Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5AwniiVIlGA0Zc2ZbmvzKdPJA9I.roa
File: 5AwniiVIlGA0Zc2ZbmvzKdPJA9I.roa (raw, json)
Hash identifier: QBYmBAcvF5oJkoqbBy3iige8FmQlzxW4Jk/4yC09jGU=
Subject key identifier: E4:0C:27:8A:25:48:94:60:34:65:CD:99:6E:6B:F3:29:D3:C9:03:D2
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0192D98DBAA1B12A7145DD0131F87A2BB90D
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5AwniiVIlGA0Zc2ZbmvzKdPJA9I.roa
Signing time: Tue 29 Oct 2024 18:33:17 +0000
ROA not before: Tue 29 Oct 2024 18:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50214
IP address blocks: 194.226.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft
rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:8d:ba:a1:b1:2a:71:45:dd:01:31:f8:7a:2b:b9:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Oct 29 18:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e40c278a254894603465cd996e6bf329d3c903d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f1:9c:bd:3b:e7:de:f2:d0:d0:7d:1b:6f:d9:
e3:e2:ac:33:a5:e6:0a:c9:23:5e:19:42:1b:83:98:
54:14:b3:63:42:79:54:54:45:3a:48:2b:78:2c:65:
a3:51:9d:17:c4:85:08:2d:4d:0a:2d:b1:b9:f7:ef:
5c:99:e2:25:0a:d0:1c:ec:40:da:38:43:42:c0:2c:
d0:25:8c:b4:f0:27:10:31:0f:11:25:06:a5:c8:63:
79:66:88:1f:c1:33:7b:72:1c:f3:53:ff:e8:c6:0b:
12:c1:6f:ac:49:04:d3:1d:b1:71:88:24:1e:47:63:
92:16:a4:39:ec:0d:ab:d0:d7:9a:74:0a:8f:33:b1:
f9:0e:1d:44:72:7e:30:d5:de:29:9f:27:9c:f4:3c:
9f:63:89:12:99:94:be:a9:b2:84:17:46:f7:ca:f7:
08:2e:16:06:0d:73:43:0b:a8:d7:b2:70:b2:70:90:
52:17:65:14:0e:80:07:1e:45:14:c5:c1:29:d6:08:
ac:f4:50:0d:78:a0:9b:ae:fb:95:2f:ee:7d:55:01:
12:67:bd:a0:7a:0e:97:06:9e:74:03:6f:6f:ac:d4:
19:05:a8:e9:e6:c0:26:0d:3b:d0:66:40:18:f1:34:
68:ac:20:04:cb:ce:e9:e7:31:37:24:da:67:ea:3c:
0a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0C:27:8A:25:48:94:60:34:65:CD:99:6E:6B:F3:29:D3:C9:03:D2
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/5AwniiVIlGA0Zc2ZbmvzKdPJA9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.139.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:03:15:8a:09:4d:08:42:46:12:e5:9a:c8:4e:35:0b:49:66:
e3:57:fc:a9:a7:92:03:72:19:ce:f2:1b:75:8e:4e:0e:70:9e:
60:0b:f3:ab:2b:a9:10:0d:51:12:9b:d9:ea:6b:ed:f6:7d:7a:
1f:69:19:76:f0:b6:7d:9c:cb:6c:ff:ef:44:c8:09:55:1d:85:
8e:98:76:4c:11:51:7b:2a:5b:97:5d:8a:30:d2:df:eb:53:fe:
87:4f:01:05:36:53:98:aa:2c:60:28:12:e0:36:a2:ef:1c:14:
2a:38:ba:1e:3e:6f:76:04:e9:fd:80:ae:34:40:27:52:0a:8c:
86:a1:85:23:e7:c7:42:4c:70:d6:4f:84:49:c1:d2:49:32:e1:
bd:c2:7f:cd:01:43:0c:5b:89:29:f0:a1:36:01:4c:ab:1f:f4:
d2:58:8e:f6:58:8b:85:34:45:bc:95:5b:cf:b7:f6:df:44:89:
ae:17:28:3c:02:54:1c:fe:f4:53:01:a1:63:e7:ae:ec:27:44:
1b:43:04:25:24:dc:f0:33:71:4b:86:ec:3f:58:fe:48:f1:5b:
20:a8:d3:48:51:78:d4:42:bc:9e:0c:74:5b:da:30:9f:41:d2:
1f:8a:d2:7c:5c:91:46:89:2e:06:3b:f2:b8:f3:c2:47:ec:ab:
96:7c:5a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:59:30 2024 by rpki-client on console-fra.rpki-client.org