Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/pN-4pdfRQOuuIlCXyS9Tu9_BfVQ.roa
File: pN-4pdfRQOuuIlCXyS9Tu9_BfVQ.roa (raw, json)
Hash identifier: J5128OGEFp7kUJ5tgn921qSNX/XxL6W5o7pUxiSMe7A=
Subject key identifier: A4:DF:B8:A5:D7:D1:40:EB:AE:22:50:97:C9:2F:53:BB:DF:C1:7D:54
Certificate issuer: /CN=5993efdd0a28fd3ab66b7a05b9b8d77c56666356
Certificate serial: 018CDA45F99B28D10A17157534F4A8AF8860
Authority key identifier: 59:93:EF:DD:0A:28:FD:3A:B6:6B:7A:05:B9:B8:D7:7C:56:66:63:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/pN-4pdfRQOuuIlCXyS9Tu9_BfVQ.roa
Signing time: Fri 05 Jan 2024 15:37:48 +0000
ROA not before: Fri 05 Jan 2024 15:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51141
IP address blocks: 91.216.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:da:45:f9:9b:28:d1:0a:17:15:75:34:f4:a8:af:88:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5993efdd0a28fd3ab66b7a05b9b8d77c56666356
Validity
Not Before: Jan 5 15:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4dfb8a5d7d140ebae225097c92f53bbdfc17d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:24:7d:87:32:93:ac:0f:85:57:87:2c:32:60:
3b:fd:de:73:c2:16:a3:7d:27:93:21:64:d4:5d:34:
a9:b5:c1:c8:b4:e0:81:ae:ec:bd:d8:aa:d6:28:99:
2a:e0:4b:e5:3a:5b:53:b1:03:5a:d1:4d:e6:58:7f:
5f:08:1f:dd:dd:49:ee:b6:4e:6a:26:d5:21:2b:60:
0e:16:e8:7d:c8:f8:09:60:d7:3a:e2:e4:0a:44:bc:
ad:d7:c4:d6:2a:60:6f:0d:b6:5c:57:4f:19:65:a6:
1d:78:ea:c7:83:39:c6:e6:59:9e:f1:17:85:50:e7:
f7:4f:74:80:1d:30:e7:37:07:0e:f2:4f:4b:d8:d9:
ea:42:c1:59:81:cc:d0:c6:25:cc:cc:3f:c9:8a:2f:
0e:20:d7:73:7b:be:bd:bb:52:db:c9:77:75:d4:4a:
5c:75:c5:11:f7:3e:e6:2e:31:3f:25:13:7a:36:93:
3d:99:d5:11:01:34:45:4e:54:29:c4:cf:5b:1a:b0:
61:95:82:3e:cc:0a:74:d2:bb:45:f6:1f:2f:f3:e8:
90:5d:ac:6e:74:ed:03:84:b5:0d:1a:12:01:3c:07:
9a:dd:3a:d6:b4:f2:2d:d3:96:79:eb:b2:9d:d0:ce:
7e:24:74:5d:da:a3:6e:68:9b:de:35:24:d5:ad:74:
c1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DF:B8:A5:D7:D1:40:EB:AE:22:50:97:C9:2F:53:BB:DF:C1:7D:54
X509v3 Authority Key Identifier:
keyid:59:93:EF:DD:0A:28:FD:3A:B6:6B:7A:05:B9:B8:D7:7C:56:66:63:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/pN-4pdfRQOuuIlCXyS9Tu9_BfVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/6d09ad-af5e-4bf0-9ff2-a9522b2d048b/1/WZPv3Qoo_Tq2a3oFubjXfFZmY1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.166.0/24
Signature Algorithm: sha256WithRSAEncryption
32:1b:3d:2a:f4:e5:cb:36:e3:a1:4a:79:c1:31:b2:a1:9d:28:
c1:81:6f:cf:6c:c6:47:ce:cd:37:d8:7b:e6:a0:7a:d5:bc:e8:
8d:36:51:ac:65:c2:e1:cd:41:49:6c:e7:4f:18:49:0f:94:ed:
70:35:51:bb:16:d3:ba:f7:3d:c3:48:ae:04:71:61:75:ca:74:
cb:7f:65:f4:2a:b5:0b:0f:ff:36:0f:d5:1b:d3:fc:6f:d9:d0:
2c:6f:be:a0:e1:d1:d9:61:dc:2d:45:7e:f1:02:67:86:4d:cc:
ff:40:fa:cf:15:0a:65:ac:55:7f:da:96:6b:be:ff:df:ed:96:
e4:5a:53:f9:0f:39:17:04:b5:3b:78:08:cb:54:8a:69:6f:cb:
2f:ad:1f:45:90:e0:50:a4:39:65:ef:12:45:08:ae:3f:8f:22:
04:b5:3e:ec:ed:00:52:37:ac:6e:00:aa:78:16:a2:0b:14:4a:
8f:be:43:2c:32:d2:c2:29:49:44:cd:0e:8d:4b:94:8c:d7:fa:
7f:8f:3c:b5:9a:c7:32:3c:4c:e3:c5:2e:59:f4:02:7a:81:df:
0a:5f:e9:87:80:fe:dc:4e:d4:4a:c3:7e:cc:6c:f4:1f:64:70:
1f:74:e8:23:6a:e9:97:b6:cc:17:83:85:f2:58:b4:4a:ee:1f:
3d:f1:39:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:12:14 2024 by rpki-client on console-fra.rpki-client.org