Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/fz0sJARZZ_TYinSLBp8Y46GRSAE.roa
File: fz0sJARZZ_TYinSLBp8Y46GRSAE.roa (raw, json)
Hash identifier: k5Klk32fNc1hp3soFN9xokf0fk3JpGUEVYNQtXZtdqw=
Subject key identifier: 7F:3D:2C:24:04:59:67:F4:D8:8A:74:8B:06:9F:18:E3:A1:91:48:01
Certificate issuer: /CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Certificate serial: 01942747DDB34A96F4E343B7885A02AAB8F0
Authority key identifier: E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/fz0sJARZZ_TYinSLBp8Y46GRSAE.roa
Signing time: Thu 02 Jan 2025 13:50:08 +0000
ROA not before: Thu 02 Jan 2025 13:50:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51753
IP address blocks: 91.220.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 Jan 2025 15:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:dd:b3:4a:96:f4:e3:43:b7:88:5a:02:aa:b8:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Validity
Not Before: Jan 2 13:50:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7f3d2c24045967f4d88a748b069f18e3a1914801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f7:32:f7:af:1f:2d:2d:69:47:db:10:66:7f:
f8:25:0d:ce:1e:13:c8:ad:66:67:d8:00:fc:9f:28:
63:46:66:68:de:a1:b5:ca:9f:76:ec:4e:7a:49:2a:
fa:6e:e6:97:3f:83:af:04:2a:41:75:c6:87:5f:80:
45:c1:b6:1a:3c:3f:d2:e2:c5:14:6a:70:68:b3:a5:
3c:45:8a:0e:d7:5d:0c:af:d0:84:fa:49:9f:17:f3:
42:bc:f8:21:e9:54:af:5a:42:2b:19:d0:37:05:06:
d7:2a:b6:33:f1:ec:3c:98:7f:17:e3:5d:eb:a6:2c:
7b:9e:b1:e3:27:b8:a3:63:88:be:48:91:2a:24:85:
20:d8:97:c5:74:18:09:7b:ae:9b:2e:38:06:ac:44:
51:fb:79:55:9b:e3:a5:b8:5c:58:c4:bf:03:cb:7b:
c5:5d:54:c3:ee:d5:4c:01:9c:0b:36:ca:d4:f4:c9:
23:ef:4a:7c:0a:d7:cc:04:6f:64:ea:d2:da:22:9d:
21:40:da:e0:5d:32:14:5a:94:d1:e2:dc:88:c3:ee:
19:8a:b8:d2:4f:16:90:8a:9f:1e:8a:04:44:5a:a2:
f8:5e:32:59:10:76:ab:eb:a5:a2:cb:59:62:30:84:
88:0b:88:7a:60:db:68:05:b2:67:e4:ce:aa:be:55:
c0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3D:2C:24:04:59:67:F4:D8:8A:74:8B:06:9F:18:E3:A1:91:48:01
X509v3 Authority Key Identifier:
keyid:E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/fz0sJARZZ_TYinSLBp8Y46GRSAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.66.0/24
Signature Algorithm: sha256WithRSAEncryption
49:92:e7:23:5d:1d:cd:b8:fb:f7:39:36:fc:14:d4:bb:1e:5b:
5c:90:61:93:c6:fa:ae:bc:de:2d:13:ff:de:0b:03:88:71:a5:
e1:8e:16:f5:52:32:37:68:30:49:95:dc:1e:72:b2:bb:ec:12:
6e:57:ab:4b:ff:04:f1:59:28:57:57:a4:a6:58:e3:bf:96:b5:
fe:46:27:3a:61:91:21:4a:35:e6:51:b7:7d:37:5c:e0:b7:37:
5d:04:a5:a7:81:fb:1c:34:9d:1d:3c:b2:10:bd:3c:2f:fd:13:
6f:b6:fc:7b:ee:1d:5a:59:df:a5:9f:59:89:ef:c5:21:5c:93:
1b:e4:9a:bf:bb:0f:90:8c:ec:81:16:4e:69:aa:c4:2e:d5:5d:
8b:17:88:e7:25:74:59:94:e8:4c:cd:c8:47:da:18:b3:3b:35:
8a:fc:49:38:16:51:fb:de:70:28:ce:33:1b:61:f0:47:1b:c2:
3a:70:b3:b2:14:bc:f6:52:6e:e4:db:e3:30:f3:23:51:ac:3c:
62:fe:20:22:d8:86:62:4e:ab:b5:58:5c:62:8c:53:4d:cb:b2:
12:61:f7:37:dd:9f:17:71:0e:3b:3d:99:d8:f2:db:d3:d1:ce:
49:cf:f8:74:f6:70:13:a8:6b:1b:12:ff:c8:c2:49:8a:a7:ac:
dc:80:95:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 15 00:33:50 2025 by rpki-client on console-ams.rpki-client.org