Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/sZCJ6hEsz_F9E5x2Q5lqBS3UzT4.roa
File: sZCJ6hEsz_F9E5x2Q5lqBS3UzT4.roa (raw, json)
Hash identifier: 5falaFSRsseUOMegicFie6NbjFvkHtfUxmYcUBfyoLc=
Subject key identifier: B1:90:89:EA:11:2C:CF:F1:7D:13:9C:76:43:99:6A:05:2D:D4:CD:3E
Certificate issuer: /CN=82f59386fcde596f7459075edea4d74c19b01ca2
Certificate serial: 018CC94E0B377FAC37F5AB9F3314AC8714DC
Authority key identifier: 82:F5:93:86:FC:DE:59:6F:74:59:07:5E:DE:A4:D7:4C:19:B0:1C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvWThvzeWW90WQde3qTXTBmwHKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/sZCJ6hEsz_F9E5x2Q5lqBS3UzT4.roa
Signing time: Tue 02 Jan 2024 08:33:04 +0000
ROA not before: Tue 02 Jan 2024 08:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203360
IP address blocks: 193.56.83.0/24 maxlen: 24
193.56.82.0/24 maxlen: 24
193.56.81.0/24 maxlen: 24
193.56.80.0/24 maxlen: 24
193.56.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/gvWThvzeWW90WQde3qTXTBmwHKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/gvWThvzeWW90WQde3qTXTBmwHKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/gvWThvzeWW90WQde3qTXTBmwHKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:0b:37:7f:ac:37:f5:ab:9f:33:14:ac:87:14:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f59386fcde596f7459075edea4d74c19b01ca2
Validity
Not Before: Jan 2 08:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b19089ea112ccff17d139c7643996a052dd4cd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:36:14:4e:6b:78:69:7e:07:42:69:50:98:f6:
24:94:7a:4f:c1:94:d2:84:2b:a1:5e:7b:36:1c:de:
4e:b8:75:ec:d8:dd:67:4c:93:eb:f5:95:c7:5f:c1:
34:f3:63:f3:56:cf:d7:be:0a:cb:3b:0d:1c:55:56:
de:83:c7:3c:3d:c9:3c:9b:87:d6:5b:c5:4b:af:b0:
b1:b9:4c:14:1c:0c:6e:25:2f:78:ea:c8:f4:9b:2c:
f2:cf:68:33:f2:86:a8:73:f1:c8:90:b5:8f:08:3d:
d4:80:9b:d1:7f:72:a7:74:2a:dd:79:ab:53:76:c8:
1b:03:c1:bb:b0:b6:53:65:51:d7:56:a9:c4:d7:42:
63:cf:41:e2:4e:39:b9:83:cc:3a:2b:3e:ed:a3:00:
87:4b:f1:37:cf:89:50:dc:e8:95:28:57:f5:05:d1:
a6:00:d3:6c:8e:40:5d:48:7a:cd:a0:89:a4:19:95:
68:87:ac:53:28:48:63:90:cd:00:62:9d:51:24:9f:
e3:c0:53:7f:ad:7b:af:04:92:8d:35:55:89:78:d0:
e4:f5:0d:25:db:52:0f:28:73:da:d6:26:09:df:c2:
8f:8a:fb:a1:45:06:8a:b9:1f:3e:35:f9:8f:e5:bb:
2e:09:54:e2:a9:8a:5a:59:fe:e8:1a:01:6d:bd:f6:
5c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:90:89:EA:11:2C:CF:F1:7D:13:9C:76:43:99:6A:05:2D:D4:CD:3E
X509v3 Authority Key Identifier:
keyid:82:F5:93:86:FC:DE:59:6F:74:59:07:5E:DE:A4:D7:4C:19:B0:1C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvWThvzeWW90WQde3qTXTBmwHKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/sZCJ6hEsz_F9E5x2Q5lqBS3UzT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/gvWThvzeWW90WQde3qTXTBmwHKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.80.0/22
193.56.87.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9f:6c:cf:86:dc:5d:4b:0e:6d:42:53:a7:d8:a3:21:c0:67:
ed:1a:35:03:70:56:60:49:b4:88:d6:0e:f4:52:4a:18:78:c7:
49:c0:ee:9a:22:53:62:5c:3f:1c:39:24:d2:a6:ba:3c:6e:ee:
85:b7:06:cb:cd:5f:9e:49:2c:71:1b:1e:dd:bc:15:54:7e:22:
a6:05:d4:ac:2d:2b:ee:32:ba:34:02:a7:7f:ac:42:db:eb:09:
5f:7b:f5:5e:21:bc:a7:4c:bf:5a:22:bf:70:46:31:96:37:89:
8a:43:63:5f:0f:54:a1:72:52:f1:34:77:45:1c:41:4c:2c:92:
fe:72:59:06:58:1f:97:e1:35:88:1f:0e:cd:8a:de:c4:5c:94:
ce:59:98:58:89:f6:f6:3b:95:12:20:a8:6c:ac:c1:bf:fb:8c:
2d:3c:0d:45:92:43:2a:eb:94:0c:ce:a2:ce:e1:a3:20:f3:89:
35:90:93:d1:d6:aa:0a:8f:2b:e8:0d:99:2b:d3:ee:28:85:b8:
70:90:56:3f:53:71:0e:9e:cd:cb:bc:2e:fb:fb:5a:d1:59:1b:
07:b4:cb:19:d0:61:7f:cc:8f:22:5b:fb:37:69:13:c5:f5:3a:
19:2b:27:d6:a8:15:b5:59:99:92:73:99:54:64:e3:c7:77:97:
29:e6:16:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:11:51 2024 by rpki-client on console-fra.rpki-client.org