Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/FwonuJiXpq7cUVLECoaUfX8sO68.roa
File: FwonuJiXpq7cUVLECoaUfX8sO68.roa (raw, json)
Hash identifier: /gegS5Q6vas+MWv34F/STvtgHTifWZ58wGfkUKSdkpI=
Subject key identifier: 17:0A:27:B8:98:97:A6:AE:DC:51:52:C4:0A:86:94:7D:7F:2C:3B:AF
Certificate issuer: /CN=e8206aa3252e3ea8d684eaec7a2993513b5d2307
Certificate serial: 018CC493085125FE51DE6186F127FD7DF47E
Authority key identifier: E8:20:6A:A3:25:2E:3E:A8:D6:84:EA:EC:7A:29:93:51:3B:5D:23:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6CBqoyUuPqjWhOrseimTUTtdIwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/FwonuJiXpq7cUVLECoaUfX8sO68.roa
Signing time: Mon 01 Jan 2024 10:30:19 +0000
ROA not before: Mon 01 Jan 2024 10:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56605
IP address blocks: 80.84.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/6CBqoyUuPqjWhOrseimTUTtdIwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/6CBqoyUuPqjWhOrseimTUTtdIwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/6CBqoyUuPqjWhOrseimTUTtdIwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:08:51:25:fe:51:de:61:86:f1:27:fd:7d:f4:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8206aa3252e3ea8d684eaec7a2993513b5d2307
Validity
Not Before: Jan 1 10:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=170a27b89897a6aedc5152c40a86947d7f2c3baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:d3:ec:b6:eb:c2:e7:4b:2e:4d:95:58:ef:
2f:9c:1e:31:2c:d1:07:05:39:65:48:a6:1c:04:1b:
83:84:42:fc:99:48:07:1e:ac:31:22:a6:af:fa:9f:
bb:f8:13:7a:7f:2e:53:4b:f4:5c:75:b0:6d:a5:b3:
bc:95:2d:af:18:ab:a3:55:1e:24:a0:0c:24:16:b4:
3d:b8:64:f8:69:98:0e:fb:59:a0:01:5b:91:8b:b7:
66:99:14:8d:a7:38:c5:11:c1:99:ae:7b:83:34:45:
cd:f9:0e:25:ef:43:16:ac:56:6a:68:b1:8e:d8:3c:
a1:11:a0:03:0d:ed:40:be:c9:02:0f:ba:b2:66:d0:
98:2e:b6:e8:85:5e:a6:08:2e:7b:01:93:8a:7a:ab:
31:3b:41:01:7a:6f:1d:80:d7:a0:4b:dc:86:55:96:
50:7c:f7:ca:90:24:16:d0:3f:72:54:e7:4a:ac:70:
4e:bd:19:4d:4a:d1:ec:62:e3:cc:1a:22:48:50:ea:
76:97:45:15:06:20:68:8f:dd:e5:8e:58:fc:18:4d:
56:4c:5f:5b:db:3a:90:8b:10:a3:9b:ae:75:e5:32:
d2:a4:09:61:ee:12:05:f7:5f:f9:5d:a7:dc:d9:a4:
e8:40:36:44:e4:7b:a3:9f:49:b1:f9:9e:75:5b:c4:
5f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0A:27:B8:98:97:A6:AE:DC:51:52:C4:0A:86:94:7D:7F:2C:3B:AF
X509v3 Authority Key Identifier:
keyid:E8:20:6A:A3:25:2E:3E:A8:D6:84:EA:EC:7A:29:93:51:3B:5D:23:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6CBqoyUuPqjWhOrseimTUTtdIwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/FwonuJiXpq7cUVLECoaUfX8sO68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/47accb-6f3c-4c6c-9fd0-585eb84558f9/1/6CBqoyUuPqjWhOrseimTUTtdIwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.191.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:c5:98:36:90:ec:04:78:18:ff:d9:dd:f3:af:f9:7c:71:bd:
47:45:4a:72:eb:34:1d:bc:5e:f9:4c:9e:70:83:eb:55:30:4e:
89:97:67:12:93:da:78:85:00:39:6c:15:8d:7d:bb:8d:7d:b1:
82:ed:9d:f5:9a:20:7d:d0:02:83:c8:58:a1:d3:2a:a2:6f:2b:
cd:8b:0f:32:f3:13:dc:b3:7c:43:22:e4:4a:e8:8b:f5:ac:f2:
b8:72:6e:63:a9:63:44:1f:03:75:d0:0a:23:11:3e:ff:42:40:
6b:92:e2:69:4c:57:4d:19:ca:a8:f6:06:1b:d7:1e:5f:ae:d0:
8e:e9:b2:e2:55:61:ed:f7:d0:ae:6e:a8:47:36:3e:70:02:8b:
1a:69:2b:ab:e9:fd:23:16:59:f3:b8:3a:2b:11:6e:01:9e:bf:
6d:e1:47:1d:26:c0:ec:7a:c5:cd:b9:94:93:8f:3a:d0:8e:c6:
b1:b6:d2:ac:ed:ae:c1:9a:76:23:8e:16:a1:64:68:b0:3e:72:
39:79:b3:80:32:1d:75:0c:b0:fe:ed:41:b1:28:ee:6b:10:c0:
57:88:ee:1f:84:2e:ab:10:f6:c5:ba:ff:f3:ea:38:8d:aa:c2:
f6:9e:45:cf:71:d2:e7:55:b2:04:46:4c:8e:b9:77:71:17:1e:
e8:b1:38:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 19:48:45 2024 by rpki-client on console-fra.rpki-client.org