Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/D_e1tLXQE7Aql_lUnPz50O5DPaU.roa
File: D_e1tLXQE7Aql_lUnPz50O5DPaU.roa (raw, json)
Hash identifier: y93A9Mu597t7e1ps1zJKPdmSiGSMbZDtbuCiNUmAIT0=
Subject key identifier: 0F:F7:B5:B4:B5:D0:13:B0:2A:97:F9:54:9C:FC:F9:D0:EE:43:3D:A5
Certificate issuer: /CN=a53c57b456f06bfeb4621c96a005eacf60c6f614
Certificate serial: 018D5EC826B56251AE9E4CE65B5926340D7B
Authority key identifier: A5:3C:57:B4:56:F0:6B:FE:B4:62:1C:96:A0:05:EA:CF:60:C6:F6:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTxXtFbwa_60YhyWoAXqz2DG9hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/D_e1tLXQE7Aql_lUnPz50O5DPaU.roa
Signing time: Wed 31 Jan 2024 09:09:51 +0000
ROA not before: Wed 31 Jan 2024 09:09:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41236
IP address blocks: 91.235.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/pTxXtFbwa_60YhyWoAXqz2DG9hQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/pTxXtFbwa_60YhyWoAXqz2DG9hQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pTxXtFbwa_60YhyWoAXqz2DG9hQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:c8:26:b5:62:51:ae:9e:4c:e6:5b:59:26:34:0d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a53c57b456f06bfeb4621c96a005eacf60c6f614
Validity
Not Before: Jan 31 09:09:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ff7b5b4b5d013b02a97f9549cfcf9d0ee433da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6e:f7:b5:86:cc:6e:cf:90:64:ea:1b:a3:be:
51:99:4f:34:82:7f:36:c6:bc:44:79:d0:57:ad:f5:
c8:ad:3e:a2:f2:90:6e:30:03:d8:ac:ac:28:5b:3c:
4b:4b:c0:33:28:e8:13:27:41:11:aa:72:60:ce:68:
57:01:ff:d9:e5:84:99:a9:c2:50:04:9b:2f:1d:71:
8c:c8:a6:93:7f:68:f0:9a:59:ec:d2:03:6b:c3:29:
3e:e3:5c:b5:cb:35:b1:98:4e:58:56:4a:14:c7:c7:
d7:2f:77:78:15:78:1e:33:48:0a:4e:63:ff:e4:ec:
06:bb:74:28:d5:b1:97:4d:96:06:62:57:e1:bb:0e:
27:ff:a3:c9:f6:7f:59:f9:48:87:65:5e:2d:f1:90:
75:ee:ce:4c:c4:4b:39:46:76:f6:ff:d2:7b:70:a0:
ad:8c:73:62:51:ce:74:31:a5:33:03:fb:86:4d:c0:
cf:6a:c7:b0:37:6e:1d:41:c2:d7:ac:5f:5e:b8:72:
66:03:2c:f4:a1:d2:d2:00:38:50:74:d0:02:fa:32:
d5:89:12:fc:c9:17:5e:1b:c7:3b:9a:1f:ec:12:b5:
9e:84:51:5a:51:6d:5f:d9:ae:af:0a:dd:6f:ae:39:
f7:c5:99:28:ce:fd:08:d4:e2:95:89:53:07:3f:28:
7c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F7:B5:B4:B5:D0:13:B0:2A:97:F9:54:9C:FC:F9:D0:EE:43:3D:A5
X509v3 Authority Key Identifier:
keyid:A5:3C:57:B4:56:F0:6B:FE:B4:62:1C:96:A0:05:EA:CF:60:C6:F6:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTxXtFbwa_60YhyWoAXqz2DG9hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/D_e1tLXQE7Aql_lUnPz50O5DPaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47788a-1609-407e-86d6-ec40e1da35d0/1/pTxXtFbwa_60YhyWoAXqz2DG9hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.207.0/24
Signature Algorithm: sha256WithRSAEncryption
51:9b:73:ae:0d:73:97:a6:80:66:f6:d0:7a:7a:5b:c9:1e:75:
58:c7:2e:e8:c4:d3:f3:c7:13:71:1a:be:10:95:b6:15:ad:f6:
49:4f:06:63:2e:85:1a:e9:d1:08:71:8d:ba:d6:52:b9:9f:28:
94:52:4c:53:01:18:f6:9c:9b:9c:18:31:6f:22:97:44:63:b4:
f7:c1:73:ca:0e:1b:d5:e8:db:78:66:d4:89:51:2f:6b:01:22:
a7:09:e3:81:48:f5:16:29:90:56:d6:15:5d:97:5c:c5:b7:00:
86:35:5c:9a:9c:13:c5:17:7d:1c:85:dd:25:98:b6:3e:fa:b0:
7e:4e:66:46:b9:81:24:28:8f:41:ad:d7:9d:ef:c3:53:9d:90:
4a:a5:a0:2a:74:04:5e:fd:cd:74:29:29:8d:1a:38:09:c4:b8:
64:2c:13:df:43:b8:33:7e:7b:d4:0b:ff:d1:07:3b:b8:67:87:
5b:87:60:39:76:a6:8e:21:e2:20:99:cf:c7:6c:9a:c1:f5:da:
a8:23:3f:5c:5b:b5:ae:9e:13:7d:92:0a:75:c8:62:22:35:8c:
bb:4c:f5:c9:54:4d:41:d5:2e:09:50:a0:98:cb:48:cb:b3:2e:
c1:b0:36:e0:57:f2:39:c5:92:49:a5:8f:b6:cf:14:f5:8e:6c:
95:e4:c4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:10:01 2024 by rpki-client on console-ams.rpki-client.org