Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/FkyO85bK93iPgrxkiUvYye6Q2qY.roa
File: FkyO85bK93iPgrxkiUvYye6Q2qY.roa (raw, json)
Hash identifier: INhmZNRxS2us8zgQ8p8muSu7SHv7mZMIb/0cUInBjRE=
Subject key identifier: 16:4C:8E:F3:96:CA:F7:78:8F:82:BC:64:89:4B:D8:C9:EE:90:DA:A6
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 018F30FBF080147A65D6F313B8FE363E0072
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/FkyO85bK93iPgrxkiUvYye6Q2qY.roa
Signing time: Tue 30 Apr 2024 21:49:28 +0000
ROA not before: Tue 30 Apr 2024 21:49:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56484
IP address blocks: 185.124.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:fb:f0:80:14:7a:65:d6:f3:13:b8:fe:36:3e:00:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Apr 30 21:49:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164c8ef396caf7788f82bc64894bd8c9ee90daa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:85:06:12:61:50:61:06:ec:f0:15:06:fa:4b:
fc:4b:1d:a1:66:74:18:cb:7e:84:7d:29:75:10:80:
c5:5d:f8:56:66:e6:36:5c:54:0b:8f:78:ef:fb:24:
54:ce:53:46:c0:fd:d9:14:a1:5e:22:3b:2a:0d:37:
52:9c:4d:7e:49:99:f7:b1:b6:07:2a:05:96:77:99:
f2:99:c9:7b:7e:9b:f2:a2:fe:d5:78:34:83:68:a6:
8b:d3:b3:34:e2:9b:94:88:b7:ff:ff:4d:fa:40:09:
41:35:b7:ec:4c:20:ec:84:3a:83:79:4e:6a:28:38:
f8:4a:00:91:f8:99:24:cf:c7:c4:cd:4e:ee:2e:3b:
6f:ac:a1:e8:b4:22:49:2a:de:4c:a1:c6:da:25:5b:
9e:da:e3:b9:87:22:98:37:08:de:09:75:6e:0f:3b:
66:ae:d0:db:a9:9c:04:0c:21:fc:54:6f:e5:67:23:
59:a2:8f:7e:9f:6f:84:ce:36:ea:59:96:45:28:03:
0a:b6:12:4f:c2:0d:a1:0b:4a:bc:1a:b4:8d:56:12:
7f:3a:70:7f:6d:8a:0a:75:a9:e8:ca:4e:eb:f8:97:
c6:41:c9:f7:b2:9c:38:12:ef:f0:4d:b7:7d:22:77:
8d:fe:9f:d2:f0:11:ce:2d:3c:56:e4:3f:95:0f:49:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4C:8E:F3:96:CA:F7:78:8F:82:BC:64:89:4B:D8:C9:EE:90:DA:A6
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/FkyO85bK93iPgrxkiUvYye6Q2qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.150.0/24
Signature Algorithm: sha256WithRSAEncryption
33:48:e7:f3:3a:25:d4:90:67:80:8a:c6:8d:2a:6a:a7:41:35:
f8:61:1a:aa:49:4b:52:0b:7c:81:5d:1e:48:41:92:bf:14:f5:
11:c5:ad:73:c8:67:ca:67:c8:4e:6a:3f:ae:55:4c:ca:f2:57:
8d:49:dc:76:65:83:98:7c:08:e3:88:fb:8d:4b:50:a0:3a:ee:
2d:f6:4d:e2:07:09:a2:a4:b7:30:73:10:b8:56:94:87:58:45:
0b:00:7d:c1:30:1e:72:11:3a:fc:60:cc:91:67:c6:9a:32:46:
dd:ff:34:4f:ce:70:18:79:51:d0:86:e8:d2:05:94:0c:33:88:
c1:8d:09:4d:a5:f8:21:f1:c6:3b:1e:e9:90:cb:79:26:4e:80:
71:11:bd:c2:02:a1:7d:73:68:71:84:78:2f:3d:bc:79:dd:73:
ed:71:74:4d:6c:f7:82:0c:8c:d4:ff:17:0d:1e:21:1c:6d:c3:
d5:83:6a:ef:e6:a2:47:f5:0e:45:b0:6b:71:f6:e0:4f:de:b3:
8b:23:5a:75:12:a9:03:61:51:7c:19:fa:45:71:b4:91:82:28:
26:d1:21:e5:62:23:dc:8c:86:44:29:70:21:ab:aa:38:ee:06:
6b:d9:35:59:ed:da:d8:72:b5:8b:64:5d:9b:87:58:8c:1a:9a:
65:53:23:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 01:31:20 2024 by rpki-client on console-ams.rpki-client.org