Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/1-ey-2JDrtWuO-aBu0zptrZnqC9Q.roa
File: 1-ey-2JDrtWuO-aBu0zptrZnqC9Q.roa (raw, json)
Hash identifier: kXPJ7c9ElM1DLvKmR6U42s5QEDUIcQRBQX8sOOlXyOo=
Subject key identifier: F9:EC:BE:D8:90:EB:B5:6B:8E:F9:A0:6E:D3:3A:6D:AD:99:EA:0B:D4
Certificate issuer: /CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Certificate serial: 019290F8B8635C732F4EBCE579AF4C831E91
Authority key identifier: 77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/1-ey-2JDrtWuO-aBu0zptrZnqC9Q.roa
Signing time: Tue 15 Oct 2024 16:17:52 +0000
ROA not before: Tue 15 Oct 2024 16:17:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41327
IP address blocks: 5.152.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:90:f8:b8:63:5c:73:2f:4e:bc:e5:79:af:4c:83:1e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Validity
Not Before: Oct 15 16:17:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9ecbed890ebb56b8ef9a06ed33a6dad99ea0bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:59:ce:85:0d:86:d4:40:ab:0f:52:47:0a:d9:
0d:c1:8f:14:fd:6e:24:fb:b4:86:b9:a9:48:79:88:
15:0e:43:3d:8c:89:71:f2:ed:7d:e8:3d:c9:6b:60:
0b:64:ae:5a:59:40:9d:a1:35:f9:e7:0c:7f:13:12:
66:59:8f:0d:bb:5a:cd:78:59:05:c8:5c:25:54:fa:
47:d6:38:56:09:f9:0d:01:df:eb:f4:22:a5:23:5f:
87:9f:07:85:c7:92:9a:05:60:87:f4:eb:99:0b:68:
47:57:d4:f1:ed:79:ea:f8:f0:02:4f:f4:bd:28:f2:
b6:a2:67:8b:76:12:4c:bb:a1:99:a2:8c:51:f0:d2:
66:8f:79:b8:f0:9d:2d:cb:6e:8f:98:de:77:68:5b:
2f:1e:2b:f8:f5:40:85:60:0d:df:48:e8:0e:68:5c:
c1:e5:ce:39:da:8f:5d:38:28:3f:5e:f3:b5:bc:70:
e3:38:da:8c:53:91:ba:eb:18:fa:f1:41:fc:95:cd:
5e:8b:04:cd:52:6c:1d:f6:a8:57:14:cf:fe:bc:a6:
f1:22:af:66:8d:63:60:dd:14:7a:56:03:60:a5:ca:
fc:41:cf:86:6d:45:19:ac:28:30:87:eb:cc:8e:10:
ba:38:c3:d0:11:a6:e6:8e:38:8b:9a:98:02:56:04:
dc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EC:BE:D8:90:EB:B5:6B:8E:F9:A0:6E:D3:3A:6D:AD:99:EA:0B:D4
X509v3 Authority Key Identifier:
keyid:77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/1-ey-2JDrtWuO-aBu0zptrZnqC9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.144.0/24
Signature Algorithm: sha256WithRSAEncryption
87:aa:a7:5e:01:10:f5:d4:1a:d9:48:c6:43:8b:12:6a:15:68:
b8:33:a5:cf:02:a6:00:e4:ff:25:6e:f4:c1:80:9e:4d:91:b7:
09:46:36:a4:fe:da:75:0c:20:9f:a2:19:d9:0a:2a:29:bb:96:
92:52:f2:3d:d8:a8:b5:39:66:d4:ab:84:22:6d:7e:c8:b3:2c:
bb:c5:e1:15:8e:9d:47:0c:5a:30:a1:a9:d8:02:06:3f:bf:79:
5f:26:50:ae:c6:62:d8:f9:95:aa:68:0c:77:5c:fd:e5:51:29:
48:c0:c6:84:b2:3c:96:63:57:4c:b8:8e:25:9e:54:9b:42:7b:
ad:a1:b8:fc:15:9d:ff:01:9b:cb:ab:38:24:7a:35:05:bb:07:
86:32:68:b1:0a:04:0c:06:4d:90:eb:d0:d9:64:5a:e2:70:66:
ea:4f:69:ef:4c:bb:e9:c1:30:04:92:bf:2f:1c:2f:cb:cc:96:
25:7e:91:44:83:9e:f6:d5:06:7e:92:09:dd:33:b9:de:1b:6c:
8d:6f:64:64:7f:da:3c:75:9e:80:15:bc:5d:2d:ff:02:bc:a7:
3a:86:d0:2f:a3:10:17:cc:f9:5d:50:5e:f6:b9:5c:c6:c6:4a:
40:e2:a2:6f:90:fe:3c:aa:8f:b9:f9:70:78:6d:a6:54:8d:01:
18:96:90:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:42:08 2024 by rpki-client on console-fra.rpki-client.org