Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/FoQWwgGc-G95SwSiG2wUd1GxI7E.roa
File: FoQWwgGc-G95SwSiG2wUd1GxI7E.roa (raw, json)
Hash identifier: bIxuTDI2COd5fKEycNh/fF0LJE9Y4yNPfk0KF5H7nmM=
Subject key identifier: 16:84:16:C2:01:9C:F8:6F:79:4B:04:A2:1B:6C:14:77:51:B1:23:B1
Certificate issuer: /CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Certificate serial: 018CCA2B3924361DE0ABAD082D0C836F12C0
Authority key identifier: 92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/FoQWwgGc-G95SwSiG2wUd1GxI7E.roa
Signing time: Tue 02 Jan 2024 12:34:39 +0000
ROA not before: Tue 02 Jan 2024 12:34:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209965
IP address blocks: 212.81.48.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/kr0ltrnzz-B4X_1OXlQCgztKT40.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/kr0ltrnzz-B4X_1OXlQCgztKT40.mft
rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:39:24:36:1d:e0:ab:ad:08:2d:0c:83:6f:12:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Validity
Not Before: Jan 2 12:34:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=168416c2019cf86f794b04a21b6c147751b123b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d1:94:c3:16:e3:d0:11:39:76:be:7e:97:27:
a9:72:51:78:30:61:bb:7f:df:07:ee:8c:59:1d:b2:
4a:25:83:93:07:40:05:8b:b9:90:ee:65:7e:6c:dd:
2d:fd:fa:63:5b:9b:56:22:d6:9d:59:00:77:da:c6:
80:50:cc:89:62:9d:52:d4:64:99:da:e0:2c:6a:ab:
6f:85:b0:6a:bd:11:c8:62:a8:62:12:97:fa:74:7b:
2b:ec:09:34:cb:d8:41:d3:0c:a0:5b:7b:d5:fc:22:
f6:e3:8e:be:29:0c:cf:52:89:7d:a3:eb:77:b8:b1:
5f:92:b0:ac:0e:56:f4:67:21:33:18:4f:c7:59:9d:
83:3b:1d:ac:b1:a7:0c:08:26:c4:cf:e1:61:ea:b4:
58:d7:71:7a:b0:21:9f:bf:84:fb:be:fa:1c:bb:e6:
76:84:f8:ea:74:52:37:db:97:c9:78:58:01:96:a2:
33:94:16:57:87:e7:a1:d5:0e:a1:f5:25:06:4a:23:
e4:a3:13:de:dc:6e:c7:00:f9:30:9c:15:81:16:ff:
44:1f:fc:97:37:dc:59:5a:0c:b0:e7:b0:d1:29:01:
9f:75:89:3a:a7:be:fb:fd:38:75:96:c2:e9:e5:2e:
9e:11:b5:23:b8:77:16:49:bb:2a:94:98:c2:57:af:
af:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:84:16:C2:01:9C:F8:6F:79:4B:04:A2:1B:6C:14:77:51:B1:23:B1
X509v3 Authority Key Identifier:
keyid:92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/FoQWwgGc-G95SwSiG2wUd1GxI7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/kr0ltrnzz-B4X_1OXlQCgztKT40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.48.0/22
Signature Algorithm: sha256WithRSAEncryption
44:ea:af:b6:68:73:5e:ef:ad:3f:4a:56:79:a4:78:8f:a1:3c:
e8:e3:65:e5:be:a3:23:55:bc:a2:8c:70:f8:c7:71:5e:8e:b0:
a1:36:50:02:c9:87:07:50:d7:60:41:2e:0c:a0:c8:c7:f2:14:
1f:20:5d:ed:b4:c0:01:be:45:ec:33:6f:44:e1:9d:15:2a:8d:
19:59:1f:6e:15:2a:ea:89:b0:fd:96:fe:a9:94:7b:90:d4:7c:
1a:d9:12:76:f2:7d:a4:a0:6c:c6:10:8d:f6:82:a6:5a:7a:0c:
8d:ad:3b:77:53:dd:3c:64:eb:70:7d:22:46:ca:67:8a:d3:3d:
3e:d2:57:ba:9f:c1:cf:31:b3:53:6a:b2:56:28:f3:d3:7b:de:
7c:63:63:ff:bf:43:ca:d0:68:47:4c:ec:e1:b7:30:cb:a5:80:
78:bd:71:98:74:0e:9d:df:64:f2:4f:0a:1d:0c:76:2c:5c:16:
63:4b:27:24:f9:1e:de:a8:06:fd:05:cb:43:07:8a:6e:5e:ce:
9f:09:a7:8e:ca:82:b0:b5:73:92:c4:79:15:4a:96:d3:be:26:
7c:df:fd:da:74:05:73:d5:cd:31:e8:07:01:a8:c1:82:89:39:
4b:ae:45:5f:a0:b5:35:fa:a4:61:c5:a0:25:ae:a0:64:2a:37:
88:db:e8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:40 2024 by rpki-client on console-fra.rpki-client.org