Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/_2jCqwzoB6eIsFrh7pL9lNMJ8Zc.roa
File: _2jCqwzoB6eIsFrh7pL9lNMJ8Zc.roa (raw, json)
Hash identifier: 4ag4JLhIe5/eQoFCxCENrQCG7cnpZ1Y4L2o90przkDM=
Subject key identifier: FF:68:C2:AB:0C:E8:07:A7:88:B0:5A:E1:EE:92:FD:94:D3:09:F1:97
Certificate issuer: /CN=2e112e2c61d2a80e7c4385c60858c91d75f31e7b
Certificate serial: 01923907D9B4AB8C00186F921DDD106E04C0
Authority key identifier: 2E:11:2E:2C:61:D2:A8:0E:7C:43:85:C6:08:58:C9:1D:75:F3:1E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhEuLGHSqA58Q4XGCFjJHXXzHns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/_2jCqwzoB6eIsFrh7pL9lNMJ8Zc.roa
Signing time: Sat 28 Sep 2024 14:27:48 +0000
ROA not before: Sat 28 Sep 2024 14:27:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204457
IP address blocks: 195.170.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/LhEuLGHSqA58Q4XGCFjJHXXzHns.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/LhEuLGHSqA58Q4XGCFjJHXXzHns.mft
rsync://rpki.ripe.net/repository/DEFAULT/LhEuLGHSqA58Q4XGCFjJHXXzHns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:39:07:d9:b4:ab:8c:00:18:6f:92:1d:dd:10:6e:04:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e112e2c61d2a80e7c4385c60858c91d75f31e7b
Validity
Not Before: Sep 28 14:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff68c2ab0ce807a788b05ae1ee92fd94d309f197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7e:f2:ad:b8:ef:b7:45:51:0b:20:88:40:74:
e8:11:81:fc:69:2d:2b:2b:30:91:c3:1a:7e:2e:98:
7b:42:2b:b6:22:45:8a:8a:86:5b:10:d5:6f:0d:03:
75:fd:84:7f:d0:d8:fc:9f:08:8f:36:ef:ef:47:63:
ed:4e:f8:59:9b:e3:4f:c8:bc:fa:14:e5:7c:93:a7:
05:dc:cd:ff:bb:ea:c2:47:4f:74:eb:6a:97:76:e3:
c6:d7:43:18:9c:36:fe:9f:ff:39:19:d3:9b:26:3b:
67:71:1a:7b:bd:8c:bc:18:2f:89:d7:b3:af:79:65:
fb:40:cb:3d:5c:59:95:a5:df:da:49:54:34:bc:90:
94:2b:25:05:a2:98:32:f8:0a:b5:f9:2a:65:99:7a:
56:d4:79:45:31:4a:69:1f:5e:c7:c2:2d:cb:73:37:
09:b7:c7:ae:29:06:49:6b:4d:f3:2d:bc:5f:e1:ae:
7a:dc:de:1b:35:70:fb:3b:9c:4e:e7:ee:36:5d:80:
21:c3:26:2d:95:3c:7d:62:6e:70:42:0d:0c:e2:71:
d4:9c:94:35:ba:1d:92:e6:61:69:ff:10:bf:9e:f6:
87:26:0f:9b:62:87:92:36:e7:2e:f3:57:53:6c:c3:
52:d3:cc:a7:d1:c3:95:1a:a3:31:7b:2d:af:45:13:
83:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:68:C2:AB:0C:E8:07:A7:88:B0:5A:E1:EE:92:FD:94:D3:09:F1:97
X509v3 Authority Key Identifier:
keyid:2E:11:2E:2C:61:D2:A8:0E:7C:43:85:C6:08:58:C9:1D:75:F3:1E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhEuLGHSqA58Q4XGCFjJHXXzHns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/_2jCqwzoB6eIsFrh7pL9lNMJ8Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/f79e8e-6625-45e9-bb9a-96d22861a922/1/LhEuLGHSqA58Q4XGCFjJHXXzHns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.186.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bb:70:4d:ef:0a:3a:3b:08:4e:91:f9:c7:bf:83:7f:f9:9f:
f6:10:10:45:fb:89:84:bf:42:27:8f:5e:9f:3e:1f:ca:34:46:
3e:65:9d:0c:88:b5:6b:a7:d5:33:be:ec:90:4c:89:0c:ae:a4:
dd:db:35:b7:fd:02:a7:7e:c8:c9:56:08:0c:0f:5f:56:01:cd:
08:24:c5:8a:61:d8:a4:b7:f7:71:86:40:dc:ed:0a:dd:43:2e:
56:45:12:03:14:5e:0b:80:f6:2c:a9:fe:9a:54:c0:31:cb:9f:
53:bc:96:09:74:bf:67:ab:5a:1c:bd:3f:18:26:df:e1:67:79:
df:71:34:28:fa:3e:ab:a1:67:86:57:44:69:f9:ae:bc:74:c1:
e0:76:2c:af:de:e8:8f:a0:10:69:24:00:85:d4:7f:d4:b4:13:
bd:cc:bf:1b:f4:8f:36:9a:da:b2:7e:38:06:99:48:01:9e:92:
04:89:e8:a1:77:5c:01:3c:6d:8e:9b:6f:0a:b7:2c:96:19:ff:
c4:31:b4:ff:dc:0b:6c:58:9f:62:18:82:22:35:93:d7:83:42:
36:55:18:69:97:5c:28:b6:3b:3d:d9:cd:c3:22:bb:54:be:9c:
db:d4:52:c5:65:35:fa:8e:4c:eb:dc:46:1f:d4:a5:2b:02:47:
96:d2:7d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:13:31 2024 by rpki-client on console-fra.rpki-client.org