Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/t1q5GOJjyomTWOst5u-g3HEpKmo.roa
File: t1q5GOJjyomTWOst5u-g3HEpKmo.roa (raw, json)
Hash identifier: 6FovB28Ejapz8zWHSXrtHPixhEuUH1H3Y0xg6dNzy2M=
Subject key identifier: B7:5A:B9:18:E2:63:CA:89:93:58:EB:2D:E6:EF:A0:DC:71:29:2A:6A
Certificate issuer: /CN=b3b6d9026372cfce8fde823c3ef9c9f790aae14f
Certificate serial: 018CE8330A07AC478E973010C9F62060403E
Authority key identifier: B3:B6:D9:02:63:72:CF:CE:8F:DE:82:3C:3E:F9:C9:F7:90:AA:E1:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7bZAmNyz86P3oI8PvnJ95Cq4U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/t1q5GOJjyomTWOst5u-g3HEpKmo.roa
Signing time: Mon 08 Jan 2024 08:31:48 +0000
ROA not before: Mon 08 Jan 2024 08:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 92.119.62.0/24 maxlen: 24
92.119.60.0/22 maxlen: 22
92.119.63.0/24 maxlen: 24
92.119.60.0/24 maxlen: 24
92.119.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/s7bZAmNyz86P3oI8PvnJ95Cq4U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/s7bZAmNyz86P3oI8PvnJ95Cq4U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7bZAmNyz86P3oI8PvnJ95Cq4U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e8:33:0a:07:ac:47:8e:97:30:10:c9:f6:20:60:40:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6d9026372cfce8fde823c3ef9c9f790aae14f
Validity
Not Before: Jan 8 08:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b75ab918e263ca899358eb2de6efa0dc71292a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fb:bc:07:56:da:ca:38:0a:ed:f5:42:65:14:
d9:eb:84:46:8d:d6:e9:89:39:d8:b0:af:5f:2e:71:
f1:ab:46:21:b9:d3:78:4c:b8:4c:44:a2:e6:b2:75:
e4:d4:12:5f:dd:8e:5d:91:c5:2f:75:95:cb:76:67:
5c:5e:ea:8b:d0:0e:48:0b:a0:66:89:29:0d:43:09:
ea:85:51:f8:6c:d2:1d:34:a9:f6:68:98:38:2d:d1:
b9:db:95:ec:20:a6:f9:b8:b6:06:a5:10:ec:72:c8:
06:d6:f1:ff:fa:81:7f:ba:30:30:07:e0:37:16:9d:
06:38:83:80:4c:9f:7f:f3:73:87:ff:c4:7a:0a:dc:
ff:e9:fc:bb:29:01:eb:f7:c1:39:96:82:60:7f:b8:
6b:e9:5d:a5:fb:48:86:4b:0b:97:cb:d8:bf:9a:0c:
72:c5:5e:67:90:ed:9f:7a:11:4a:56:6c:2d:f3:9d:
72:bd:d1:ce:41:c5:e0:ed:eb:d0:d5:78:80:8f:34:
a4:ac:b8:d3:5a:8e:33:36:d9:b9:fe:ff:5e:ba:11:
d0:13:01:cc:3e:a5:55:39:a7:6e:a1:61:98:a9:ec:
c8:7c:c5:c5:a0:2e:67:10:b8:24:94:5e:b8:83:2c:
53:7e:bd:a1:04:3c:58:35:f7:11:f4:4e:bc:a6:8c:
e8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5A:B9:18:E2:63:CA:89:93:58:EB:2D:E6:EF:A0:DC:71:29:2A:6A
X509v3 Authority Key Identifier:
keyid:B3:B6:D9:02:63:72:CF:CE:8F:DE:82:3C:3E:F9:C9:F7:90:AA:E1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7bZAmNyz86P3oI8PvnJ95Cq4U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/t1q5GOJjyomTWOst5u-g3HEpKmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/831d53-04e0-4573-acf7-d4f12b37a318/1/s7bZAmNyz86P3oI8PvnJ95Cq4U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.60.0/22
Signature Algorithm: sha256WithRSAEncryption
91:3f:05:df:63:ae:71:f0:3c:50:ce:3c:2c:1e:6d:0f:30:7c:
83:93:ee:f5:2e:af:c5:1c:4b:c4:28:82:bd:e7:3d:54:73:64:
e9:39:13:d6:ce:4e:1d:b7:23:56:ee:45:d0:2a:d4:a5:04:61:
44:26:e2:d1:0e:f4:75:ad:7e:ca:f2:2f:71:18:94:71:7a:ee:
ff:d4:10:f9:ca:1f:09:a0:a1:f4:23:3b:bc:08:e1:1a:91:ed:
39:45:81:b7:1b:c0:73:75:be:25:53:58:3c:82:7f:25:5d:ef:
2b:5f:d7:a4:28:63:5d:0b:07:ae:98:f9:af:18:72:c4:e2:70:
2f:0c:59:e5:67:25:39:dd:c1:b7:0a:bf:02:26:d2:8b:c5:7a:
39:cc:55:90:40:0a:60:e9:44:57:f6:2f:ed:f2:ef:38:de:25:
89:f4:e0:2d:01:98:cf:1c:c6:8d:c8:69:10:e9:3b:e8:be:b8:
6b:73:00:43:71:8a:e2:72:cf:18:70:0f:9b:d0:d0:fc:dc:3f:
d9:ce:f2:dc:c7:b5:d4:80:41:33:85:cb:22:82:e0:5d:da:3c:
ad:af:0b:a8:ad:f4:88:d3:6b:4a:85:c2:28:07:fd:77:5f:80:
5a:91:2e:0b:e6:dd:b7:9a:cb:36:65:f7:00:02:70:7a:cf:cd:
3a:2d:80:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:00:21 2024 by rpki-client on console-ams.rpki-client.org