Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/61fcyshrl4oyij9sH9loNAxgHAg.roa
File: 61fcyshrl4oyij9sH9loNAxgHAg.roa (raw, json)
Hash identifier: rFui1xiB+PVg7l4Dg77d7BxpjgIo3PdaV7cS3UylfUo=
Subject key identifier: EB:57:DC:CA:C8:6B:97:8A:32:8A:3F:6C:1F:D9:68:34:0C:60:1C:08
Certificate issuer: /CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Certificate serial: 018CC8022B9BC71C977C9511A2FA56209736
Authority key identifier: 57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/61fcyshrl4oyij9sH9loNAxgHAg.roa
Signing time: Tue 02 Jan 2024 02:30:34 +0000
ROA not before: Tue 02 Jan 2024 02:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198422
IP address blocks: 194.147.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.mft
rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:2b:9b:c7:1c:97:7c:95:11:a2:fa:56:20:97:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Validity
Not Before: Jan 2 02:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb57dccac86b978a328a3f6c1fd968340c601c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c2:d5:1c:17:eb:76:68:de:ae:8a:16:0c:44:
b3:83:af:b1:e2:33:1c:af:e7:84:a6:2b:cc:8a:5b:
70:13:12:4d:15:c0:96:55:a4:22:9b:c1:ce:24:bf:
b8:4f:a7:54:e2:94:51:7d:82:06:63:3c:c8:f9:a6:
ae:42:e1:cf:c0:0c:78:70:01:31:f7:59:21:88:db:
dd:d5:ce:aa:e7:4f:22:2c:22:2f:7b:25:40:71:03:
2e:6c:4c:54:cc:d3:1c:e1:f6:d0:21:e2:8d:63:6e:
c8:7a:0a:3c:9b:34:75:07:41:2a:90:92:e4:e1:6e:
f9:d2:f3:75:c6:6b:e6:47:ec:da:c2:dc:b8:5b:0c:
2d:e0:25:d3:4c:c5:9f:49:2b:18:48:24:5f:bc:11:
97:32:db:44:46:40:2d:cb:55:22:f4:e5:12:2b:59:
d4:75:21:20:26:b5:20:74:09:d7:17:57:d2:28:95:
14:5e:e6:02:39:1f:25:97:28:d4:04:75:26:95:51:
81:a9:98:67:28:47:73:a5:14:72:9b:3c:28:e8:23:
3d:c1:bb:f6:26:f7:7f:f8:aa:e1:70:36:98:25:79:
28:70:e3:14:2f:02:a3:29:42:35:39:7e:40:94:79:
cb:fc:d4:5f:c1:bc:38:93:c6:43:53:b8:71:86:7d:
64:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:57:DC:CA:C8:6B:97:8A:32:8A:3F:6C:1F:D9:68:34:0C:60:1C:08
X509v3 Authority Key Identifier:
keyid:57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/61fcyshrl4oyij9sH9loNAxgHAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.75.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d9:41:c0:54:5f:f9:b5:aa:cb:aa:5c:08:86:f8:b6:50:15:
f8:9c:42:e1:5f:66:29:11:0e:33:b9:1c:ee:4e:94:05:da:23:
d7:1e:9e:5f:1e:0b:5e:46:68:cd:47:0a:b2:8a:68:7c:94:a5:
30:58:3f:34:d7:6c:41:07:17:ea:6c:99:a5:54:48:b2:d2:38:
1c:96:87:4f:97:cf:1a:24:17:d6:e7:2d:da:5f:ae:98:86:32:
08:01:44:08:78:61:61:b6:e9:63:80:3b:c3:9d:71:ca:9c:17:
9d:1f:76:9c:3c:c5:ac:e2:fc:fa:42:af:ec:00:ce:1c:61:fe:
ca:98:39:d4:98:04:ec:31:5d:4d:0b:51:ac:6f:a4:1d:d1:6a:
51:21:de:4f:6d:a0:8d:73:ad:56:82:8b:eb:4d:23:77:c1:8f:
9c:8a:d3:6a:dd:4b:1b:4c:26:c4:5d:8b:d4:76:2a:af:3e:f1:
15:7c:ca:72:51:7f:ea:73:b3:2c:1b:62:4c:e5:ae:d6:e6:fa:
28:06:bb:0d:81:4e:51:16:79:41:29:6f:8d:8c:4f:3d:8f:e9:
d2:31:36:13:f4:be:d1:fc:f1:56:49:71:3b:f1:7c:4c:36:32:
4f:24:f8:36:cc:96:ee:29:5e:32:b9:d3:67:80:05:c9:ae:5b:
48:c1:f6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:26:22 2024 by rpki-client on console-fra.rpki-client.org