Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/jiU450SZbY72ODOkD7RKh7THjGo.roa
File: jiU450SZbY72ODOkD7RKh7THjGo.roa (raw, json)
Hash identifier: +0rCNEAItW621V3SER36qpAUoHEYkhdNzZpX6C4NF+I=
Subject key identifier: 8E:25:38:E7:44:99:6D:8E:F6:38:33:A4:0F:B4:4A:87:B4:C7:8C:6A
Certificate issuer: /CN=fb79c26f31575345159c840ed278a878a9256615
Certificate serial: 018CC3B6B195131FA0DAB4E16E914FDD11C3
Authority key identifier: FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/jiU450SZbY72ODOkD7RKh7THjGo.roa
Signing time: Mon 01 Jan 2024 06:29:39 +0000
ROA not before: Mon 01 Jan 2024 06:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199968
IP address blocks: 185.7.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:b1:95:13:1f:a0:da:b4:e1:6e:91:4f:dd:11:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb79c26f31575345159c840ed278a878a9256615
Validity
Not Before: Jan 1 06:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e2538e744996d8ef63833a40fb44a87b4c78c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f2:62:6a:2c:64:ee:b3:b1:05:88:2c:29:10:
b7:47:bc:49:37:a4:42:22:ad:d6:60:df:76:1b:a4:
82:d1:da:ad:74:8b:69:36:ab:36:ef:b3:09:ed:a7:
41:a4:6f:13:fe:7b:99:87:68:bc:fc:d1:c5:22:6c:
39:40:98:59:e9:e7:31:a7:04:f0:68:dc:49:1c:58:
bb:e7:1f:f7:a6:07:3b:7d:90:98:db:69:9f:19:95:
1c:10:b0:11:40:c2:43:74:07:af:c1:9e:5c:88:0a:
be:fb:a3:2e:7a:22:8d:12:d3:7e:7e:5a:58:88:4e:
25:77:a3:2b:4e:e8:1c:0c:07:77:30:33:56:52:3e:
cd:80:dc:90:ee:7f:82:6c:e5:68:8a:73:d2:a3:42:
ef:a1:e9:a8:68:00:f9:51:f9:4a:c5:59:ba:16:25:
95:b2:e5:dd:f2:21:3f:4a:3b:66:05:f5:98:cb:b5:
74:4b:02:d0:cc:90:27:09:aa:c3:6b:c3:fd:ae:6e:
3e:e0:38:85:96:c7:05:1f:3d:e8:d5:6b:d3:ab:f2:
26:aa:b6:e8:16:a2:79:9b:ef:d8:02:c5:56:3e:80:
95:03:e0:2c:90:4f:50:e6:3d:a4:59:d4:32:04:63:
82:29:a3:59:6d:b6:85:de:4d:c8:8d:ad:fd:f8:47:
c1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:25:38:E7:44:99:6D:8E:F6:38:33:A4:0F:B4:4A:87:B4:C7:8C:6A
X509v3 Authority Key Identifier:
keyid:FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/jiU450SZbY72ODOkD7RKh7THjGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.33.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b0:4b:60:22:9a:cd:07:bb:5e:b4:e8:6b:8f:11:37:58:91:
0e:e6:31:a1:5c:e0:b0:35:3e:a2:a6:16:00:c6:a0:4d:85:67:
95:df:22:91:b7:0d:ef:ef:bf:5f:e4:03:34:8d:fb:88:f6:c7:
de:2a:ba:06:02:7f:14:cd:98:24:2a:39:88:d9:15:c0:8d:64:
65:d4:f2:c9:a9:1e:2e:10:b2:b8:3d:2e:97:95:43:2e:dd:de:
66:d0:2c:aa:10:66:0c:a2:80:fe:81:fc:d8:b2:e1:1b:fa:5c:
35:ee:d1:40:2d:fd:00:a3:e5:2c:28:15:c8:ba:28:a2:3d:38:
86:86:25:82:53:f0:cf:bb:6a:6c:9e:3f:bf:a4:30:38:bb:78:
8a:4a:e1:82:c0:b7:31:79:f0:b9:40:6a:1a:f8:27:b1:a0:37:
10:57:fe:31:c7:36:a6:cb:f4:57:fd:67:62:00:b7:62:17:e8:
01:5f:c7:12:02:20:29:9e:18:43:e4:32:28:69:8d:5b:77:84:
d8:42:e8:77:62:64:b5:39:f9:e9:19:8b:33:cc:4c:a8:b2:b4:
d7:44:07:be:27:7d:1d:a4:62:93:db:e1:67:91:ee:a4:97:6e:
a8:35:4c:84:5e:9c:64:cb:87:14:5f:4b:9e:9f:cd:66:a7:34:
ef:2f:a4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:24:17 2024 by rpki-client on console-fra.rpki-client.org