Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/AYDCCGrQkxJUB5fMyM48-gny6TM.roa
File: AYDCCGrQkxJUB5fMyM48-gny6TM.roa (raw, json)
Hash identifier: 3mcp7Xi4NN9G4xgLegIiFgAb7HxI5SUGqPyK5vhvZZc=
Subject key identifier: 01:80:C2:08:6A:D0:93:12:54:07:97:CC:C8:CE:3C:FA:09:F2:E9:33
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 019107F5F37C57C303EC36413C5B13EC5DFC
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/AYDCCGrQkxJUB5fMyM48-gny6TM.roa
Signing time: Wed 31 Jul 2024 08:44:04 +0000
ROA not before: Wed 31 Jul 2024 08:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 93.89.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 14:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:f5:f3:7c:57:c3:03:ec:36:41:3c:5b:13:ec:5d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jul 31 08:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0180c2086ad09312540797ccc8ce3cfa09f2e933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:57:31:b8:3d:a9:31:df:ba:c0:b9:77:c2:78:
bd:aa:32:df:c6:27:8e:e2:4a:16:02:09:8d:4b:cc:
5e:25:9f:50:e5:86:a8:01:16:b2:f9:93:3b:eb:51:
20:d7:ea:ed:63:47:ef:6f:7e:b6:22:dc:fc:b1:56:
de:05:b5:55:63:c0:d2:0e:b4:ef:e8:83:0a:79:d2:
80:47:e6:86:0f:c7:69:22:10:8c:17:5d:f2:93:98:
22:48:3a:c2:06:cf:85:f6:4e:d3:5e:89:cc:bd:4d:
9e:ce:de:3b:77:c6:f1:27:49:9d:ea:b5:79:e1:d1:
98:ea:ab:13:b3:5c:19:9b:0b:e6:61:09:d2:9f:d7:
29:5a:29:f0:c0:ad:d9:fa:0a:1e:b5:95:61:11:1a:
be:a9:78:e4:bc:1d:67:28:c9:4b:51:52:d7:f3:60:
49:8f:46:14:f6:86:c0:71:a3:4a:d7:4b:61:64:c4:
ea:0c:5c:ce:23:41:77:ba:10:eb:82:95:76:6a:3d:
8a:55:a6:4e:4e:b4:71:00:df:db:7a:1a:82:08:b1:
51:9d:e6:82:cb:fe:97:5c:da:ee:d4:c8:28:f5:d9:
cb:9a:ce:6f:08:f7:22:93:c6:17:71:5c:4d:a0:e8:
3e:5b:ed:63:64:d4:7f:70:ab:00:fc:b6:86:58:31:
8a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:80:C2:08:6A:D0:93:12:54:07:97:CC:C8:CE:3C:FA:09:F2:E9:33
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/AYDCCGrQkxJUB5fMyM48-gny6TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
25:18:c6:34:c3:9c:94:e0:5d:1d:bc:97:e9:83:8a:8c:01:b8:
0b:6e:3e:a5:62:43:11:a5:04:58:2b:67:ec:37:92:ea:3f:06:
87:41:07:4c:83:6a:dc:be:6f:4e:07:71:a2:de:72:3f:22:f2:
b2:0a:bd:16:04:87:de:66:67:c1:80:60:b5:4f:43:c7:8c:89:
8e:3a:9a:50:62:f0:cb:db:01:bc:a2:43:93:a4:9c:23:48:f1:
9f:e8:48:fb:bd:25:45:1f:35:c7:86:ca:e2:93:82:42:7a:3e:
bf:5d:bd:c6:47:71:4a:b3:dc:8d:e5:b1:a7:f6:97:04:12:a9:
47:bb:ba:42:a3:69:f6:6b:da:7f:d4:ff:37:65:a0:0d:f1:42:
a0:a9:40:39:01:72:e3:92:81:68:8b:b6:82:f1:02:e5:12:c2:
e1:ff:66:a0:38:7b:c3:cc:fb:54:0c:0f:82:77:d6:29:29:ca:
f4:d2:e1:c4:7e:ac:0c:b3:41:9d:d7:2e:ce:1d:bb:38:e1:2d:
83:dd:d3:2d:74:af:5e:c9:8f:db:7d:ce:7d:b4:7a:c4:9e:9c:
8d:7e:03:69:3d:6d:6b:e2:63:9b:0f:5f:e9:1d:5f:be:a8:03:
68:3d:43:74:75:37:c9:c0:b1:6a:c9:58:5d:3d:22:6b:da:5f:
91:53:fd:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 18:45:32 2024 by rpki-client on console-fra.rpki-client.org