Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa
File: F_jkUE40owlaFTYWzTdy0NPMW8s.roa (raw, json)
Hash identifier: Qv9RRblCjOLEIAD7xFIfeCZqfMJcoaYRW29RZmqCfCE=
Subject key identifier: 17:F8:E4:50:4E:34:A3:09:5A:15:36:16:CD:37:72:D0:D3:CC:5B:CB
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018CC8017BBDFC428765F1ED628F51DF85FC
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa
Signing time: Tue 02 Jan 2024 02:29:49 +0000
ROA not before: Tue 02 Jan 2024 02:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 93.89.216.0/24 maxlen: 24
93.89.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 19:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:7b:bd:fc:42:87:65:f1:ed:62:8f:51:df:85:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jan 2 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17f8e4504e34a3095a153616cd3772d0d3cc5bcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:43:75:70:02:29:a2:05:cd:8a:d4:a8:8f:
f8:78:6b:13:54:9c:b7:e4:a1:45:97:c3:55:6a:1c:
e8:50:eb:db:6d:3f:03:a0:ef:eb:e6:bc:c9:f6:79:
cc:27:64:0d:dc:32:3e:36:3c:e5:ac:6e:ce:90:81:
ed:c0:d9:fb:7d:33:b0:de:59:e5:05:33:61:04:09:
c4:90:56:02:b4:e8:03:af:a4:c3:99:1c:a3:32:e8:
b9:70:c5:2d:c5:06:61:53:e4:5d:03:8f:49:50:01:
4e:fc:0e:e6:36:1b:6d:b2:9e:05:31:fb:c0:4b:12:
ed:08:43:49:03:29:cb:eb:cb:a6:87:e9:7e:dd:8e:
03:dc:f4:64:cc:b3:66:ff:3f:00:9a:87:2a:2d:87:
33:92:19:16:56:60:11:e2:d6:7c:ec:04:20:d7:69:
17:7f:f9:6a:91:2d:5e:f8:3f:53:e7:18:98:67:8d:
50:f6:3c:83:1f:23:6d:6e:71:64:27:d1:70:5d:71:
77:3b:ba:c3:ee:a9:2d:72:79:5f:3b:4a:a0:07:07:
17:06:eb:a9:61:e2:a2:6b:c5:ab:d9:a0:ca:fa:8a:
26:8e:63:74:d7:a2:b3:60:81:83:79:0f:2d:cc:40:
3e:54:af:c2:c1:a2:c5:19:f9:41:03:ca:41:ae:da:
f3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F8:E4:50:4E:34:A3:09:5A:15:36:16:CD:37:72:D0:D3:CC:5B:CB
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.216.0/24
93.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
26:85:5f:33:20:b4:0e:ab:54:8e:18:55:4e:58:05:97:ce:0c:
93:93:62:8d:70:6b:a6:4c:e0:65:dd:d4:cd:0e:88:af:2d:04:
8c:18:28:9e:79:01:2e:3e:3d:60:10:34:69:22:ca:57:6c:73:
05:7e:c6:4a:dc:48:2f:bb:d0:63:d4:50:ed:40:6e:f8:3f:6c:
09:a2:04:cf:22:09:e6:17:1f:df:49:50:80:7d:0b:44:c2:f8:
f8:9a:bd:be:d4:01:1d:6e:31:63:df:c4:04:b6:51:09:9f:d9:
ea:17:f9:13:a4:8e:19:9b:12:38:97:fe:35:26:7e:6a:13:ab:
27:1c:dc:98:07:d9:57:cb:80:01:a7:6e:9a:74:8d:fb:ee:69:
c9:16:83:a3:45:17:55:e8:07:d9:82:98:2c:35:fa:6d:b0:e8:
f2:52:0a:aa:9c:47:f0:f0:3e:e7:66:8a:bc:e9:df:7d:75:4c:
b9:fa:e3:58:95:75:10:a0:b0:1d:2c:98:07:63:b9:5e:87:f5:
12:73:cb:29:04:58:8a:89:36:c4:89:29:9e:ec:83:e6:9d:0d:
d3:1b:3e:8b:b5:e7:20:a7:a5:ef:47:f3:19:ba:78:38:b9:c3:
18:41:75:f2:7c:6d:42:2b:ab:b8:f4:15:40:8c:97:9e:d7:0d:
aa:e2:27:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 01:30:56 2024 by rpki-client on console-ams.rpki-client.org