d2:95:b5:6d:83:
cf:07:14:0c:a2:da:a8:64:93:b7:20:93:8b:b9:ed:7a:18:5b:
04:c0:27:af:09:64:8c:c4:85:2c:d9:3b:2e:02:fb:f3:6c:c2:
71:71:8d:de:32:f8:60:17:55:8f:92:53:f6:af:e2:22:a1:77:
ad:27:d7:84:9f:8d:af:7c:6f:a9:2f:b3:6b:fd:b5:57:d0:f9:
57:8c:37:95:04:04:dc:89:fd:21:3f:f9:6b:2e:bd:ed:43:2f:
71:47:6e:b4:f8:a1:e1:88:4c:dc:40:57:aa:02:9b:c6:47:b4:
e6:56:10:f0:6c:5d:7d:cc:27:44:c4:df:7d:bb:e8:f2:43:4f:
62:0a:f6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:52:08 2024 by rpki-client on console-ams.rpki-client.org