Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/kWtprA61ek6MIm_L7WBKWSXIZt8.roa
File: kWtprA61ek6MIm_L7WBKWSXIZt8.roa (raw, json)
Hash identifier: dLKI8eAsQDsBcGMzWMkQNZW0bmdQFBv/eZWGNG0sJh4=
Subject key identifier: 91:6B:69:AC:0E:B5:7A:4E:8C:22:6F:CB:ED:60:4A:59:25:C8:66:DF
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBD3AEF2430553B9985A50FCADBD67
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/kWtprA61ek6MIm_L7WBKWSXIZt8.roa
Signing time: Tue 02 Jan 2024 10:32:58 +0000
ROA not before: Tue 02 Jan 2024 10:32:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200940
IP address blocks: 195.228.73.0/24 maxlen: 24
195.228.95.0/24 maxlen: 24
195.228.94.0/24 maxlen: 24
195.228.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d3:ae:f2:43:05:53:b9:98:5a:50:fc:ad:bd:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=916b69ac0eb57a4e8c226fcbed604a5925c866df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:42:1b:24:26:1e:6b:c3:48:19:94:eb:c2:1c:
76:74:51:df:56:4e:d0:bf:3c:c3:7b:82:c3:d2:01:
a7:a5:98:05:fc:1d:b3:5c:cd:00:14:80:5b:05:c8:
ef:e6:00:ea:5e:b7:4f:c6:25:d4:c9:3f:42:11:0a:
5a:cc:58:50:70:66:d6:3d:0b:36:d6:d6:34:ba:69:
48:68:0a:e8:26:dc:d2:5a:8f:8b:fc:df:d0:42:54:
62:2a:a4:56:72:b6:f9:6c:b4:6c:d3:8c:1d:22:31:
ef:f4:0c:15:12:5f:10:6b:d0:e1:e2:2c:9c:3d:17:
ad:18:5e:ae:d1:4f:14:d4:fc:a0:7d:c8:02:58:af:
d0:ca:89:00:b0:7f:69:64:b6:00:82:15:c7:61:50:
38:20:58:d1:b1:d0:31:5d:74:d1:cd:f4:00:e6:9b:
50:a0:59:2f:0c:38:d9:eb:93:a7:39:a9:79:54:83:
98:5f:9a:47:45:8b:83:d9:09:2f:e0:21:f0:80:81:
49:e3:d3:34:e4:1e:5b:ac:5e:c9:98:8d:ff:37:cc:
12:11:2f:9f:b9:cb:78:cd:6c:e7:d1:be:b5:7b:26:
61:8c:1a:83:66:36:d3:5f:6f:84:e9:a4:53:80:70:
e1:34:6f:5d:89:af:ae:8c:1e:17:83:31:9d:f3:18:
19:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6B:69:AC:0E:B5:7A:4E:8C:22:6F:CB:ED:60:4A:59:25:C8:66:DF
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/kWtprA61ek6MIm_L7WBKWSXIZt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.73.0/24
195.228.94.0/23
195.228.103.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:9d:89:7c:2b:06:2b:01:18:bd:e7:8e:b0:10:b3:47:92:47:
4d:55:2e:af:fc:d6:78:b5:54:33:db:2f:0c:e5:c7:ef:71:4b:
ae:a3:f4:d3:42:3d:43:fc:b6:b6:2c:3d:58:7e:d2:b2:c3:8e:
ee:02:6d:2b:d1:f7:1a:83:37:c8:7b:b6:27:32:e5:26:b7:86:
86:39:c8:f6:b6:6f:71:d2:4a:33:57:2b:de:01:67:54:c7:09:
38:e8:ee:a5:fa:af:13:4f:59:52:66:0d:5d:a7:3c:1f:a4:93:
af:b4:05:04:b5:6f:3d:08:2d:3a:02:71:9b:82:3b:dd:47:c4:
03:c6:f0:ee:9d:ff:37:5b:8d:70:59:ff:f4:29:86:00:23:c9:
ed:db:9c:ee:54:53:1a:0a:dd:90:15:55:0a:02:b7:66:c7:d7:
58:3d:34:76:aa:3f:6c:e6:e4:bf:1e:ed:b8:29:dd:73:db:d9:
95:21:5a:5a:3e:d0:25:2b:6c:5d:e1:6f:5f:3e:40:ef:70:0e:
ab:38:91:81:0d:87:05:ae:d9:c1:6d:56:4e:e3:f0:38:0f:11:
c7:50:e0:d3:ff:28:db:7d:6a:86:dd:66:78:4f:de:a4:38:5c:
61:50:16:52:c7:26:2d:35:4e:a3:2f:dd:1a:3f:11:1f:44:c7:
ff:12:b1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:10:18 2024 by rpki-client on console-ams.rpki-client.org