Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/1SPBEsoqOukJG5dNeIG114xl2WU.roa
File: 1SPBEsoqOukJG5dNeIG114xl2WU.roa (raw, json)
Hash identifier: T9nPuFKQ0C916hnxsxoUGBYUtf71eXWQ8c5VX1yJ/Gs=
Subject key identifier: D5:23:C1:12:CA:2A:3A:E9:09:1B:97:4D:78:81:B5:D7:8C:65:D9:65
Certificate issuer: /CN=1f0614e195c1656a28e8b19b22784e8b55bb4533
Certificate serial: 018CC56E46AB59EA1FAA5542F10C190CE7CE
Authority key identifier: 1F:06:14:E1:95:C1:65:6A:28:E8:B1:9B:22:78:4E:8B:55:BB:45:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwYU4ZXBZWoo6LGbInhOi1W7RTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/1SPBEsoqOukJG5dNeIG114xl2WU.roa
Signing time: Mon 01 Jan 2024 14:29:47 +0000
ROA not before: Mon 01 Jan 2024 14:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59945
IP address blocks: 185.80.57.0/24 maxlen: 24
185.80.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/HwYU4ZXBZWoo6LGbInhOi1W7RTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/HwYU4ZXBZWoo6LGbInhOi1W7RTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwYU4ZXBZWoo6LGbInhOi1W7RTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:46:ab:59:ea:1f:aa:55:42:f1:0c:19:0c:e7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f0614e195c1656a28e8b19b22784e8b55bb4533
Validity
Not Before: Jan 1 14:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d523c112ca2a3ae9091b974d7881b5d78c65d965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:f8:ee:9d:21:ee:cc:b6:3c:3f:d6:b2:6a:
95:d5:99:f9:7a:78:45:0c:3d:dd:90:ea:e5:52:c4:
d4:ec:cc:92:3a:b9:c8:6e:1f:61:72:19:fd:31:fa:
29:4b:a0:40:5f:8a:52:97:3c:ab:0e:de:63:c8:c1:
47:9d:d1:62:5f:9c:ff:de:71:be:e8:48:ce:ee:98:
4a:e0:54:c6:8e:0a:22:a9:7f:e1:58:19:93:b7:75:
3d:9d:6f:7e:f1:58:3e:09:12:f4:eb:bd:e1:e5:6b:
ae:a9:ac:98:9a:f4:07:d8:f5:37:f8:2e:cc:16:19:
79:7f:25:32:4a:24:4f:18:75:fe:03:3a:d3:01:c7:
80:06:d9:df:b6:28:e3:13:64:bf:6f:69:df:dd:e0:
b5:b5:cd:66:2a:17:c2:1f:0c:f5:45:09:34:f8:d4:
1e:75:01:60:c0:cf:ac:1f:6a:1a:34:e1:6a:b3:59:
8b:6d:93:5a:27:88:69:71:54:cc:bb:7d:a0:cd:61:
98:0f:1d:89:b0:97:a7:bc:0c:6f:57:84:8a:12:3e:
eb:69:9b:ff:5b:b6:9b:5b:a9:8f:6f:ac:55:7f:a4:
d5:0e:60:92:b5:25:23:9b:25:a7:f5:6f:26:23:f0:
3a:05:13:a7:f8:b2:29:4b:8c:c9:33:6f:bc:86:44:
3e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:23:C1:12:CA:2A:3A:E9:09:1B:97:4D:78:81:B5:D7:8C:65:D9:65
X509v3 Authority Key Identifier:
keyid:1F:06:14:E1:95:C1:65:6A:28:E8:B1:9B:22:78:4E:8B:55:BB:45:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwYU4ZXBZWoo6LGbInhOi1W7RTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/1SPBEsoqOukJG5dNeIG114xl2WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/10ebcc-c832-4d33-88b5-bef872daece7/1/HwYU4ZXBZWoo6LGbInhOi1W7RTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.57.0-185.80.58.255
Signature Algorithm: sha256WithRSAEncryption
6c:29:65:47:28:ae:af:91:9f:db:a0:a7:0a:fc:5c:8d:45:50:
ea:33:87:d5:15:27:ca:9f:19:55:7a:ad:87:ef:0e:a7:42:47:
6f:8c:8e:ea:ad:1e:7f:9a:ee:3f:36:fa:26:b3:d4:d6:6e:e0:
73:28:94:25:f6:47:0e:49:3f:4d:44:9b:5f:d3:3d:14:ed:0b:
83:cd:24:06:42:b4:28:21:33:08:31:32:9c:4b:3c:0c:1b:d1:
8e:a6:1f:71:3f:3f:66:ca:5b:ba:cf:15:a3:d2:b4:b8:d5:5b:
d9:ab:44:eb:33:6b:e9:7b:72:d4:27:c9:0d:e9:00:a7:9e:fd:
70:5a:f4:2f:a9:f4:57:45:34:fc:9f:c3:ed:c3:2c:91:77:73:
04:f3:5d:44:11:79:fb:c3:8b:eb:6b:46:6c:7b:c9:71:8b:82:
f0:fb:4f:f6:1c:ee:fe:83:43:5b:cf:20:93:a1:ef:f7:74:00:
04:fc:20:3c:13:94:22:7c:de:ba:6a:46:5b:d0:ec:98:6e:95:
38:6c:7d:a2:38:22:72:9f:85:5f:97:fb:85:a4:99:c6:1b:c0:
dd:97:78:d4:d0:49:ee:65:1b:dd:75:58:6a:bf:ca:67:ba:1c:
d4:d8:e7:cd:00:c3:54:2b:0d:9d:b2:41:6e:0a:41:29:f5:a0:
dd:03:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 14:13:08 2024 by rpki-client on console-ams.rpki-client.org