Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/7Z_6eUmpcfRPlXUviuDywSg6LNQ.roa
File: 7Z_6eUmpcfRPlXUviuDywSg6LNQ.roa (raw, json)
Hash identifier: 5cykriu22bQSCj7IbDcvr4ISsr5zrr7iiIwpZJUKYg8=
Subject key identifier: ED:9F:FA:79:49:A9:71:F4:4F:95:75:2F:8A:E0:F2:C1:28:3A:2C:D4
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 018D1BD79C6EA7A5BF1D469A8F5E82BD7EC5
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/7Z_6eUmpcfRPlXUviuDywSg6LNQ.roa
Signing time: Thu 18 Jan 2024 09:12:11 +0000
ROA not before: Thu 18 Jan 2024 09:12:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49357
IP address blocks: 94.141.116.0/23 maxlen: 23
94.141.116.0/24 maxlen: 24
94.141.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1b:d7:9c:6e:a7:a5:bf:1d:46:9a:8f:5e:82:bd:7e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Jan 18 09:12:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed9ffa7949a971f44f95752f8ae0f2c1283a2cd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:34:72:93:8c:ec:b1:df:32:22:7c:91:56:e4:
81:fb:c3:47:da:47:91:fe:47:05:45:53:28:9a:bc:
70:97:93:44:dc:5b:80:dc:9f:38:0d:53:23:ce:e4:
81:7f:af:fa:56:c3:3b:c1:05:61:5f:14:bb:e2:ca:
2d:02:c6:4f:c4:18:be:c5:52:5f:a8:52:f0:b0:9f:
f9:f4:8b:4c:ff:8f:2b:b5:94:4a:91:61:e6:a7:e2:
26:59:8a:5d:09:70:3b:a6:7e:b6:a1:33:46:66:57:
d3:53:e1:55:9a:79:ca:95:1e:8f:09:0a:f1:a4:cd:
f7:8e:30:97:07:5c:bb:b8:85:cf:91:7b:ef:ea:fc:
c0:63:14:37:2f:f2:67:0c:d4:14:fc:85:df:c3:54:
a2:e6:42:22:11:1b:5c:e8:4c:23:c0:c3:e9:f2:70:
67:7f:ff:37:36:b9:8c:e6:53:b5:2c:1e:5e:78:2f:
09:16:27:c1:a2:d8:9f:de:b6:15:5e:ac:84:19:b4:
cf:62:8b:07:26:f9:f8:b4:e8:2f:bf:cd:fd:ba:7f:
af:0a:04:8e:c3:80:32:60:15:1c:57:1d:b2:c4:2e:
a6:5e:a7:eb:59:22:4a:8f:13:db:33:e9:1d:a3:cf:
89:99:f1:0d:8a:ad:23:6f:b0:92:80:00:b7:4c:c8:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9F:FA:79:49:A9:71:F4:4F:95:75:2F:8A:E0:F2:C1:28:3A:2C:D4
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/7Z_6eUmpcfRPlXUviuDywSg6LNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.141.116.0/23
Signature Algorithm: sha256WithRSAEncryption
66:78:9d:c3:c3:6d:94:f8:c7:ff:d5:ba:d3:2e:c6:05:11:7f:
c4:64:fe:1f:54:83:85:90:69:29:c4:8b:9d:ce:db:f9:78:8d:
1e:b0:5b:c6:31:a1:23:09:4b:4f:aa:38:e5:eb:cf:c2:e6:4e:
31:9c:81:43:95:45:61:3c:f0:3e:f4:bf:23:9c:d9:89:ca:8a:
3f:22:ca:51:4d:64:22:10:25:62:fb:c2:47:43:cc:22:16:7c:
7b:67:4c:1e:d0:b4:4c:64:01:b9:bc:77:85:74:57:ad:a4:47:
00:2b:2e:42:3f:84:ef:c4:0b:7c:ec:9b:9b:1d:3a:da:fd:74:
9d:b1:d2:34:4f:d0:b2:45:4b:68:86:38:a0:a6:0e:96:e2:f2:
43:b6:c3:32:22:d3:f7:a4:95:d7:00:8e:e8:4c:d4:03:41:fb:
28:f1:82:6e:b6:31:44:e8:cd:66:b1:d0:78:72:f9:a5:78:c5:
c0:87:d5:40:70:a4:54:cf:3c:52:35:56:f0:72:54:da:30:1d:
5e:ad:f1:0b:5f:ee:35:5a:a3:e3:90:05:21:d5:b0:50:2a:a1:
d9:4a:aa:70:3b:c1:74:5f:9c:ab:f6:df:f9:a9:74:18:bb:57:
76:40:29:29:97:e8:47:ee:a5:2f:f0:e1:92:e8:05:ba:1c:79:
42:b3:93:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:45:53 2024 by rpki-client on console-ams.rpki-client.org