Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/Oi74nVoeTFOlMPiB_SLOj-QlGlc.roa
File: Oi74nVoeTFOlMPiB_SLOj-QlGlc.roa (raw, json)
Hash identifier: BKeUqSb1QfZsk1AGqgdYMIXNTk3tZZXuGQTvQ+/fdRc=
Subject key identifier: 3A:2E:F8:9D:5A:1E:4C:53:A5:30:F8:81:FD:22:CE:8F:E4:25:1A:57
Certificate issuer: /CN=7af8a601e274d53ecbf18115164df3de4b291ff5
Certificate serial: 018CC26CF7515274333917F6407EF60B75BB
Authority key identifier: 7A:F8:A6:01:E2:74:D5:3E:CB:F1:81:15:16:4D:F3:DE:4B:29:1F:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evimAeJ01T7L8YEVFk3z3kspH_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/Oi74nVoeTFOlMPiB_SLOj-QlGlc.roa
Signing time: Mon 01 Jan 2024 00:29:30 +0000
ROA not before: Mon 01 Jan 2024 00:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 195.200.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/evimAeJ01T7L8YEVFk3z3kspH_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/evimAeJ01T7L8YEVFk3z3kspH_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/evimAeJ01T7L8YEVFk3z3kspH_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f7:51:52:74:33:39:17:f6:40:7e:f6:0b:75:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af8a601e274d53ecbf18115164df3de4b291ff5
Validity
Not Before: Jan 1 00:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a2ef89d5a1e4c53a530f881fd22ce8fe4251a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:92:cc:20:c6:da:ba:1a:54:a1:cc:e9:e6:09:
28:ca:38:7e:98:22:f9:94:2b:ce:3c:b5:69:03:f7:
2e:5f:c3:5a:5c:49:da:1d:2b:88:6f:a9:8a:02:00:
1f:4c:6d:3b:e5:8d:b5:a5:54:0d:50:d4:51:70:1e:
cc:23:17:4d:22:57:ee:52:a7:d3:18:f7:09:70:79:
a8:9d:c1:9f:7a:6c:9d:02:4c:0c:43:88:51:47:55:
ac:b3:8e:86:69:06:36:3e:b1:fc:d4:e6:2f:1c:59:
08:42:ab:bc:f3:6d:c0:41:df:f7:6c:52:7e:cf:99:
3c:dc:60:cf:1c:7f:fb:cc:99:1c:10:52:87:70:c4:
0e:20:bd:18:58:dd:75:32:8a:03:e4:bc:82:c2:c6:
69:ad:ba:a9:a4:e1:8d:51:e6:d0:dc:da:46:56:1d:
95:a1:c5:cf:19:11:de:5c:53:75:53:30:a6:f4:c4:
8e:1e:cb:fc:96:94:cf:60:61:dd:25:5f:0d:8d:9f:
8b:f4:8e:a0:aa:8e:f7:ab:a9:5c:ba:49:81:92:96:
ff:7c:77:b9:fa:9b:87:08:3a:21:95:63:69:51:2a:
1c:aa:51:33:30:1a:af:29:77:ab:69:17:3d:3b:29:
bb:7f:6c:4b:01:fd:6f:0a:f8:94:af:d4:4e:94:be:
df:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2E:F8:9D:5A:1E:4C:53:A5:30:F8:81:FD:22:CE:8F:E4:25:1A:57
X509v3 Authority Key Identifier:
keyid:7A:F8:A6:01:E2:74:D5:3E:CB:F1:81:15:16:4D:F3:DE:4B:29:1F:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evimAeJ01T7L8YEVFk3z3kspH_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/Oi74nVoeTFOlMPiB_SLOj-QlGlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5eb97d-3a91-404e-8647-98116832534f/1/evimAeJ01T7L8YEVFk3z3kspH_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.192.0/24
Signature Algorithm: sha256WithRSAEncryption
64:27:ad:01:c9:33:78:2d:45:5c:25:96:bd:08:f9:9f:a0:e8:
c2:d8:7a:ac:5b:75:25:b8:04:6a:98:ba:40:de:3b:78:2e:70:
ca:fb:65:26:f5:31:3f:d2:a7:f0:e0:e7:ad:34:68:b1:6f:1d:
af:40:80:d1:e8:92:4c:81:0d:d1:3b:82:bf:75:6f:13:f1:d9:
bd:ca:32:36:d8:ba:fc:76:5b:c2:2f:a9:32:a9:4c:55:50:71:
2c:e1:04:33:96:d6:f6:a8:a9:4b:26:a8:f1:aa:64:6d:3f:b0:
a0:46:ec:0b:97:6b:22:3c:c7:07:6e:c3:3a:43:2c:df:16:a1:
df:6d:39:b3:68:b0:6a:eb:64:b4:f4:22:38:58:35:ef:8b:01:
87:ff:e7:c0:26:22:39:e1:c5:93:33:7f:82:44:e0:ad:a4:fd:
84:28:0f:fc:77:4e:37:6e:17:9f:d1:56:21:ec:57:34:cc:ca:
47:23:ad:a6:d2:d9:d8:a0:99:8a:09:64:2d:0d:7f:aa:99:df:
9d:1c:87:95:b2:ad:97:09:83:57:4c:a7:1e:8f:91:1e:48:27:
2d:de:3d:77:af:2e:c4:f2:5f:82:88:98:11:33:a4:9f:16:9a:
13:69:80:02:5e:f6:69:7b:2e:a5:f9:ff:93:3d:ac:ab:04:08:
ba:f7:d8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:58:15 2024 by rpki-client on console-fra.rpki-client.org