Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/75RkS9aOXq_q2dEDtMyTIIyqEiw.roa
File: 75RkS9aOXq_q2dEDtMyTIIyqEiw.roa (raw, json)
Hash identifier: JpgBDWrqi7vvIJ0+4y3mHBzWWV8FnaGQj56KwSq7gN0=
Subject key identifier: EF:94:64:4B:D6:8E:5E:AF:EA:D9:D1:03:B4:CC:93:20:8C:AA:12:2C
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 018CC56E8C4440FCA8D7F7012E96907EAA02
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/75RkS9aOXq_q2dEDtMyTIIyqEiw.roa
Signing time: Mon 01 Jan 2024 14:30:05 +0000
ROA not before: Mon 01 Jan 2024 14:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47518
IP address blocks: 83.133.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:8c:44:40:fc:a8:d7:f7:01:2e:96:90:7e:aa:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 14:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef94644bd68e5eafead9d103b4cc93208caa122c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ae:61:25:44:b5:f0:98:15:c3:b2:1c:b9:64:
df:9c:32:e3:ba:87:f1:8e:d1:47:64:dc:0c:96:a3:
26:21:b2:6e:4e:11:f9:da:f1:7d:a9:86:b4:a2:71:
f0:2d:ea:c9:53:37:0c:43:4c:c3:fe:06:aa:ea:85:
84:cc:1e:d9:d3:e9:64:74:0f:35:92:c5:37:8b:0e:
a6:35:9d:b0:a1:da:2f:90:c2:35:d2:53:05:63:b0:
d8:65:01:90:4f:13:9e:0e:66:96:e7:63:33:82:a6:
dc:fd:c0:f6:55:27:72:4a:4d:c6:1c:4d:97:af:90:
0b:ff:9d:98:47:86:fa:88:52:9f:02:7a:ed:3d:8a:
a1:64:33:72:a9:9f:fe:2e:95:37:cc:52:49:8f:1e:
20:04:a2:f4:29:9e:7f:31:e5:d4:6c:9a:c6:aa:41:
ae:91:ac:d8:42:97:11:4b:3b:b6:a1:af:ab:16:d7:
0b:46:66:66:d1:29:85:40:e7:16:3b:b4:15:ff:fc:
75:d2:14:b8:34:15:fe:ee:d7:2e:05:46:89:69:15:
4c:3c:f5:f0:0d:b9:9a:ff:d4:b4:c2:50:c5:52:f2:
9a:6e:47:ca:88:8d:fe:d0:71:74:4b:3c:c8:d2:84:
f2:41:47:73:85:5f:6c:bb:ed:22:66:18:5e:20:f3:
18:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:94:64:4B:D6:8E:5E:AF:EA:D9:D1:03:B4:CC:93:20:8C:AA:12:2C
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/75RkS9aOXq_q2dEDtMyTIIyqEiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.133.69.0/24
Signature Algorithm: sha256WithRSAEncryption
04:3e:a2:11:77:c5:31:d9:80:ca:76:a2:66:da:ec:5e:ee:e9:
90:67:1b:c0:3d:62:58:ab:06:04:4d:0d:13:5b:fb:3e:ec:e7:
c5:fd:f3:24:9a:72:d7:ae:fa:f0:63:59:f9:ae:20:87:02:1b:
64:a8:d3:99:7e:4e:1d:58:c5:04:37:1b:57:72:e4:d9:01:fc:
a6:4f:0e:08:76:4a:ca:7e:c4:ea:12:0a:82:15:c7:f2:24:87:
e4:ab:bc:57:b6:5d:43:28:8f:cc:fd:3d:41:ee:ef:0d:62:09:
cc:f7:5b:cf:0a:77:d9:10:73:4e:52:6f:9c:cb:28:9b:a6:1e:
04:d6:cb:8c:5c:48:91:36:ff:4c:4f:69:fd:6f:9d:36:ab:98:
1b:1a:48:15:11:c9:16:17:4a:b9:28:98:36:0a:4d:c3:e2:b0:
64:65:ee:46:e5:65:50:3f:fc:32:40:02:0d:af:8e:58:73:c5:
34:50:d9:6f:67:5f:94:a8:1b:0a:7c:62:73:4e:0f:c0:39:0e:
66:57:90:f9:bf:bf:74:13:91:b0:a0:df:1c:e8:51:f0:56:db:
57:66:5c:b5:91:b1:1d:bc:af:7d:7e:cf:74:e0:2d:30:15:32:
ad:2c:48:fb:c9:21:bd:96:7f:c5:36:e5:9c:7a:30:0a:4b:12:
25:d3:08:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:04 2024 by rpki-client on console-fra.rpki-client.org