Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/cFXBblys90fFErArMqif0v9AFwY.roa
File: cFXBblys90fFErArMqif0v9AFwY.roa (raw, json)
Hash identifier: wLvHSplD3zmQepXMZ09m+imzE5sekdAtcdAkf3hgatM=
Subject key identifier: 70:55:C1:6E:5C:AC:F7:47:C5:12:B0:2B:32:A8:9F:D2:FF:40:17:06
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 018CEE926500B39FA6E1184D0F2DC864F267
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/cFXBblys90fFErArMqif0v9AFwY.roa
Signing time: Tue 09 Jan 2024 14:13:40 +0000
ROA not before: Tue 09 Jan 2024 14:13:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41745
IP address blocks: 188.92.28.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ee:92:65:00:b3:9f:a6:e1:18:4d:0f:2d:c8:64:f2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Jan 9 14:13:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7055c16e5cacf747c512b02b32a89fd2ff401706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:45:94:e8:a9:65:79:6e:ab:98:56:ad:95:63:
a0:e3:72:f6:6b:c1:ad:43:51:de:b7:c7:e8:11:06:
1f:d7:d5:c5:5f:15:cf:5a:99:cf:69:8f:a2:fb:8b:
87:25:e9:ec:31:8b:e8:ef:a0:04:b1:28:54:61:b0:
6d:6a:36:f4:46:f2:83:94:6d:6e:81:cc:35:23:6a:
d7:86:70:74:3a:26:c3:f2:a4:69:27:07:f1:1f:f9:
14:c5:66:96:cf:1e:8d:fe:c5:f3:a6:c6:10:61:83:
cb:c2:6b:50:d8:07:d1:5f:d1:b9:fc:63:5e:d1:a3:
f6:53:7e:9d:f4:ea:35:a2:4e:e0:99:f2:ca:e9:3d:
d2:94:06:a2:4b:5f:11:58:de:4c:c8:c2:9f:f3:8b:
46:54:98:17:f7:f0:3e:6c:7f:e5:4c:7f:bb:35:92:
9b:3e:83:ee:d5:87:80:5d:82:ee:8d:80:fb:58:a0:
87:9d:85:f7:cf:5b:67:ec:2a:9e:c0:76:5f:04:4e:
d9:cd:16:a7:62:9b:d6:63:87:ae:c7:88:6a:67:15:
8a:3e:ba:f5:80:68:f9:f2:0d:08:f1:e7:e4:1b:f8:
bb:e6:0d:c1:d0:b8:84:a7:32:b0:33:4a:bf:91:56:
e6:0b:cf:b8:34:ba:2d:4c:87:72:d7:76:1c:c9:a1:
8a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:55:C1:6E:5C:AC:F7:47:C5:12:B0:2B:32:A8:9F:D2:FF:40:17:06
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/cFXBblys90fFErArMqif0v9AFwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.28.0/24
Signature Algorithm: sha256WithRSAEncryption
35:97:13:b4:15:70:a3:7c:3a:f7:b9:77:94:f6:16:54:f1:ff:
e4:05:49:89:fc:51:5c:2d:0e:ff:a5:04:f3:fc:07:c9:99:40:
3b:5d:59:8e:e6:bf:ed:8b:50:fb:1e:69:09:50:d1:83:5c:15:
e6:7f:2e:06:1f:93:a7:42:e0:26:2b:fa:98:14:bc:bd:01:a4:
62:96:bb:9c:66:fc:d0:c0:13:aa:0e:6e:4a:a7:c8:e9:e6:22:
60:71:df:2a:b4:42:21:ce:03:0c:51:a2:bb:74:87:3f:bd:ab:
99:05:fb:05:d7:d2:4b:9f:e1:77:87:93:1d:7f:86:14:58:99:
33:9e:a4:30:ae:a7:c4:a4:04:1a:80:f0:a8:10:ed:d6:78:4b:
2b:a0:ac:08:1e:69:69:b5:0e:e3:ae:ec:29:d3:4b:8a:6b:78:
bc:60:48:e7:43:04:fc:27:ec:87:36:3f:b4:73:cc:3e:74:2e:
31:39:8a:7b:3b:eb:0a:83:bd:35:9a:46:19:83:23:06:2f:b4:
05:5f:84:50:3b:55:02:04:79:40:1f:01:dc:9f:a9:a7:ee:80:
d6:29:b0:62:b3:b2:11:07:d5:20:62:d0:be:1d:5d:45:8d:5f:
a7:23:d4:44:6d:fc:38:99:08:20:4e:a9:24:8d:a1:2f:e0:63:
36:61:60:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:13:40 2024 by rpki-client on console-ams.rpki-client.org