Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/5qy-ymwjGaAizDAii117XgPjnro.roa
File: 5qy-ymwjGaAizDAii117XgPjnro.roa (raw, json)
Hash identifier: okDXAGQZesxXtPoAnfv81c42IYanw3Inr91mCyDSnno=
Subject key identifier: E6:AC:BE:CA:6C:23:19:A0:22:CC:30:22:8B:5D:7B:5E:03:E3:9E:BA
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 019107F5F3081DF652075D5CD47BC5E22EE4
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/5qy-ymwjGaAizDAii117XgPjnro.roa
Signing time: Wed 31 Jul 2024 08:44:04 +0000
ROA not before: Wed 31 Jul 2024 08:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 93.89.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 14:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:f5:f3:08:1d:f6:52:07:5d:5c:d4:7b:c5:e2:2e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jul 31 08:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6acbeca6c2319a022cc30228b5d7b5e03e39eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:f9:7e:e4:55:ed:09:1e:00:51:5e:b7:04:
48:96:51:d9:fb:c8:48:f5:82:6f:52:cc:b2:42:78:
ff:c5:4d:76:0d:fb:76:14:42:07:ea:6b:f2:c0:9e:
b6:56:f6:bd:2e:d9:22:a3:1f:6d:8a:50:66:83:c2:
fb:8f:66:68:15:fc:7b:a8:80:e8:91:65:7d:2e:dc:
4e:bc:7d:63:74:53:30:12:51:be:62:c3:79:0c:81:
a4:a4:0b:2e:12:3c:a9:1f:13:8e:af:30:ae:25:48:
e9:0e:55:25:c7:72:08:24:b4:94:e2:cd:16:2b:c0:
c9:7b:75:55:ae:f3:43:88:ec:b8:69:96:1e:ed:10:
1b:a1:90:61:73:5c:fc:be:5d:42:c5:de:27:6c:1c:
ea:c9:d1:96:4a:ad:53:e0:62:8f:35:98:89:1e:60:
10:38:8a:12:12:1d:c0:47:e6:8d:eb:68:12:16:98:
e4:ca:c4:bd:34:7a:ad:ed:7a:3a:6c:40:74:83:66:
de:d6:6f:f1:46:aa:09:01:30:be:13:e8:25:d6:6a:
ed:5c:bd:c5:d4:9b:80:2e:a4:49:5e:75:9c:8e:48:
4b:29:b0:81:46:7f:0e:aa:a9:93:8d:2d:86:71:90:
ab:62:06:5e:58:c9:09:3c:79:87:07:63:91:1d:08:
94:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AC:BE:CA:6C:23:19:A0:22:CC:30:22:8B:5D:7B:5E:03:E3:9E:BA
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/5qy-ymwjGaAizDAii117XgPjnro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
25:3b:50:2c:b6:db:bf:d5:ab:05:56:3d:ac:94:14:14:c4:46:
be:e9:1c:aa:74:78:b4:a0:35:fc:b3:80:6e:95:90:c7:24:3a:
2d:af:a8:c2:24:37:b6:e8:3c:d7:69:e5:63:75:bf:6b:31:f2:
88:4d:98:c9:81:e7:19:9a:f7:1f:13:d2:cb:21:8a:46:00:b7:
a0:81:50:7c:a8:de:67:6e:6e:51:51:30:4f:82:68:e9:a0:32:
d5:f5:b0:00:53:26:84:9b:c7:35:4b:3c:38:da:8e:2b:d0:f1:
bf:0e:96:a5:33:26:2c:74:bf:58:cc:b4:d9:c1:44:b8:a9:89:
05:36:93:fd:77:f5:c9:94:20:77:59:e0:47:74:86:30:ab:1e:
6b:be:03:cc:41:c3:9c:1e:3c:a2:a6:9b:be:c9:67:53:52:a3:
d1:1c:56:86:53:db:e4:bf:d9:5d:78:4d:74:77:03:fc:47:f7:
70:97:06:cf:c7:e3:ad:85:ac:83:d0:f1:a8:1f:ca:12:e6:46:
8a:47:bd:0f:c2:0f:72:a5:06:95:18:06:cf:08:97:ad:ac:63:
f1:53:05:86:4b:72:a0:84:0c:60:d2:f4:a1:42:3c:cb:71:fe:
72:32:df:da:c1:2b:41:85:4d:30:97:90:76:78:89:c6:63:6d:
1b:3d:d2:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:08:53 2024 by rpki-client on console-ams.rpki-client.org