Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/OUbhj1RWy1FayCne8bkzVS8wjYE.roa
File: OUbhj1RWy1FayCne8bkzVS8wjYE.roa (raw, json)
Hash identifier: /vRaLqoXO0Sw34Mnt0FxzwXcvPKRRJnaKM5yri61o1s=
Subject key identifier: 39:46:E1:8F:54:56:CB:51:5A:C8:29:DE:F1:B9:33:55:2F:30:8D:81
Certificate issuer: /CN=41763db1ed334a7c5280ab9854742914ae0c4c52
Certificate serial: 018CC726074040AFD2886E63C6AAA332A464
Authority key identifier: 41:76:3D:B1:ED:33:4A:7C:52:80:AB:98:54:74:29:14:AE:0C:4C:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXY9se0zSnxSgKuYVHQpFK4MTFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/OUbhj1RWy1FayCne8bkzVS8wjYE.roa
Signing time: Mon 01 Jan 2024 22:30:07 +0000
ROA not before: Mon 01 Jan 2024 22:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39095
IP address blocks: 195.142.244.0/22 maxlen: 24
195.142.200.0/22 maxlen: 24
185.80.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/QXY9se0zSnxSgKuYVHQpFK4MTFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/QXY9se0zSnxSgKuYVHQpFK4MTFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXY9se0zSnxSgKuYVHQpFK4MTFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:07:40:40:af:d2:88:6e:63:c6:aa:a3:32:a4:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41763db1ed334a7c5280ab9854742914ae0c4c52
Validity
Not Before: Jan 1 22:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3946e18f5456cb515ac829def1b933552f308d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:17:7f:20:e0:b1:ca:d2:9b:73:45:b1:83:15:
52:ec:79:7d:b3:b5:f0:b8:89:1e:94:84:b7:0d:e2:
e5:1d:9f:05:4d:08:cd:44:02:33:08:da:98:b3:d1:
66:10:a0:9b:91:b0:aa:69:4a:1d:3b:c1:0f:f7:95:
c2:d5:c7:85:e2:a6:33:21:6a:98:8a:4b:76:2d:eb:
56:58:c8:c1:3c:d7:a9:45:90:5e:10:d0:6b:43:31:
36:1a:88:8c:f8:49:2b:6d:83:93:7a:67:fc:70:90:
a7:75:eb:eb:cb:9f:90:69:eb:61:67:53:d4:54:c0:
71:30:5a:bd:57:aa:3c:29:58:99:38:af:5d:5a:49:
a3:e6:1c:55:bb:43:d5:1c:32:b5:3f:4e:51:18:de:
b5:a0:b5:1a:16:cb:30:69:e9:0d:b7:43:6c:d7:8e:
9d:38:d3:d8:f1:28:cc:e4:50:01:ea:bc:ca:e1:50:
6d:7f:66:2c:4b:19:15:d9:07:08:3d:46:4f:8b:65:
56:80:f7:97:d1:11:cc:21:b6:77:85:47:96:9b:52:
e3:d4:05:83:e3:2b:3c:65:84:a8:b3:63:16:9c:1a:
f1:c3:3f:e9:e8:a6:c4:5a:69:f7:ac:eb:81:3c:70:
8b:66:72:d1:66:90:b2:0a:38:e0:7d:f7:5e:eb:4e:
97:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:46:E1:8F:54:56:CB:51:5A:C8:29:DE:F1:B9:33:55:2F:30:8D:81
X509v3 Authority Key Identifier:
keyid:41:76:3D:B1:ED:33:4A:7C:52:80:AB:98:54:74:29:14:AE:0C:4C:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXY9se0zSnxSgKuYVHQpFK4MTFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/OUbhj1RWy1FayCne8bkzVS8wjYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/efd094-4bc0-4ad0-aba3-49c95eeac812/1/QXY9se0zSnxSgKuYVHQpFK4MTFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.136.0/22
195.142.200.0/22
195.142.244.0/22
Signature Algorithm: sha256WithRSAEncryption
49:cf:07:63:ef:99:67:97:77:a6:65:d7:0f:a5:8d:0c:47:1f:
16:67:d3:96:57:a9:ab:ab:aa:47:e7:98:aa:9d:59:ae:7c:67:
79:da:d5:97:96:43:08:30:bd:57:fc:e4:6c:46:a4:72:cc:f7:
09:fc:fa:60:b6:25:f4:08:55:5f:2f:8a:dc:21:4b:f1:33:01:
f2:64:7d:75:8e:98:56:c7:12:69:59:93:f7:8a:8d:68:d0:ca:
2f:7d:bf:a4:3e:07:5a:bc:78:eb:cf:c2:4e:b3:e4:35:02:a2:
33:3e:20:bb:57:b8:d6:5a:e6:47:92:82:f1:af:af:fe:42:75:
ef:69:5d:a1:2f:f0:76:5a:31:61:fd:fb:7b:d2:9b:3d:51:35:
7b:38:9b:b6:2e:61:00:65:d5:a3:62:19:92:fe:cc:63:a0:44:
81:cc:67:62:a8:85:50:64:ba:d4:99:94:c2:c0:ee:30:16:9d:
0c:d9:55:17:61:b7:55:81:44:64:7c:5e:09:9b:05:d4:fd:1b:
5c:dd:65:48:1f:7d:8b:c3:2a:17:90:52:33:b3:d1:e5:da:d4:
34:c7:45:b1:3b:00:61:b5:67:96:29:56:8d:4d:ed:83:26:4b:
d7:70:ee:c7:2b:e3:fd:7f:3e:cd:a5:2e:f3:c0:c0:fa:48:09:
31:2c:07:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:52:31 2024 by rpki-client on console-ams.rpki-client.org