Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/jGCEqUyN1n8O3GpXSbTuI-tNcoM.roa
File: jGCEqUyN1n8O3GpXSbTuI-tNcoM.roa (raw, json)
Hash identifier: lbVnjNM1Z0Xht/Y54AM0rCdqmM8rjCh3DllkrqMFs1E=
Subject key identifier: 8C:60:84:A9:4C:8D:D6:7F:0E:DC:6A:57:49:B4:EE:23:EB:4D:72:83
Certificate issuer: /CN=321ec194107843848cd36330232b5f6a43791db4
Certificate serial: 0190834E80F990535F444F968678522F18D1
Authority key identifier: 32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/jGCEqUyN1n8O3GpXSbTuI-tNcoM.roa
Signing time: Fri 05 Jul 2024 14:31:18 +0000
ROA not before: Fri 05 Jul 2024 14:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43519
IP address blocks: 194.227.193.0/24 maxlen: 24
194.227.194.0/24 maxlen: 24
194.227.195.0/24 maxlen: 24
212.148.211.0/24 maxlen: 24
212.148.212.0/24 maxlen: 24
212.148.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/Mh7BlBB4Q4SM02MwIytfakN5HbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/Mh7BlBB4Q4SM02MwIytfakN5HbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:83:4e:80:f9:90:53:5f:44:4f:96:86:78:52:2f:18:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321ec194107843848cd36330232b5f6a43791db4
Validity
Not Before: Jul 5 14:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c6084a94c8dd67f0edc6a5749b4ee23eb4d7283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:32:83:77:20:47:62:f5:ab:22:93:58:9c:
9d:8d:54:8a:94:d5:65:d7:5c:27:e4:c8:cd:ea:e0:
44:75:52:a0:6e:bb:5b:7d:29:93:24:96:c0:d0:ca:
cb:c6:e8:2d:1c:2b:16:40:a7:b8:a4:73:d1:c7:33:
8c:ec:fa:35:08:ee:bd:19:a8:f4:21:0d:b6:23:41:
c2:25:2a:f9:b0:58:65:c6:f1:f4:ae:e2:ac:9e:4f:
35:50:63:e1:83:b9:dd:89:0e:c8:c2:e3:0a:ed:68:
a8:b6:a2:30:ef:0b:1a:51:00:71:34:2e:b0:4c:b5:
a8:46:c6:36:f3:b2:15:7c:1f:8f:14:c9:00:3d:55:
8e:25:da:30:c2:82:59:8e:55:d5:9d:54:c5:89:3e:
fb:89:d4:28:5b:34:a7:3c:37:53:74:ed:41:67:76:
84:92:fa:15:87:49:50:81:a0:53:23:c3:66:48:b0:
ce:2c:6a:30:2b:ef:50:49:a4:81:00:23:f3:fc:83:
a8:db:96:6b:89:4e:8d:ef:6b:39:99:8c:86:8d:a9:
51:8c:1a:43:f8:b3:f1:dc:fc:55:1b:8f:69:d7:03:
61:07:e7:7f:5e:3a:a1:ed:45:c5:6a:d7:c7:7a:e4:
e7:7d:6c:a2:29:64:03:69:03:d5:7a:a3:3a:91:4f:
29:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:60:84:A9:4C:8D:D6:7F:0E:DC:6A:57:49:B4:EE:23:EB:4D:72:83
X509v3 Authority Key Identifier:
keyid:32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/jGCEqUyN1n8O3GpXSbTuI-tNcoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/Mh7BlBB4Q4SM02MwIytfakN5HbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.227.193.0-194.227.195.255
212.148.211.0-212.148.213.255
Signature Algorithm: sha256WithRSAEncryption
64:59:a8:64:93:df:c6:72:38:6a:0c:87:07:59:56:4e:db:14:
c7:3e:73:76:0e:9d:f2:91:6a:19:06:74:a8:98:94:43:73:d1:
83:65:6c:ca:78:e5:7b:d4:58:d7:22:2f:9c:13:0d:ed:26:97:
fb:34:fe:f8:79:65:a6:03:09:44:59:f4:e8:ea:85:a0:e1:ae:
2f:71:86:50:96:d4:43:88:53:f7:52:5d:78:5b:8e:be:20:68:
98:98:a5:9f:52:d3:83:9a:aa:51:2b:cc:b5:80:7c:c9:bc:d0:
6a:4a:7d:e5:12:40:2f:fa:bf:b2:f4:b0:37:a6:31:51:ab:54:
79:02:8f:ce:f1:d3:bc:dc:0d:85:24:ea:2f:18:7d:28:96:1f:
af:4a:01:03:a0:0d:1e:43:53:77:2a:e6:dc:81:07:11:c7:88:
f2:ad:4d:6f:fb:0f:a3:44:92:f8:d4:0e:99:d1:3e:d5:ee:3d:
ec:ef:08:9e:93:6f:9b:55:ff:56:e5:e2:14:0c:1a:d8:78:ac:
de:89:81:4c:94:f9:da:ab:eb:fa:07:1f:90:b0:35:ed:75:34:
57:4f:b0:5e:85:b8:0f:73:e3:5e:74:21:ca:5e:87:14:57:46:
e9:ec:6e:c0:53:40:25:31:37:e5:a8:b5:80:cc:71:32:19:4a:
e1:69:49:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:46:13 2024 by rpki-client on console-ams.rpki-client.org