Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/zeMwJzRcSenbp9N5FJGOZ7XKCO8.roa
File: zeMwJzRcSenbp9N5FJGOZ7XKCO8.roa (raw, json)
Hash identifier: GQcjOihfy3yLP6sOLC0xyX8vS5BbuzlAifVLai6J+LU=
Subject key identifier: CD:E3:30:27:34:5C:49:E9:DB:A7:D3:79:14:91:8E:67:B5:CA:08:EF
Certificate issuer: /CN=1c549fc5d68298784c6a4c5bc99ae7d3016a18a3
Certificate serial: 018CC56E30F1D7928C27C8BE52E49C9E3363
Authority key identifier: 1C:54:9F:C5:D6:82:98:78:4C:6A:4C:5B:C9:9A:E7:D3:01:6A:18:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFSfxdaCmHhMakxbyZrn0wFqGKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/zeMwJzRcSenbp9N5FJGOZ7XKCO8.roa
Signing time: Mon 01 Jan 2024 14:29:42 +0000
ROA not before: Mon 01 Jan 2024 14:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210808
IP address blocks: 176.100.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/HFSfxdaCmHhMakxbyZrn0wFqGKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/HFSfxdaCmHhMakxbyZrn0wFqGKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HFSfxdaCmHhMakxbyZrn0wFqGKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:30:f1:d7:92:8c:27:c8:be:52:e4:9c:9e:33:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c549fc5d68298784c6a4c5bc99ae7d3016a18a3
Validity
Not Before: Jan 1 14:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cde33027345c49e9dba7d37914918e67b5ca08ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:8f:43:ba:a5:59:a7:9d:14:14:a8:fc:2a:
5a:ee:34:f5:be:ce:34:32:b4:f2:76:6d:d5:a8:4c:
bf:a2:59:51:a6:71:23:dc:e8:fc:a3:d6:c2:4b:68:
8d:f3:4d:67:a1:3e:74:af:ff:cf:05:86:52:76:da:
99:62:7a:fc:bb:71:d4:17:b7:8c:c9:44:7e:21:5b:
89:bd:6d:56:d0:c2:fd:6a:a5:a6:74:5e:f2:14:f8:
cb:73:95:dc:56:b4:ec:0b:e9:00:ff:ed:b0:6d:ad:
08:1d:f4:6a:9f:d1:81:f9:44:45:f7:f9:88:b1:6c:
e2:eb:a4:ce:e0:a3:0e:22:63:23:a3:31:19:25:04:
12:ed:c8:43:6e:9f:3d:f3:6f:17:52:9d:d3:05:cf:
74:70:41:03:42:db:b9:3a:46:9a:55:fb:d4:49:d4:
d8:94:44:45:47:dc:8d:46:be:0a:9b:cd:21:88:21:
37:12:18:ea:87:3a:39:23:33:84:2e:c3:1d:42:cc:
fb:c0:4e:6c:bc:73:47:ff:1c:fa:5f:4d:f0:58:a8:
ba:40:c8:0b:db:3b:32:4d:20:08:32:03:77:4d:c8:
3c:42:4c:e5:9c:19:be:83:aa:d8:b0:d9:43:4d:d6:
e0:e7:c4:a9:3e:8d:10:6e:c5:ca:b6:6b:70:e3:66:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E3:30:27:34:5C:49:E9:DB:A7:D3:79:14:91:8E:67:B5:CA:08:EF
X509v3 Authority Key Identifier:
keyid:1C:54:9F:C5:D6:82:98:78:4C:6A:4C:5B:C9:9A:E7:D3:01:6A:18:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFSfxdaCmHhMakxbyZrn0wFqGKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/zeMwJzRcSenbp9N5FJGOZ7XKCO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/854bd3-5098-4964-bb35-5241e31cd8da/1/HFSfxdaCmHhMakxbyZrn0wFqGKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.46.0/24
Signature Algorithm: sha256WithRSAEncryption
30:01:a0:8c:91:fb:f9:33:24:42:c3:0a:65:db:11:ef:da:99:
3a:3c:9c:97:f3:32:16:ef:61:3d:3b:63:c2:91:04:97:86:52:
1e:32:8b:ce:56:0b:e7:26:80:07:0e:4f:ce:9f:0c:b0:ff:ae:
5d:4c:15:8e:5d:14:90:e8:65:ad:a8:a1:7a:01:9b:3d:4e:d7:
ba:00:cc:30:60:6b:08:d1:61:d4:8e:ea:d1:82:cf:c0:04:84:
4d:4b:a9:fa:dc:e7:ee:c1:06:64:5c:ea:e1:3c:45:30:2b:fc:
c8:80:4e:b2:c3:f0:74:fa:f5:16:42:23:af:87:c6:3b:36:20:
0c:df:7d:5e:56:64:ba:f3:4f:63:b1:29:11:0b:ba:94:11:eb:
44:c6:45:ea:78:3e:8d:7f:47:75:a4:27:3b:4d:cb:e9:18:a2:
23:8d:f8:db:33:76:e3:1a:31:35:5e:d8:90:28:53:4e:a0:64:
0c:56:8c:87:98:8a:fc:70:dd:4c:6a:70:ad:32:f6:2c:ba:44:
bd:1d:fb:83:e0:dc:26:fb:ea:c2:bc:dc:f9:99:ac:ea:76:b7:
a7:97:36:9c:1e:98:ce:ec:6e:cb:1c:b3:a8:1b:1e:a1:53:2d:
83:f9:57:7a:3f:16:4e:cc:2d:9a:90:08:d7:63:c0:c6:28:46:
86:b7:1b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 14:09:14 2024 by rpki-client on console-ams.rpki-client.org