Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/z25BH6ICZHlUMA4_ImkQhf7wpCw.roa
File: z25BH6ICZHlUMA4_ImkQhf7wpCw.roa (raw, json)
Hash identifier: UjDQ1VHCrZv89mhsIPY1AeQzcmiNKfRY0Z3keLU6kQQ=
Subject key identifier: CF:6E:41:1F:A2:02:64:79:54:30:0E:3F:22:69:10:85:FE:F0:A4:2C
Certificate issuer: /CN=2f117ada3cb9515a6d8a6dcc15f2b0b1a7d9be1d
Certificate serial: 018CC3B7343E7914F2BB1201435E0C898596
Authority key identifier: 2F:11:7A:DA:3C:B9:51:5A:6D:8A:6D:CC:15:F2:B0:B1:A7:D9:BE:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxF62jy5UVptim3MFfKwsafZvh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/z25BH6ICZHlUMA4_ImkQhf7wpCw.roa
Signing time: Mon 01 Jan 2024 06:30:12 +0000
ROA not before: Mon 01 Jan 2024 06:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61357
IP address blocks: 141.93.11.0/24 maxlen: 24
141.93.10.0/24 maxlen: 24
141.93.10.0/23 maxlen: 24
141.93.0.0/16 maxlen: 24
2a0d:f0c0::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/LxF62jy5UVptim3MFfKwsafZvh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/LxF62jy5UVptim3MFfKwsafZvh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/LxF62jy5UVptim3MFfKwsafZvh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:34:3e:79:14:f2:bb:12:01:43:5e:0c:89:85:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f117ada3cb9515a6d8a6dcc15f2b0b1a7d9be1d
Validity
Not Before: Jan 1 06:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf6e411fa202647954300e3f22691085fef0a42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9a:81:d9:28:e5:6e:8d:7b:95:b3:ab:70:76:
57:ec:61:c6:73:25:0d:ab:1d:76:bb:12:8c:3f:cb:
52:43:ec:2f:ee:51:43:e9:bf:76:30:24:a7:0c:60:
21:eb:81:e1:65:66:87:85:b8:90:64:8e:ff:94:0c:
97:0e:c0:b6:c7:da:f8:f5:92:7c:e8:bd:39:b7:7f:
55:da:ae:c0:d3:b3:39:74:50:6a:1e:e7:60:87:a4:
94:81:1d:90:0f:58:24:d0:2b:10:59:16:f8:2f:7c:
03:0b:cd:7a:86:73:87:bd:60:73:cf:66:77:74:70:
8b:62:59:72:9a:e0:05:48:83:59:2b:43:16:fc:68:
e2:bd:e6:40:00:33:0f:d7:11:56:62:a9:49:4b:c6:
c8:b1:37:3e:32:13:b4:70:38:e2:46:f5:d5:0d:18:
3f:e8:26:0a:e9:5c:36:4e:a5:57:c8:5d:e4:02:31:
54:0e:99:9e:a7:cb:6e:8d:a4:f5:f7:00:4d:df:66:
61:29:2d:88:db:8e:c6:1c:58:24:90:90:43:e9:7b:
0c:40:e2:66:33:a1:5f:2b:f1:f4:df:18:c3:a0:6b:
19:73:29:e4:31:76:51:9a:54:87:85:eb:2a:cf:2f:
b6:89:f0:cf:47:c4:72:a7:9d:27:b3:80:ba:0d:b5:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6E:41:1F:A2:02:64:79:54:30:0E:3F:22:69:10:85:FE:F0:A4:2C
X509v3 Authority Key Identifier:
keyid:2F:11:7A:DA:3C:B9:51:5A:6D:8A:6D:CC:15:F2:B0:B1:A7:D9:BE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxF62jy5UVptim3MFfKwsafZvh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/z25BH6ICZHlUMA4_ImkQhf7wpCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/LxF62jy5UVptim3MFfKwsafZvh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.93.0.0/16
IPv6:
2a0d:f0c0::/29
Signature Algorithm: sha256WithRSAEncryption
01:b2:ed:07:25:11:8b:c1:88:47:69:f8:5b:70:22:09:58:08:
8a:d1:25:36:26:57:4a:4e:9f:f0:48:4c:82:de:b4:87:59:59:
1a:24:c3:44:d5:e9:b7:b9:27:ef:d9:7c:0d:ee:e1:a9:dd:b8:
3b:8a:a5:b0:f1:98:3c:7f:99:bc:10:5c:db:a9:fd:e8:8d:aa:
e2:56:0a:b4:cb:83:f9:29:a8:c8:52:fa:ed:ca:8f:b6:68:9e:
1d:2b:1e:f8:f9:89:fd:b8:0f:9b:fe:d2:5d:a0:ae:18:b6:bd:
38:18:46:df:41:7e:b2:90:65:a9:da:f5:13:9c:22:1a:5f:d5:
2d:08:d7:ea:45:c7:4e:51:47:a7:51:da:3c:6f:57:0a:ea:73:
7e:9a:31:2f:4e:ee:23:ff:29:c9:3b:88:7c:5d:4b:1a:19:83:
79:12:f8:27:8b:fd:9b:6a:b6:ef:b8:0d:86:5d:51:cf:f4:97:
3a:49:b2:06:c6:65:39:4e:46:dd:6b:18:22:67:4d:a6:b8:cf:
fc:d4:82:d3:ae:3c:d0:cb:2b:96:88:9e:bf:45:dd:07:02:01:
c9:ef:6a:92:83:c5:2c:c2:bc:b4:c4:19:20:0e:8f:56:0a:af:
4c:71:ce:9e:6d:f6:93:f6:59:69:b2:72:bb:c8:76:24:7e:41:
07:31:c9:80
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 25 20:33:47 2024 by rpki-client on console-fra.rpki-client.org