Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/qI9xKuGwZqJ_yh1CxclADaTIKfE.roa
File: qI9xKuGwZqJ_yh1CxclADaTIKfE.roa (raw, json)
Hash identifier: YILCZ7nJwwr3ngz1pUV5YeoUhjVQhnyC0/vBCqADOa8=
Subject key identifier: A8:8F:71:2A:E1:B0:66:A2:7F:CA:1D:42:C5:C9:40:0D:A4:C8:29:F1
Certificate issuer: /CN=cfbb863380a3d4e0ac8607c9bec2389f75dd73c5
Certificate serial: 018CC56EE3D56156A59B7CF350B5BE43B495
Authority key identifier: CF:BB:86:33:80:A3:D4:E0:AC:86:07:C9:BE:C2:38:9F:75:DD:73:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/qI9xKuGwZqJ_yh1CxclADaTIKfE.roa
Signing time: Mon 01 Jan 2024 14:30:27 +0000
ROA not before: Mon 01 Jan 2024 14:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203916
IP address blocks: 185.135.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:e3:d5:61:56:a5:9b:7c:f3:50:b5:be:43:b4:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfbb863380a3d4e0ac8607c9bec2389f75dd73c5
Validity
Not Before: Jan 1 14:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a88f712ae1b066a27fca1d42c5c9400da4c829f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:01:c1:06:4c:92:f3:5d:72:4c:01:5b:cb:d6:
a3:e3:bd:58:b2:8c:46:23:1a:e7:73:21:a7:68:62:
f0:32:c9:73:ba:68:c6:53:5f:a3:aa:6d:20:bd:07:
e9:04:8c:06:8b:aa:21:88:b4:32:15:b0:ae:2f:a5:
e7:49:82:59:b3:00:34:e1:77:3b:dc:f4:80:23:4a:
96:c0:6b:ba:e5:36:b5:14:73:04:58:84:ec:36:33:
e9:67:f4:e6:ad:9a:a9:88:b4:4d:42:9e:a4:50:57:
29:75:97:22:5e:8b:bd:90:90:ba:df:98:38:4a:48:
08:f8:05:18:49:af:2e:19:d8:a8:d8:17:a6:0b:61:
94:72:3c:56:ac:9d:1b:be:9c:0f:84:23:eb:2a:70:
0d:bf:1b:70:eb:de:01:5a:6e:c8:5f:d4:b7:dd:b0:
72:9b:fb:1f:45:a7:e1:a0:39:0d:83:6a:ef:3d:66:
f2:05:80:cf:71:ac:f5:3d:a1:20:c1:8e:25:b1:83:
d2:01:7a:bf:92:e0:e0:74:1e:9a:3d:b0:48:ff:6f:
94:95:c3:37:33:bc:09:44:a1:47:ac:73:2a:d6:ef:
ec:86:79:60:63:fe:bf:dd:dc:35:a6:f6:b4:73:6b:
b7:75:b6:4f:35:a9:e2:46:e3:f2:87:34:18:c7:3e:
fb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8F:71:2A:E1:B0:66:A2:7F:CA:1D:42:C5:C9:40:0D:A4:C8:29:F1
X509v3 Authority Key Identifier:
keyid:CF:BB:86:33:80:A3:D4:E0:AC:86:07:C9:BE:C2:38:9F:75:DD:73:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/qI9xKuGwZqJ_yh1CxclADaTIKfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/186333-b1f6-4ce6-afcb-dcc25aa16c69/1/z7uGM4Cj1OCshgfJvsI4n3Xdc8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.47.0/24
Signature Algorithm: sha256WithRSAEncryption
52:e8:98:14:66:aa:aa:a8:d4:24:7b:fa:2c:da:bc:fc:ee:0e:
1a:0b:77:2a:5c:47:db:87:d8:d5:dd:71:1c:ca:57:51:02:b7:
8d:38:0c:e5:87:9e:d1:c7:5e:67:db:3f:78:bc:72:b7:8f:c6:
08:2b:a1:2c:5f:22:b2:69:0c:a0:bf:b5:fa:47:69:a6:5d:84:
4d:8b:2e:fa:95:2c:b0:e8:ae:0b:b3:4e:40:1d:14:6a:22:2c:
ab:2b:30:c9:64:03:ea:45:c7:45:5b:e8:67:13:8b:64:83:20:
b0:91:4b:61:23:4e:2f:73:d6:3e:6a:9c:1e:7c:b6:d1:0c:f3:
a4:99:c1:c2:60:e0:26:c8:5b:55:bb:c5:cc:b8:9d:66:bf:39:
67:44:cf:31:a2:07:23:1d:6f:9f:c5:11:2a:5f:2a:f9:19:8f:
70:15:97:85:1b:fd:10:43:f8:cb:14:cf:c5:79:3c:ae:ec:d5:
35:9b:a2:83:25:1e:df:d2:8f:ad:c4:cf:34:31:df:bc:53:0a:
d4:62:9e:5a:b7:e4:fe:cb:e3:87:9f:d7:53:b3:90:9c:67:8d:
dd:37:47:a4:fc:81:dd:13:c3:4e:12:da:56:56:98:e6:0d:2f:
25:a4:ca:57:0e:57:97:31:7d:b9:ee:83:6b:10:f9:65:8a:25:
2a:21:a7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:14:14 2024 by rpki-client on console-fra.rpki-client.org