Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/KqldoiwOTO6WWhf5-P5Gg7y6RPo.roa
File: KqldoiwOTO6WWhf5-P5Gg7y6RPo.roa (raw, json)
Hash identifier: 4rMfpbghzUBdaGrnfcdl1bxBTuONKVBbkNbwukV+icc=
Subject key identifier: 2A:A9:5D:A2:2C:0E:4C:EE:96:5A:17:F9:F8:FE:46:83:BC:BA:44:FA
Certificate issuer: /CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Certificate serial: 018CC49381E28CBAE852F5C1E0525D81EDB7
Authority key identifier: C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/KqldoiwOTO6WWhf5-P5Gg7y6RPo.roa
Signing time: Mon 01 Jan 2024 10:30:50 +0000
ROA not before: Mon 01 Jan 2024 10:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206380
IP address blocks: 185.188.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Dec 2024 13:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:81:e2:8c:ba:e8:52:f5:c1:e0:52:5d:81:ed:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Validity
Not Before: Jan 1 10:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2aa95da22c0e4cee965a17f9f8fe4683bcba44fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:db:1f:57:99:6c:16:cb:4a:d6:2d:3c:1b:45:
fd:5b:44:31:63:36:b9:39:26:ea:53:24:d3:d9:7c:
0d:f3:7f:ca:a1:a0:40:0b:da:f7:38:66:c2:82:af:
42:ad:e8:3c:ef:2d:cb:02:ea:66:83:3f:fb:13:04:
98:54:88:fd:23:2c:96:80:19:5a:6a:7a:0d:14:19:
be:5b:8a:87:17:c6:5c:5d:74:e3:7d:22:93:e6:ef:
71:79:ea:6a:81:e8:93:27:2a:28:fb:0a:10:a9:a0:
20:f5:a9:9d:90:c1:ea:32:37:db:bc:0f:75:7f:62:
46:ff:83:9a:3f:96:b9:b2:62:ef:81:21:4e:c4:1f:
3d:8e:5e:b0:22:23:db:06:1b:b2:8c:84:d7:88:d5:
1c:4d:86:82:5f:d4:6c:74:85:83:c6:f5:28:3e:af:
de:8f:c8:e4:09:3f:09:90:9c:f9:c8:3f:2d:cc:34:
45:60:90:10:64:5d:e5:77:19:5e:59:84:7f:0f:cb:
51:be:6a:94:5b:68:1c:0a:6f:d2:8a:f7:9f:93:c9:
9d:8d:0a:bb:3b:bd:91:2d:c7:af:15:12:d4:99:32:
4c:94:23:d3:ca:c7:06:5a:39:58:bf:8e:ec:c8:33:
32:e9:f7:a3:11:fc:3f:5f:fd:93:36:9c:a3:a3:9e:
80:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A9:5D:A2:2C:0E:4C:EE:96:5A:17:F9:F8:FE:46:83:BC:BA:44:FA
X509v3 Authority Key Identifier:
keyid:C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/KqldoiwOTO6WWhf5-P5Gg7y6RPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.27.0/24
Signature Algorithm: sha256WithRSAEncryption
88:d2:90:73:73:0f:bf:3b:37:e9:62:b5:91:92:e7:0a:06:cf:
05:d8:fc:ad:93:7a:18:0e:f1:9d:30:93:85:93:83:1e:bd:6c:
00:56:42:16:7f:13:1d:a4:de:db:f6:df:87:2b:50:09:5c:ab:
a1:d3:ae:de:60:8e:be:73:ae:40:24:77:22:c2:82:4b:3e:ab:
b9:47:ad:05:d4:ed:ba:52:9a:4a:c2:4a:0f:1c:6c:19:54:5f:
a7:0f:e8:96:9c:ba:83:84:9b:a5:94:c8:30:5c:d9:e3:95:33:
cf:e3:3c:23:59:86:a6:a9:16:98:4a:dd:65:16:c1:20:0a:c0:
bd:06:d2:22:64:9f:50:1d:89:d3:63:da:39:d8:aa:aa:42:09:
d3:b9:7b:a5:28:41:fa:96:ab:c6:22:6f:11:57:f7:ec:3a:49:
e2:19:53:2e:f4:5a:fd:9c:e9:8c:d4:e0:4f:b2:ba:6a:40:36:
25:d0:07:1e:23:b4:18:b7:61:10:17:89:96:fc:9f:b9:04:9d:
a4:74:a0:38:0d:bc:48:b1:d8:11:60:b2:00:bb:4e:98:41:c2:
04:cf:ec:7c:a0:dd:11:fb:5c:f2:e4:74:16:84:c1:9f:2b:4b:
e3:ce:26:45:a9:56:01:61:d3:45:8a:d4:ba:0e:a1:ea:a5:39:
62:0f:a7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 3 18:16:27 2024 by rpki-client on console-fra.rpki-client.org