Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/mZuuVxaqcfd6nEWz2Xph7udqhL0.roa
File: mZuuVxaqcfd6nEWz2Xph7udqhL0.roa (raw, json)
Hash identifier: iq4ifxlDGR/1EqKuWHHk5l8vQCdsnG1q8acOQno1Xis=
Subject key identifier: 99:9B:AE:57:16:AA:71:F7:7A:9C:45:B3:D9:7A:61:EE:E7:6A:84:BD
Certificate issuer: /CN=7a10ee228073328a2c2081cbb2a96cd1264dbef1
Certificate serial: 018F059FC83F798A2460013FDB5D782474BA
Authority key identifier: 7A:10:EE:22:80:73:32:8A:2C:20:81:CB:B2:A9:6C:D1:26:4D:BE:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehDuIoBzMoosIIHLsqls0SZNvvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/mZuuVxaqcfd6nEWz2Xph7udqhL0.roa
Signing time: Mon 22 Apr 2024 11:45:08 +0000
ROA not before: Mon 22 Apr 2024 11:45:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 62.122.126.0/24 maxlen: 24
91.224.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/ehDuIoBzMoosIIHLsqls0SZNvvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/ehDuIoBzMoosIIHLsqls0SZNvvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ehDuIoBzMoosIIHLsqls0SZNvvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:9f:c8:3f:79:8a:24:60:01:3f:db:5d:78:24:74:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a10ee228073328a2c2081cbb2a96cd1264dbef1
Validity
Not Before: Apr 22 11:45:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=999bae5716aa71f77a9c45b3d97a61eee76a84bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7c:5f:47:7d:67:8f:cd:9f:fc:15:de:09:7e:
7a:2b:72:b4:c1:7a:11:ec:fb:08:58:71:3e:71:3f:
71:21:b8:b7:d5:a4:82:94:7b:1a:7b:81:89:c7:f9:
ff:5c:e1:55:f5:be:79:29:f0:9c:b9:bb:98:04:05:
7e:19:36:21:9d:e4:e3:1d:2a:70:90:d1:e0:77:f2:
5e:2b:95:7b:e0:1f:33:3e:10:ed:f0:f4:0c:70:46:
4a:80:27:71:3d:18:45:68:c6:7f:f6:ed:39:46:da:
00:c1:fc:68:3e:eb:9e:97:87:45:45:c2:aa:18:18:
80:89:d4:5c:9f:73:ac:4a:f8:69:22:e7:55:3d:56:
2c:c4:a4:79:fa:e4:a7:ff:ec:54:8d:24:5b:3b:aa:
45:7f:b7:c8:66:01:21:87:fa:8d:ef:24:c8:04:99:
d3:e8:5e:45:3f:fc:00:90:a0:9e:91:9e:3b:11:58:
4b:f9:5d:01:e8:3f:c7:70:37:bb:5e:11:7f:10:e4:
f0:83:f2:cd:9c:93:37:ec:fd:7e:d5:68:4d:91:5e:
e7:ac:fc:7d:b3:ad:63:c8:ef:57:75:16:05:22:5d:
c5:a3:21:a1:ce:02:0b:ed:5d:0f:7b:bd:4f:25:4c:
0f:c4:64:ae:93:5e:95:8c:fb:9c:14:77:ea:38:f0:
e4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9B:AE:57:16:AA:71:F7:7A:9C:45:B3:D9:7A:61:EE:E7:6A:84:BD
X509v3 Authority Key Identifier:
keyid:7A:10:EE:22:80:73:32:8A:2C:20:81:CB:B2:A9:6C:D1:26:4D:BE:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehDuIoBzMoosIIHLsqls0SZNvvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/mZuuVxaqcfd6nEWz2Xph7udqhL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb1827-a7e9-45c8-b643-76e07a577e4d/1/ehDuIoBzMoosIIHLsqls0SZNvvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.126.0/24
91.224.117.0/24
Signature Algorithm: sha256WithRSAEncryption
07:cc:0a:2c:70:de:b5:1c:a2:7a:69:b2:47:6a:88:28:a9:21:
ad:ad:04:33:d0:01:f9:94:01:d1:9a:28:a3:06:2f:db:e2:93:
d1:42:cf:e4:a7:a1:3a:cb:73:61:c9:db:12:c7:57:3d:56:c6:
bc:e8:ff:10:60:aa:8d:97:98:8e:14:b0:9a:f7:cf:46:6c:25:
0c:6b:59:36:07:68:54:fb:58:f0:22:4c:81:8c:fe:9c:41:74:
95:61:ab:2a:94:69:1a:4a:23:6f:e4:29:b4:5d:2d:63:a7:93:
4c:b8:4e:53:cf:6b:49:bb:dd:53:d0:b4:63:59:3f:65:f9:6a:
4c:83:02:98:4e:23:ab:fd:63:f9:d2:d3:18:c9:ad:ad:85:f2:
1d:1a:e0:c8:c2:c4:fe:43:d5:5a:b9:18:9a:7a:66:97:ce:d5:
ce:cd:e7:62:d1:0c:7c:47:84:3d:0c:1d:21:27:12:4a:7e:78:
2a:18:31:18:b2:e1:b4:4f:4f:47:4f:10:74:74:7e:21:53:a7:
a1:df:39:77:0b:2c:d5:e4:29:3d:57:9b:50:a8:69:b3:e0:33:
06:7e:c8:98:44:1c:fd:c2:0d:a5:4f:16:70:0c:69:a5:74:d4:
4a:b3:49:55:22:27:50:81:6c:37:e8:13:2f:97:07:73:f0:c3:
85:12:24:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 15:48:54 2024 by rpki-client on console-fra.rpki-client.org