Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/pykwO-h1qdxsQScD57DqrsCeUaE.roa
File: pykwO-h1qdxsQScD57DqrsCeUaE.roa (raw, json)
Hash identifier: H8oPP6Y5pTEmXEp7QvUMLk9x3yCemgdJ31MFV0EHLwg=
Subject key identifier: A7:29:30:3B:E8:75:A9:DC:6C:41:27:03:E7:B0:EA:AE:C0:9E:51:A1
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 018F2F5D33A1C07F7656550B5300AEABB074
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/pykwO-h1qdxsQScD57DqrsCeUaE.roa
Signing time: Tue 30 Apr 2024 14:16:28 +0000
ROA not before: Tue 30 Apr 2024 14:16:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 91.204.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:5d:33:a1:c0:7f:76:56:55:0b:53:00:ae:ab:b0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Apr 30 14:16:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a729303be875a9dc6c412703e7b0eaaec09e51a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:00:ee:3a:e3:30:bc:44:0c:a9:3e:25:6f:5e:
e7:ab:bb:64:74:c7:01:ab:63:85:87:99:ed:4e:f9:
17:ad:9e:71:3c:01:1f:1e:a5:92:91:f1:cf:5e:ca:
c4:b8:34:9d:99:d4:72:da:24:5e:00:c1:93:26:32:
08:ff:14:05:e7:37:e3:a1:4d:ad:47:ed:f3:5d:36:
18:ea:fe:4a:b1:0d:b2:f2:b0:4d:99:a6:95:ab:86:
fe:b5:ab:e8:83:e1:57:eb:c2:18:8b:94:ef:a1:db:
40:8a:69:70:b7:51:22:11:b4:e4:a7:42:a0:74:1f:
49:9b:17:9d:c8:68:72:cd:99:04:01:6f:55:6b:bf:
52:29:d1:2f:93:cd:57:ff:a3:ad:cc:0b:a0:c2:1f:
b5:87:27:3c:30:5e:38:00:1f:60:2a:59:bf:86:a1:
67:56:e3:4a:7e:19:04:0d:d5:3a:ef:d2:10:77:46:
35:04:4e:29:a9:05:5a:d0:df:0f:4e:70:72:e9:b3:
b6:b9:f6:a0:f3:8b:51:6c:51:e4:2f:e6:8b:d5:6e:
79:f5:c1:e1:cc:fa:11:71:5a:cc:29:68:a8:23:e4:
f9:c6:cf:4d:ca:bf:a1:dc:dc:9e:b2:07:c7:be:61:
59:a6:3e:b0:ab:c0:dd:62:b4:47:09:63:00:d4:03:
3a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:29:30:3B:E8:75:A9:DC:6C:41:27:03:E7:B0:EA:AE:C0:9E:51:A1
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/pykwO-h1qdxsQScD57DqrsCeUaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:96:7e:70:f6:da:12:40:da:f6:d8:2e:70:85:05:f3:eb:ae:
ed:1b:ef:a5:84:07:90:5c:cf:61:e4:0d:02:c0:15:53:2a:5e:
b4:4e:60:9e:5d:5e:77:df:6f:74:16:e2:03:a0:aa:16:97:04:
86:b3:10:6c:ab:19:bf:10:27:50:b7:cf:ee:08:58:cc:d4:23:
e1:99:a9:e4:62:e0:28:a2:ac:78:8d:ad:22:9f:95:80:6c:05:
01:5a:a8:d5:ff:6b:3b:8b:39:54:01:1b:92:93:e1:b8:90:fe:
ea:23:3e:7e:13:a8:e4:ee:85:9b:e7:74:1a:b2:68:79:0f:b9:
d0:44:9b:73:d9:69:6e:0d:1a:99:9d:93:14:08:00:32:4b:07:
3a:a4:bd:d1:16:1c:54:c6:49:a2:03:1b:3e:b1:77:fd:f8:88:
db:7c:e6:d8:9c:72:95:e5:e5:5c:04:66:7c:42:fd:3d:2b:17:
8a:45:6c:0e:63:b8:3e:49:3f:5b:57:7f:82:e0:aa:5e:2d:39:
64:f0:4d:6c:c2:2a:d1:01:8a:82:5c:df:f7:53:84:5b:17:6e:
4e:00:af:6f:59:a7:56:e5:ad:9f:45:bd:bd:69:83:a3:da:f3:
7c:3b:35:0c:79:fe:62:2a:2c:1b:79:f7:b2:4a:38:39:80:7d:
55:f8:32:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 16:56:56 2024 by rpki-client on console-fra.rpki-client.org