Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/x8Z4gjR9tXKTNc5MgeaPXr48V0k.roa
File: x8Z4gjR9tXKTNc5MgeaPXr48V0k.roa (raw, json)
Hash identifier: VObmZ695iL3PXfUBAO0s6yrzx1AFSI3iJ81GaYlQEkA=
Subject key identifier: C7:C6:78:82:34:7D:B5:72:93:35:CE:4C:81:E6:8F:5E:BE:3C:57:49
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 018CC5DC8897D1ADFA8376830306B6FF97A5
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/x8Z4gjR9tXKTNc5MgeaPXr48V0k.roa
Signing time: Mon 01 Jan 2024 16:30:13 +0000
ROA not before: Mon 01 Jan 2024 16:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36113
IP address blocks: 176.111.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 14:51:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:88:97:d1:ad:fa:83:76:83:03:06:b6:ff:97:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 16:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7c67882347db5729335ce4c81e68f5ebe3c5749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2e:da:b3:8e:81:22:3b:81:7c:87:41:4a:c0:
65:6c:56:07:a6:01:83:a0:86:c9:d8:20:3f:24:c7:
79:d2:1d:37:66:70:d5:36:b3:d3:cd:c3:ae:cc:0c:
34:89:df:7b:2b:68:d1:9c:56:9d:54:16:b8:de:57:
f4:40:9f:f9:8b:80:55:76:4c:61:98:11:fc:ec:22:
d8:54:26:8e:ac:4b:84:2b:5e:17:bf:e5:04:07:5f:
63:51:8b:d7:f7:fd:7f:23:8e:03:dc:d2:e9:9e:51:
a3:05:98:32:21:95:72:84:07:66:08:90:2a:86:6f:
6d:f3:bc:06:4c:eb:b8:01:bb:8e:2a:9b:a5:c0:bd:
a7:c5:c2:38:06:d2:d0:20:c8:6f:5c:c0:84:e0:93:
4c:d5:74:d0:55:bc:c0:e5:ba:62:58:c6:19:da:18:
fc:c4:4e:27:e3:17:ef:04:d5:98:9d:f5:47:43:d8:
fd:60:49:ac:e6:39:45:54:f4:90:62:2f:46:36:2b:
09:3a:35:11:ae:8a:d9:fa:34:8f:35:ec:dc:f7:4a:
4b:3e:2c:b1:86:0e:5a:e9:fd:23:25:65:af:01:91:
1e:43:70:f6:d8:14:af:31:14:27:60:c1:90:2a:56:
c2:2b:70:53:33:8b:ba:2d:1a:9d:c7:b6:13:4e:74:
1d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C6:78:82:34:7D:B5:72:93:35:CE:4C:81:E6:8F:5E:BE:3C:57:49
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/x8Z4gjR9tXKTNc5MgeaPXr48V0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.216.0/24
Signature Algorithm: sha256WithRSAEncryption
02:46:97:b0:25:d7:bb:76:2a:2b:aa:0b:1c:9e:66:d6:f2:37:
7f:d1:26:16:71:e2:47:c0:8b:16:fa:a0:d4:e8:ea:ee:fb:03:
d2:45:e2:ff:5e:ae:98:15:54:2e:7e:40:98:69:03:fa:00:58:
dd:2d:c3:61:cb:da:01:45:0e:68:b7:4b:ee:1d:e0:25:90:a7:
da:43:f9:a5:46:13:be:11:75:f0:04:1f:17:f3:14:8c:d9:1e:
06:9b:a8:a4:ae:28:81:84:ea:9d:6e:a8:e5:9b:b2:ef:ed:f9:
2a:ff:d4:9a:21:f4:80:c3:ad:c7:c1:a9:f9:74:f1:5d:64:4a:
9d:00:79:93:ef:fc:77:bf:4a:2c:75:c6:e5:d3:6e:92:6f:16:
62:94:4d:f3:00:1d:62:0e:6d:1e:37:94:c0:c0:03:33:45:93:
06:e6:01:d6:a5:1c:e0:c4:30:b8:d3:4c:09:e6:d3:dd:b8:4a:
cb:da:cf:9e:79:03:4a:bd:47:64:33:1d:71:13:5c:1c:b4:4c:
8c:c0:d1:06:f1:4c:0c:29:97:0b:05:51:9f:c0:1f:1f:67:d2:
48:d7:ea:f0:c3:68:fe:bb:dd:d0:d9:75:ab:2d:cf:b6:84:48:
25:ac:d6:bd:21:b5:b5:75:ef:79:43:26:e5:96:c5:73:e7:d5:
d6:c9:cf:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 18:25:35 2024 by rpki-client on console-ams.rpki-client.org