Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/fpBoVZgywcKo0DeKtMRNVIHRZoE.roa
File: fpBoVZgywcKo0DeKtMRNVIHRZoE.roa (raw, json)
Hash identifier: kI4d3OHh4jdqFWhtpRMa26H9I01txvaGG9uOKQqSpQo=
Subject key identifier: 7E:90:68:55:98:32:C1:C2:A8:D0:37:8A:B4:C4:4D:54:81:D1:66:81
Certificate issuer: /CN=0d980d8ca464ae44330c02d6097d1b3e3467e085
Certificate serial: 018CC8703521DF168F42FE5EC8DF8EEF188C
Authority key identifier: 0D:98:0D:8C:A4:64:AE:44:33:0C:02:D6:09:7D:1B:3E:34:67:E0:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZgNjKRkrkQzDALWCX0bPjRn4IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/fpBoVZgywcKo0DeKtMRNVIHRZoE.roa
Signing time: Tue 02 Jan 2024 04:30:45 +0000
ROA not before: Tue 02 Jan 2024 04:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196880
IP address blocks: 193.104.223.0/24 maxlen: 24
91.226.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/DZgNjKRkrkQzDALWCX0bPjRn4IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/DZgNjKRkrkQzDALWCX0bPjRn4IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZgNjKRkrkQzDALWCX0bPjRn4IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 10:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:35:21:df:16:8f:42:fe:5e:c8:df:8e:ef:18:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d980d8ca464ae44330c02d6097d1b3e3467e085
Validity
Not Before: Jan 2 04:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e9068559832c1c2a8d0378ab4c44d5481d16681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2a:31:c6:28:34:e5:ae:e8:bf:57:70:ab:61:
01:b9:bf:08:0d:b0:1c:eb:08:7d:32:dd:b9:4e:dd:
aa:80:58:43:eb:65:30:22:56:16:33:37:a1:ab:ca:
8b:21:8b:ad:b7:d4:20:51:57:a1:12:36:66:b7:b0:
bf:11:17:f8:82:5d:fc:84:8e:23:ef:e7:83:7b:6d:
b0:43:45:b4:17:8e:4c:1b:2f:d9:c9:58:a2:2b:7c:
97:b4:a2:41:63:2d:92:ab:26:de:f1:29:af:4b:90:
d3:a5:d8:1c:ae:46:0d:94:ed:14:bb:36:2f:95:07:
a3:90:ab:1b:c3:3f:a6:5f:d4:8d:df:ae:56:9f:c5:
99:98:b4:64:1e:b4:de:57:45:30:9c:ac:d1:e0:9e:
a6:68:06:af:b6:cc:73:84:2a:29:a9:28:6d:3e:5a:
d1:db:75:53:cf:a1:5d:2e:ba:85:3f:c6:5b:c7:be:
0f:fc:5d:ed:f8:4d:74:1e:58:c4:95:b0:04:0d:33:
87:f6:eb:ff:48:85:70:ef:2a:c3:e6:4d:6e:26:88:
4f:2d:54:3d:33:50:57:73:ca:eb:89:30:14:ff:8f:
d6:0d:a1:77:60:ee:80:90:a9:bb:04:8c:2c:5d:ab:
f7:ba:67:22:b0:84:41:37:08:5a:36:b7:f4:fd:a8:
4d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:90:68:55:98:32:C1:C2:A8:D0:37:8A:B4:C4:4D:54:81:D1:66:81
X509v3 Authority Key Identifier:
keyid:0D:98:0D:8C:A4:64:AE:44:33:0C:02:D6:09:7D:1B:3E:34:67:E0:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZgNjKRkrkQzDALWCX0bPjRn4IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/fpBoVZgywcKo0DeKtMRNVIHRZoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/63569e-f458-4467-a415-f6ff281fbc32/1/DZgNjKRkrkQzDALWCX0bPjRn4IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.147.0/24
193.104.223.0/24
Signature Algorithm: sha256WithRSAEncryption
68:2a:d4:83:f6:a5:3b:fe:48:1e:28:0d:44:18:d2:f5:10:2e:
ba:4d:96:78:d5:b5:b7:f2:57:80:70:fd:5c:90:a6:63:e5:87:
30:ab:81:53:01:46:b3:5b:5e:c6:ba:80:7c:f1:44:94:0b:15:
c3:bb:dc:4a:49:e8:a0:90:d7:ac:61:43:cf:5a:f9:de:45:69:
18:a0:28:3d:89:5d:97:cb:a8:95:90:cd:a9:cc:ae:15:6d:7f:
b4:00:d7:6d:a7:5b:3c:b2:27:b9:49:02:8a:54:05:05:09:82:
a0:e9:2e:01:83:fd:6d:10:d9:f4:a4:1f:49:96:51:a3:77:1b:
48:0d:5d:8e:6d:11:1d:e0:c8:f5:96:39:f2:7c:8d:94:a2:4d:
cd:ff:9e:e8:16:50:84:86:c0:48:d2:36:8c:09:5a:2d:15:8c:
ac:dc:ae:81:a5:7d:3e:f8:ec:d1:22:2d:92:d0:84:c6:70:b6:
76:6e:79:f3:40:65:d7:96:2a:4e:a7:e8:e0:d3:9f:63:5a:73:
46:b4:e9:7c:5b:11:73:e4:7a:7a:ab:84:a5:bd:1a:82:30:6b:
4c:75:a7:e0:56:0b:19:80:b5:77:f1:77:96:e0:ab:d0:fb:d0:
74:f1:81:1e:d6:bf:6f:44:cb:c7:04:1a:15:13:82:e5:d3:0f:
09:1d:a7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 16:41:53 2024 by rpki-client on console-ams.rpki-client.org