Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/jQzxe7Ts4ylBdfFvw5IBSk_bwzk.roa
File: jQzxe7Ts4ylBdfFvw5IBSk_bwzk.roa (raw, json)
Hash identifier: dHksXrebAE/J9ux5Quqq+PUcoimVLvtxt+dvl3fjbn8=
Subject key identifier: 8D:0C:F1:7B:B4:EC:E3:29:41:75:F1:6F:C3:92:01:4A:4F:DB:C3:39
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 018E324D1E6BEB569A461FFD00B4E7FE6AC6
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/jQzxe7Ts4ylBdfFvw5IBSk_bwzk.roa
Signing time: Tue 12 Mar 2024 10:54:58 +0000
ROA not before: Tue 12 Mar 2024 10:54:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 185.167.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:4d:1e:6b:eb:56:9a:46:1f:fd:00:b4:e7:fe:6a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Mar 12 10:54:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d0cf17bb4ece3294175f16fc392014a4fdbc339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c2:ad:44:db:fe:4c:67:93:ea:eb:a8:fe:b0:
15:e8:5e:d8:19:be:54:53:89:f5:5e:9d:85:00:41:
e9:3f:0f:15:32:78:45:97:0e:02:a1:d1:90:79:70:
82:a4:26:4b:0b:cf:b7:f0:e4:65:c2:0a:b4:5a:62:
7d:9e:22:56:06:b0:0e:d7:b5:64:dc:cd:03:65:93:
ea:cd:30:31:35:25:48:d0:51:50:1d:84:0e:c0:3a:
e7:78:9b:52:68:62:50:51:eb:d1:83:89:11:66:41:
04:30:6a:80:03:1c:ef:5b:bb:14:c9:af:b9:18:36:
1b:83:03:47:a6:f5:04:a2:1f:d3:e7:95:f0:8a:f6:
0f:2e:08:9f:ea:d9:4e:91:2d:a7:c9:a1:53:04:a8:
a8:57:73:0c:62:bc:13:e2:d5:7d:7d:84:fa:39:bd:
44:b9:37:80:72:e0:8f:ad:d8:a0:31:5d:d4:1f:13:
15:92:31:d2:fb:c3:7c:ea:30:db:f8:e9:0c:de:18:
d9:fd:14:17:a5:a2:d8:b8:cc:dc:ca:89:b6:4e:d8:
b5:60:50:79:21:71:60:26:a8:6e:ec:6e:48:34:5d:
01:47:7a:1b:9b:5c:4a:41:6f:36:fd:2d:7c:f6:3b:
c3:bd:af:2c:2b:61:ed:9b:2c:8f:5c:77:1c:42:16:
de:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:0C:F1:7B:B4:EC:E3:29:41:75:F1:6F:C3:92:01:4A:4F:DB:C3:39
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/jQzxe7Ts4ylBdfFvw5IBSk_bwzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.233.0/24
Signature Algorithm: sha256WithRSAEncryption
02:8e:d2:ec:f1:4b:c6:bc:f9:6e:c3:77:ad:e9:7a:e6:5c:6b:
cb:f3:e3:5f:fc:57:ad:18:a2:6a:13:d9:6a:71:1e:a6:8d:67:
13:26:49:3e:15:4d:c1:25:01:61:31:c2:71:bd:db:af:c2:20:
7d:8c:cf:2b:ce:4d:3e:ac:e0:7f:b7:ab:b7:54:7f:2b:3d:c7:
1b:37:59:78:c2:a9:65:19:de:64:b8:9c:4e:56:03:22:4e:e7:
0c:4e:75:8e:3b:9c:0b:89:08:aa:e1:b1:ae:09:47:d1:6a:24:
4f:66:d1:2a:a9:5f:cf:2c:04:fb:2e:5e:9d:30:62:7c:7c:08:
a8:44:dc:91:f7:94:2f:ed:ea:0b:4a:1e:73:a9:81:3b:44:1a:
76:fa:99:38:6b:bd:5f:16:5b:3e:41:43:1c:b5:ea:d5:4a:41:
e9:06:36:c3:c2:55:b1:bf:6d:44:eb:6c:ce:84:cc:6b:01:19:
f7:5d:fa:01:ed:05:94:26:ac:63:07:e2:ea:35:b7:2b:70:18:
dc:0f:b8:e1:14:23:68:fa:64:d3:ff:0c:f9:37:6f:11:90:21:
08:97:20:21:d3:25:69:80:db:f6:00:33:6f:f1:b6:38:4e:b2:
43:ea:f9:41:a7:2a:7e:aa:ea:2f:65:8d:f8:f3:ae:f6:0f:af:
44:ff:38:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:07:44 2024 by rpki-client on console-fra.rpki-client.org