Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/p41qPh3EbNbLzH1tvYRYGS0N2E8.roa
File: p41qPh3EbNbLzH1tvYRYGS0N2E8.roa (raw, json)
Hash identifier: Zub/SyOrNLAvM8W+T3PNJnGTgJeGtmmMQ/2b5XCZoL8=
Subject key identifier: A7:8D:6A:3E:1D:C4:6C:D6:CB:CC:7D:6D:BD:84:58:19:2D:0D:D8:4F
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0192FCB08CEAAADE7B153C7536262A241924
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/p41qPh3EbNbLzH1tvYRYGS0N2E8.roa
Signing time: Tue 05 Nov 2024 14:18:01 +0000
ROA not before: Tue 05 Nov 2024 14:18:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24768
IP address blocks: 195.216.164.0/22 maxlen: 22
213.182.195.0/24 maxlen: 24
213.182.212.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fc:b0:8c:ea:aa:de:7b:15:3c:75:36:26:2a:24:19:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Nov 5 14:18:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a78d6a3e1dc46cd6cbcc7d6dbd8458192d0dd84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0e:85:bf:a2:13:1b:fc:56:f1:29:eb:c6:c4:
7b:9c:c5:55:52:47:eb:74:74:d2:fc:4b:83:a7:76:
f0:e6:10:49:4c:35:7f:cd:a7:56:4c:0b:6f:e6:2b:
c0:1b:8a:b3:93:88:93:df:87:37:be:18:6a:7b:d6:
97:be:bf:fc:ba:c5:3b:06:35:b1:55:31:8a:8f:df:
17:03:9b:08:2d:88:63:8f:34:d2:d9:d3:ec:06:a1:
54:dd:51:75:1e:dd:f3:e1:fb:73:0d:49:51:2f:a3:
f6:07:c9:21:74:be:fa:22:ee:06:b4:be:10:ac:06:
79:67:36:b6:9e:d2:3c:e7:dc:95:55:b4:c7:c4:98:
4b:d9:9a:e7:3a:08:eb:ac:67:ba:94:1f:83:85:24:
ab:bd:bd:cf:52:90:8b:02:26:ed:6b:e7:8e:eb:a3:
8c:25:f3:54:3a:11:d6:a4:64:98:a3:c7:d3:7a:cc:
5a:cb:07:5f:67:b1:8b:e4:29:cd:9f:91:4d:f8:e9:
33:22:49:9d:e0:a5:39:c6:40:a1:10:a8:4e:09:15:
e8:ab:17:43:82:64:af:b1:7f:7f:a3:5d:68:35:42:
ca:f7:b4:5a:c1:41:f4:32:8c:69:de:e3:51:ff:79:
20:9f:a9:46:f0:c9:18:05:5c:05:3f:ab:83:f7:75:
ce:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8D:6A:3E:1D:C4:6C:D6:CB:CC:7D:6D:BD:84:58:19:2D:0D:D8:4F
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/p41qPh3EbNbLzH1tvYRYGS0N2E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.164.0/22
213.182.195.0/24
213.182.212.0/22
Signature Algorithm: sha256WithRSAEncryption
58:0a:5a:7b:be:9d:c0:8a:ce:2b:d9:e7:95:da:19:cf:ef:8f:
73:65:b0:06:5c:58:6a:c5:a1:54:11:89:9e:a4:5b:c3:d6:6a:
a9:a9:8e:d4:b1:c1:b1:49:f6:3c:db:7d:40:4d:1d:97:13:31:
10:ac:78:38:65:7e:7d:74:1a:b7:a3:12:db:ab:5c:36:fb:42:
f3:2f:ab:1c:d8:33:c4:d7:27:18:4c:f6:60:b6:1c:26:28:f5:
0b:42:5f:ed:c4:43:56:6d:c2:05:3b:1c:3c:e8:9a:d4:2a:37:
53:d6:e5:59:49:aa:c8:c6:37:e2:ae:64:7e:f9:26:c7:ac:84:
5d:92:c5:07:20:0d:5f:50:87:3a:99:74:8c:ad:22:2e:4c:9e:
6e:0a:62:31:18:17:2a:33:1b:f1:79:86:68:c8:59:8b:57:4d:
74:99:15:4e:78:1d:7a:00:62:24:82:9a:7c:33:51:fe:ae:fb:
61:33:81:84:1e:9f:df:01:c2:28:d1:f5:93:1f:a0:16:81:9f:
ad:c5:18:f4:f7:09:6a:3f:aa:e1:77:af:61:84:d6:88:ff:51:
b7:7d:13:07:57:e0:ee:a2:30:c1:64:ed:bf:80:43:e5:46:08:
bf:7b:27:05:3c:fd:ce:b0:f6:00:f0:58:7c:38:52:cd:c1:63:
99:d7:f0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:30:46 2024 by rpki-client on console-ams.rpki-client.org