Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/oyB1EJasSqvQC4mOlqvSPDZLsJI.roa
File: oyB1EJasSqvQC4mOlqvSPDZLsJI.roa (raw, json)
Hash identifier: 4vjis8FQCLJX9UUy8kRd9XFfJN7H8z2s86lSYtk3ZIE=
Subject key identifier: A3:20:75:10:96:AC:4A:AB:D0:0B:89:8E:96:AB:D2:3C:36:4B:B0:92
Certificate issuer: /CN=c7b623bbc54e9846748cd77b2b8b343827e5aeaa
Certificate serial: 0190F9231697CB228C90DE7C036AC88DCB29
Authority key identifier: C7:B6:23:BB:C5:4E:98:46:74:8C:D7:7B:2B:8B:34:38:27:E5:AE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x7Yju8VOmEZ0jNd7K4s0OCflrqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/oyB1EJasSqvQC4mOlqvSPDZLsJI.roa
Signing time: Sun 28 Jul 2024 11:39:04 +0000
ROA not before: Sun 28 Jul 2024 11:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.233.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/x7Yju8VOmEZ0jNd7K4s0OCflrqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/x7Yju8VOmEZ0jNd7K4s0OCflrqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x7Yju8VOmEZ0jNd7K4s0OCflrqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 25 Aug 2024 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:23:16:97:cb:22:8c:90:de:7c:03:6a:c8:8d:cb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7b623bbc54e9846748cd77b2b8b343827e5aeaa
Validity
Not Before: Jul 28 11:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a320751096ac4aabd00b898e96abd23c364bb092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:44:78:c8:47:10:98:cd:6c:74:a6:b1:ac:da:
cb:69:93:a3:99:c7:36:7e:c5:ab:8d:81:a6:cd:5b:
c8:ab:9d:ea:6e:e3:b3:7c:a6:4d:c9:3c:db:a5:14:
b8:fd:96:84:58:d9:c6:30:8c:05:c4:f7:cb:3d:46:
7e:39:31:0b:6f:09:78:92:b2:12:3f:f7:28:fa:08:
a4:a3:44:4e:56:28:df:4c:35:97:a0:c9:e8:79:ee:
c4:81:c3:77:b4:ea:56:c8:39:fa:71:e2:fd:9f:21:
9e:ce:29:1b:b8:e4:b4:f5:00:58:65:c7:50:48:40:
4e:55:3f:42:8f:71:c5:cb:ec:2c:b7:69:fd:d3:66:
81:32:2b:58:c2:f9:c1:ed:f2:a6:3e:1e:92:ac:62:
96:17:fa:ae:7b:75:97:0b:98:29:08:19:08:13:82:
8f:6b:95:3f:e4:b2:84:8a:b2:09:71:05:f8:14:bf:
64:20:6f:d5:56:5d:b3:36:fe:ec:ed:01:fb:b5:cc:
d2:a5:7a:2e:57:63:7c:d7:e4:4b:14:4b:0a:15:2f:
d1:76:92:51:04:1f:ac:31:19:cf:90:70:f4:0c:08:
c1:03:1c:58:25:8e:7d:67:ca:1d:35:9e:be:54:29:
4b:af:08:1c:e3:b8:19:19:2b:10:41:da:64:b0:85:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:20:75:10:96:AC:4A:AB:D0:0B:89:8E:96:AB:D2:3C:36:4B:B0:92
X509v3 Authority Key Identifier:
keyid:C7:B6:23:BB:C5:4E:98:46:74:8C:D7:7B:2B:8B:34:38:27:E5:AE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x7Yju8VOmEZ0jNd7K4s0OCflrqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/oyB1EJasSqvQC4mOlqvSPDZLsJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/ed879b-e3c4-4b7a-bd0c-34e4e0679333/1/x7Yju8VOmEZ0jNd7K4s0OCflrqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.165.0/24
Signature Algorithm: sha256WithRSAEncryption
23:cc:40:09:28:3f:36:fc:a6:75:3c:27:ec:2c:1d:cf:20:e6:
14:14:d4:43:b4:66:33:d5:b1:3b:eb:8c:27:65:52:e9:31:e2:
87:8e:35:54:aa:56:bc:79:f0:f9:1a:4e:18:ff:5e:fd:bb:33:
f3:d9:f7:64:a7:6e:b3:2d:7c:19:43:18:79:87:41:e6:ed:8f:
ae:49:0a:4a:48:f0:21:e0:15:34:86:37:1a:b2:c7:ac:02:0e:
01:92:ed:28:07:d0:bd:f8:b6:d5:6e:da:46:85:d3:a6:d2:1a:
7f:4f:41:5c:f0:57:6b:2c:79:0e:19:3f:32:9e:4a:66:cc:1e:
29:31:6e:9b:27:eb:22:48:25:41:dc:4c:73:78:6a:05:00:05:
c0:5a:87:9e:79:58:90:c0:1d:6b:ff:88:29:4d:86:4d:5d:a6:
b9:be:2e:e2:a6:a0:2a:67:9d:87:87:21:d5:4b:85:b1:18:07:
61:cc:82:02:83:56:9f:d4:c1:fb:1a:de:03:29:6a:d0:68:24:
2c:5a:14:c0:31:4e:09:b3:da:52:19:30:e5:a2:d6:79:cc:65:
c5:b2:61:7e:7e:0f:b2:13:c4:b3:7b:b4:77:c6:a3:ed:99:9a:
2c:3a:e8:25:ac:c9:11:be:ee:9d:b0:e7:ae:f9:b6:f6:38:75:
ff:3d:c8:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 07:44:57 2024 by rpki-client on console-fra.rpki-client.org