Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/IrqHZbBAUeJQwnLa65aQaelevMk.roa
File: IrqHZbBAUeJQwnLa65aQaelevMk.roa (raw, json)
Hash identifier: e7ppJ5JykKL5nfnna34yyGWdOQLLl+XAXPFzsxVfWAM=
Subject key identifier: 22:BA:87:65:B0:40:51:E2:50:C2:72:DA:EB:96:90:69:E9:5E:BC:C9
Certificate issuer: /CN=0314514897a0aa3ffbf45b48606124627f15e506
Certificate serial: 018CC94D4E7B57510B6365703E5C80719E20
Authority key identifier: 03:14:51:48:97:A0:AA:3F:FB:F4:5B:48:60:61:24:62:7F:15:E5:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AxRRSJegqj_79FtIYGEkYn8V5QY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/IrqHZbBAUeJQwnLa65aQaelevMk.roa
Signing time: Tue 02 Jan 2024 08:32:15 +0000
ROA not before: Tue 02 Jan 2024 08:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207199
IP address blocks: 37.140.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/AxRRSJegqj_79FtIYGEkYn8V5QY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/AxRRSJegqj_79FtIYGEkYn8V5QY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AxRRSJegqj_79FtIYGEkYn8V5QY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:4e:7b:57:51:0b:63:65:70:3e:5c:80:71:9e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0314514897a0aa3ffbf45b48606124627f15e506
Validity
Not Before: Jan 2 08:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22ba8765b04051e250c272daeb969069e95ebcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:97:7d:5f:df:78:7f:3e:c9:39:b2:1f:ab:43:
f2:b0:73:9a:dc:ab:e6:c9:3f:22:33:4a:4e:63:ec:
22:15:c9:b0:0b:43:d7:2b:c2:ce:5b:1b:5f:e8:7c:
23:2d:60:43:47:1a:3f:50:38:2d:1c:89:75:34:12:
06:b5:3e:be:9d:f1:73:16:23:47:f1:a2:2f:2c:44:
89:8d:6b:c5:0f:95:c7:f4:f2:14:e9:1a:62:95:3a:
a0:c8:5b:6b:18:2c:90:26:fa:25:b2:46:11:61:66:
9b:ab:f4:11:7c:72:7c:e2:1c:da:d5:0a:6f:e7:6a:
ea:d7:dc:6d:13:2f:1d:ab:f0:d3:91:7b:32:a3:67:
ac:61:70:ff:c6:c7:96:fe:96:98:59:15:a1:75:f6:
a6:ec:7a:84:39:2d:21:0d:57:be:b4:78:1f:8b:d8:
13:a9:33:b1:3b:1f:11:6e:02:f1:47:30:d3:93:a2:
5f:e8:3d:29:8f:d0:3d:b2:b3:02:8f:26:87:7c:03:
18:9d:5a:5f:96:98:3f:3a:dc:b9:65:44:ef:82:1c:
17:ab:30:dc:dc:6c:b8:d8:01:89:f3:c9:00:56:ba:
ad:4c:3b:b9:a1:28:36:d2:1d:ca:b2:a4:36:3d:a9:
a5:5b:d4:51:7b:3f:29:7b:d9:91:91:d6:3a:d9:5d:
d1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BA:87:65:B0:40:51:E2:50:C2:72:DA:EB:96:90:69:E9:5E:BC:C9
X509v3 Authority Key Identifier:
keyid:03:14:51:48:97:A0:AA:3F:FB:F4:5B:48:60:61:24:62:7F:15:E5:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxRRSJegqj_79FtIYGEkYn8V5QY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/IrqHZbBAUeJQwnLa65aQaelevMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/dff181-2b76-4ca2-96e4-6b158b22b48f/1/AxRRSJegqj_79FtIYGEkYn8V5QY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.219.0/24
Signature Algorithm: sha256WithRSAEncryption
19:8a:59:72:26:38:02:af:76:bd:d0:aa:07:1e:27:ec:06:a8:
de:d1:4e:eb:ac:23:7a:d5:28:8a:d3:ea:9e:39:b1:0f:cf:6d:
18:69:eb:62:c3:af:25:1f:a5:17:2b:3a:a4:1c:d6:e9:88:c7:
68:02:68:9a:7a:d5:8d:a0:53:60:11:e6:c8:54:41:08:a5:9e:
b1:ce:60:9a:11:75:8a:66:1a:29:36:4e:61:5d:bf:5b:14:67:
a5:39:47:d2:7d:31:72:2a:ee:d3:33:7f:ad:ad:1c:20:2b:27:
1d:09:f4:7e:ba:be:aa:65:49:5e:63:39:e0:1c:dc:f1:f2:91:
7e:85:8a:87:41:28:01:1f:65:ec:59:51:f6:71:1f:42:1b:95:
52:8a:40:ba:2f:98:e5:40:34:29:52:1f:1d:70:8f:ef:c0:1c:
20:c7:1e:64:fd:e2:85:90:8b:3a:ca:8b:cd:3d:7e:8d:0b:b0:
4c:d9:99:5e:22:41:d6:a9:04:4b:15:55:98:6c:8f:5f:02:26:
3a:be:32:20:3c:06:b2:27:1f:65:c7:16:4f:a9:fb:7c:d1:e0:
ae:35:2e:bc:64:6d:a4:65:ba:a0:32:2b:76:0a:ff:8a:da:dc:
b1:af:8a:0f:d5:54:c4:10:fa:02:ce:a4:57:f7:48:dd:03:53:
e7:a4:b4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 21:01:43 2024 by rpki-client on console-fra.rpki-client.org