Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/AJNQSp9QyABZYhrBtLMQgM_SLPY.roa
File: AJNQSp9QyABZYhrBtLMQgM_SLPY.roa (raw, json)
Hash identifier: J3DbSaPXQu+Dwhq/K+ywMA7ebTdhNi2jMcE3QSrLTY4=
Subject key identifier: 00:93:50:4A:9F:50:C8:00:59:62:1A:C1:B4:B3:10:80:CF:D2:2C:F6
Certificate issuer: /CN=50f88e05c898796c82ff0147568816e933420e18
Certificate serial: 018CC7936E252CE2F0736E0162AC479D7811
Authority key identifier: 50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/AJNQSp9QyABZYhrBtLMQgM_SLPY.roa
Signing time: Tue 02 Jan 2024 00:29:37 +0000
ROA not before: Tue 02 Jan 2024 00:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50673
IP address blocks: 178.18.28.0/24 maxlen: 24
178.18.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:6e:25:2c:e2:f0:73:6e:01:62:ac:47:9d:78:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f88e05c898796c82ff0147568816e933420e18
Validity
Not Before: Jan 2 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0093504a9f50c80059621ac1b4b31080cfd22cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c5:c6:f0:e0:0f:66:b6:30:a5:f7:74:94:f7:
76:40:d7:78:f4:34:7a:e4:f2:b5:97:71:a2:a4:4e:
5c:e0:cb:14:a1:c8:fe:1f:e5:0d:09:3c:d4:79:87:
eb:23:54:1e:0c:f1:0b:8b:46:1b:60:65:e4:02:9d:
40:7e:56:3a:f7:e7:c1:4b:69:50:9e:fb:3c:05:ef:
3d:bc:04:61:d0:a2:74:41:12:0b:83:14:51:33:2f:
ad:39:20:af:54:55:ce:7c:84:04:8a:4a:86:ae:11:
9c:ac:f4:53:a3:13:91:58:92:9f:43:93:c0:d1:cc:
6a:44:3b:40:3c:7e:50:0f:19:85:e8:f1:6b:b7:a5:
b6:31:cb:79:38:d9:88:2e:47:c0:b2:ef:9f:39:1b:
28:c6:74:5b:60:e5:7b:6b:58:27:05:22:95:da:73:
de:05:c7:fe:4c:dc:17:84:cf:fe:19:be:5a:e0:ea:
0b:e3:dd:4a:24:bd:61:d1:b0:46:e1:bd:58:31:a2:
7b:60:f5:f2:ef:da:54:88:e5:5e:3d:84:0c:de:65:
10:97:80:85:f0:76:84:d7:bc:3f:a0:bd:e6:f8:b0:
e9:10:be:18:30:e4:85:2f:54:d4:70:1e:5e:5a:58:
f5:63:37:f1:f6:1d:16:31:0d:7d:fa:f7:2e:53:4c:
fd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:93:50:4A:9F:50:C8:00:59:62:1A:C1:B4:B3:10:80:CF:D2:2C:F6
X509v3 Authority Key Identifier:
keyid:50:F8:8E:05:C8:98:79:6C:82:FF:01:47:56:88:16:E9:33:42:0E:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPiOBciYeWyC_wFHVogW6TNCDhg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/AJNQSp9QyABZYhrBtLMQgM_SLPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f7c11f-4e9e-436d-a3df-fedbd4c66a0e/1/UPiOBciYeWyC_wFHVogW6TNCDhg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.28.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:88:5a:4c:09:b7:ce:20:93:9e:c9:d2:ec:67:f1:74:b2:5a:
ce:d7:7f:9e:e8:e4:e4:5c:6a:05:de:74:31:25:76:dc:83:b3:
74:c9:70:9a:c1:6a:80:20:7e:a6:73:52:ae:39:12:2d:79:52:
0d:96:c2:05:85:e4:aa:c8:03:f8:fb:f7:14:4a:dd:74:4f:1e:
67:8f:4a:1b:c4:93:39:71:ee:04:15:34:fe:fc:c2:a4:b7:c1:
78:92:16:eb:a7:b5:6f:6e:5b:45:62:90:9f:28:8c:8d:bd:48:
6c:16:c4:92:e9:96:84:80:95:af:94:60:14:b9:dd:f3:11:2a:
18:72:40:61:d8:26:b3:5c:8f:49:10:b0:cd:e6:92:33:2b:ac:
b6:17:45:15:97:e3:b3:78:69:1f:e4:ab:63:f7:3c:58:50:e3:
5e:e0:07:f0:b2:54:ec:1a:d3:7a:08:ab:79:4d:3d:ac:bf:a9:
df:9e:cc:1d:d5:f8:00:e3:ba:3c:ed:3f:1e:dd:2f:36:71:49:
1f:49:a1:2e:68:19:8c:cf:90:c3:77:e8:23:0e:e4:56:97:4a:
02:c1:59:ed:d5:c4:a6:83:5e:da:ed:1d:da:65:cc:ff:c6:1d:
e7:4f:67:47:79:0b:fe:ba:e1:0b:5a:57:ad:0e:c6:6a:20:ed:
df:8f:63:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 16:53:22 2024 by rpki-client on console-ams.rpki-client.org