Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/93GxpGDv1mEGokFINJbDBSKcZ0w.roa
File: 93GxpGDv1mEGokFINJbDBSKcZ0w.roa (raw, json)
Hash identifier: TZIsANotKpCPIZxk/ERy7n+q2fg3wWe0izse0kzdrCM=
Subject key identifier: F7:71:B1:A4:60:EF:D6:61:06:A2:41:48:34:96:C3:05:22:9C:67:4C
Certificate issuer: /CN=f3c8990bd6e9307113e83832c6915fda5cacfc2f
Certificate serial: 018CC56E2D9F07C5E58F15F04364ADC48425
Authority key identifier: F3:C8:99:0B:D6:E9:30:71:13:E8:38:32:C6:91:5F:DA:5C:AC:FC:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/88iZC9bpMHET6DgyxpFf2lys_C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/93GxpGDv1mEGokFINJbDBSKcZ0w.roa
Signing time: Mon 01 Jan 2024 14:29:41 +0000
ROA not before: Mon 01 Jan 2024 14:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43012
IP address blocks: 194.59.52.0/22 maxlen: 22
77.91.216.0/21 maxlen: 21
2a02:2538::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/88iZC9bpMHET6DgyxpFf2lys_C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/88iZC9bpMHET6DgyxpFf2lys_C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/88iZC9bpMHET6DgyxpFf2lys_C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:2d:9f:07:c5:e5:8f:15:f0:43:64:ad:c4:84:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3c8990bd6e9307113e83832c6915fda5cacfc2f
Validity
Not Before: Jan 1 14:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f771b1a460efd66106a241483496c305229c674c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:87:48:9c:8a:6e:26:c7:bb:79:ba:92:e1:1a:
a6:56:92:d2:62:1d:ef:10:f6:e0:3e:55:df:6e:44:
30:b1:2b:29:7e:64:3b:cf:ec:1c:ab:91:73:5e:44:
7f:d3:29:03:ae:71:6b:f5:96:d8:75:a3:ac:33:89:
f3:1d:04:f8:76:b6:d0:96:44:1f:d7:da:c6:c9:af:
7f:59:2b:bd:fd:81:5e:75:73:e7:02:ce:21:b4:dd:
0a:34:1a:0c:40:32:da:6c:c2:27:a9:dd:67:bc:06:
bd:20:ff:27:91:ef:70:3f:bf:93:ef:bc:6f:c1:69:
8f:60:2a:a3:75:26:2d:28:d0:63:be:04:55:29:c7:
60:cd:20:f8:f0:19:5b:f0:a4:ff:07:b7:ec:83:d8:
83:ed:86:95:9e:1d:5a:08:d3:2e:90:9a:ed:69:85:
97:e8:b3:71:89:e4:30:c2:75:b8:bd:6e:a3:31:11:
58:d5:8f:f8:ab:1b:12:e1:a7:c4:56:1f:d3:a6:5f:
48:7b:d9:39:83:73:bd:e4:c9:be:bb:d3:a2:8c:27:
14:77:14:92:c5:3e:63:82:fb:7d:b6:52:2e:7d:fd:
b8:44:67:a7:c6:73:99:ba:fa:43:42:fd:7e:c8:0c:
a7:da:de:df:45:4b:3d:5a:13:cd:7b:84:cc:7f:2d:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:71:B1:A4:60:EF:D6:61:06:A2:41:48:34:96:C3:05:22:9C:67:4C
X509v3 Authority Key Identifier:
keyid:F3:C8:99:0B:D6:E9:30:71:13:E8:38:32:C6:91:5F:DA:5C:AC:FC:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/88iZC9bpMHET6DgyxpFf2lys_C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/93GxpGDv1mEGokFINJbDBSKcZ0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fd73d8-154a-40ce-aebc-e889a6e6beac/1/88iZC9bpMHET6DgyxpFf2lys_C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.216.0/21
194.59.52.0/22
IPv6:
2a02:2538::/32
Signature Algorithm: sha256WithRSAEncryption
1b:3c:2e:2d:2b:98:33:c7:e3:4e:17:c1:49:0d:54:57:60:42:
b6:82:71:9c:2b:3b:a3:94:e6:af:f6:d8:84:5d:c4:4f:5e:1f:
09:44:b4:0e:59:c7:a8:f6:95:48:ea:a2:e6:18:b1:be:bf:79:
45:e6:11:26:53:de:dc:7a:8a:18:9f:ac:54:f6:87:20:e9:dd:
75:93:c6:82:93:b0:e3:62:c4:47:9e:47:e0:bb:c2:ae:12:2b:
09:7c:8d:13:72:03:2f:9b:50:d5:53:49:ba:0f:d3:54:72:40:
1a:b1:91:e0:4b:98:98:d9:e1:0c:ea:93:8f:40:67:2b:9b:99:
63:36:ac:6c:8d:c4:7c:8f:53:d2:5c:3f:45:31:72:b2:45:47:
a0:db:e9:53:5b:de:c6:39:f3:a8:94:da:f5:53:85:eb:0d:df:
6c:05:1d:be:93:4c:01:e5:05:fd:a7:8c:fe:1f:3e:e8:cc:de:
9e:c8:9d:2e:fd:50:a3:da:3c:dd:27:bf:15:22:4a:66:7f:82:
87:56:62:48:ca:10:ad:f5:cf:87:00:69:74:e3:19:10:14:75:
a1:05:2b:3d:5d:80:0d:32:19:63:3e:26:72:35:44:48:e6:ff:
82:61:33:20:ce:d7:e0:62:8a:91:5e:50:a8:e8:ec:16:ad:85:
fb:78:8b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 14:53:15 2024 by rpki-client on console-fra.rpki-client.org