Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/ojrh4f6v6sSiamJr4ebgUeCvXqc.roa
File: ojrh4f6v6sSiamJr4ebgUeCvXqc.roa (raw, json)
Hash identifier: wSiqF3l8OI4l5lc8bU2uB0yh7TNxuADOesBe4QhQAv4=
Subject key identifier: A2:3A:E1:E1:FE:AF:EA:C4:A2:6A:62:6B:E1:E6:E0:51:E0:AF:5E:A7
Certificate issuer: /CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f
Certificate serial: 018CC64B4F06938376B8C75CDFE2052B4541
Authority key identifier: 8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/ojrh4f6v6sSiamJr4ebgUeCvXqc.roa
Signing time: Mon 01 Jan 2024 18:31:13 +0000
ROA not before: Mon 01 Jan 2024 18:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 46.29.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 01:03:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:4f:06:93:83:76:b8:c7:5c:df:e2:05:2b:45:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f
Validity
Not Before: Jan 1 18:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a23ae1e1feafeac4a26a626be1e6e051e0af5ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:f2:aa:df:69:a8:0b:3d:09:c8:75:0d:80:
68:ec:48:db:89:4c:0a:b9:94:55:aa:8c:d0:c4:55:
50:f4:d7:45:2f:60:bf:95:c3:b2:2b:1a:25:37:63:
83:b5:bf:7b:cb:97:49:fa:e9:6d:b9:72:46:5e:5f:
e2:f0:9c:d9:8c:f4:b6:e3:02:41:39:b8:df:3a:13:
36:8c:dc:46:02:99:60:5f:3b:1b:d3:22:51:2b:bf:
60:f5:2d:43:1f:31:bc:b1:b8:61:9a:e5:27:c3:2a:
6a:ac:74:b5:80:cb:9f:3f:8d:37:12:92:09:45:e2:
74:d7:8c:18:0c:d6:d0:34:b0:8d:48:66:cc:f1:a5:
14:22:84:15:33:3b:f8:e4:08:d6:db:60:c2:04:00:
ea:56:c5:d0:19:8b:8b:6f:34:53:94:a8:08:cb:c7:
85:51:8b:26:ca:4b:e2:8b:4f:41:10:9d:4e:5a:c3:
3a:fc:cf:f0:da:14:bd:1a:ea:0f:80:9b:a6:3a:19:
4a:75:51:99:a0:37:6d:23:24:ed:a4:ef:fc:80:04:
dc:ea:18:97:46:c8:57:7e:e8:f2:ba:28:93:b0:60:
20:a3:03:d8:45:7b:c9:ec:89:2b:49:92:f3:be:79:
2d:2c:b8:cd:77:23:0e:9c:75:f3:3a:d9:bd:a0:d6:
14:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3A:E1:E1:FE:AF:EA:C4:A2:6A:62:6B:E1:E6:E0:51:E0:AF:5E:A7
X509v3 Authority Key Identifier:
keyid:8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/ojrh4f6v6sSiamJr4ebgUeCvXqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.242.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e2:50:b2:80:05:88:8e:cd:e3:c5:b3:e8:55:23:b5:a9:f0:
e1:f4:2e:41:fc:80:16:50:31:c4:f6:0c:69:21:ab:c4:54:7c:
0b:51:fa:b5:2d:8e:53:4a:cc:39:35:94:90:e3:cd:5a:47:74:
6c:1a:4c:df:7d:11:a8:05:29:bb:5f:cb:b9:fe:18:fc:f8:6e:
5a:67:7f:d2:cf:a8:e5:e8:7f:1b:ce:4f:5f:d1:d3:41:fe:da:
6b:2e:5a:89:ef:be:0e:3a:1b:d7:f2:68:f2:b8:c0:ce:e7:55:
3b:e9:42:bb:9c:a8:0c:6a:d1:6b:e1:c2:ea:7c:bc:47:db:09:
58:0c:8f:71:86:32:b0:44:60:c8:38:36:39:a9:1c:05:8e:c5:
02:ca:6f:42:7e:7d:09:5d:3b:5d:30:dd:3e:54:55:15:c2:45:
69:20:9d:d6:43:2f:09:a1:fa:5b:e6:85:4e:59:5a:6d:ac:5a:
b9:3e:b7:34:6e:6d:f6:6f:c4:f2:d1:59:d3:17:f1:45:ac:d9:
b3:f1:b6:d3:46:84:e8:f5:90:cb:2b:07:b2:d3:18:38:af:65:
4d:7c:c9:cb:82:94:bf:4d:12:32:8e:6f:6b:01:00:36:59:26:
d8:de:c6:25:63:37:72:81:9b:a7:22:d3:30:6a:ac:16:e9:23:
61:1d:1f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 05:33:04 2024 by rpki-client on console-fra.rpki-client.org