Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/vQxO6cgv7YN-tvBCXWQaW3DY6oE.roa
File: vQxO6cgv7YN-tvBCXWQaW3DY6oE.roa (raw, json)
Hash identifier: 9iNsIpzSi5M/ABAjd/DA5I91FogcL0TBYp82mPLt1wQ=
Subject key identifier: BD:0C:4E:E9:C8:2F:ED:83:7E:B6:F0:42:5D:64:1A:5B:70:D8:EA:81
Certificate issuer: /CN=e7c3415bdf1c014ae1c18e7cfd33c56f018feee8
Certificate serial: 018DA2B8E1A2D14C77A854C57091E179E938
Authority key identifier: E7:C3:41:5B:DF:1C:01:4A:E1:C1:8E:7C:FD:33:C5:6F:01:8F:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58NBW98cAUrhwY58_TPFbwGP7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/vQxO6cgv7YN-tvBCXWQaW3DY6oE.roa
Signing time: Tue 13 Feb 2024 13:47:21 +0000
ROA not before: Tue 13 Feb 2024 13:47:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39686
IP address blocks: 193.34.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/58NBW98cAUrhwY58_TPFbwGP7ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/58NBW98cAUrhwY58_TPFbwGP7ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/58NBW98cAUrhwY58_TPFbwGP7ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:b8:e1:a2:d1:4c:77:a8:54:c5:70:91:e1:79:e9:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c3415bdf1c014ae1c18e7cfd33c56f018feee8
Validity
Not Before: Feb 13 13:47:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd0c4ee9c82fed837eb6f0425d641a5b70d8ea81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5d:35:56:a4:ee:53:38:e1:09:4d:ef:42:a3:
e4:33:cf:e9:a1:fa:2d:77:77:cb:d1:6d:3c:e3:e9:
cf:1d:b4:3c:31:c4:3a:16:34:6b:1f:be:57:32:51:
1a:f2:0b:20:32:0d:26:f8:01:e5:b5:a5:55:9f:1b:
28:ac:80:5a:71:4a:3a:71:b3:02:9b:8e:ce:de:30:
b1:e0:53:0b:a8:b8:72:5d:9c:d8:c9:79:d3:c1:b5:
01:0a:6d:bb:a9:ee:a2:cd:05:48:b5:a2:83:49:f8:
d6:17:37:b5:db:4f:9a:da:23:67:6c:cc:59:e4:1b:
3c:e8:0c:54:bb:5f:df:8c:c9:ec:88:9e:52:40:b2:
f6:1e:92:63:97:e7:20:5a:35:21:54:72:a0:1d:f0:
6b:9e:38:51:31:f3:e6:64:6b:1c:25:9c:46:4a:2f:
ac:59:e3:b5:f1:02:89:2e:9c:84:03:38:25:a2:d6:
6b:5a:37:fb:93:61:41:81:a7:b3:6a:28:a1:bd:d3:
29:00:72:47:21:44:3f:80:d2:26:1a:8e:73:70:d4:
66:e2:71:05:cf:bc:39:f6:15:6d:54:17:44:1e:45:
bf:de:00:29:df:b3:e3:c5:6b:d9:4d:bc:e7:e0:ed:
33:7c:4a:c8:92:6e:2e:72:c0:3c:ab:72:89:d7:0c:
d4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0C:4E:E9:C8:2F:ED:83:7E:B6:F0:42:5D:64:1A:5B:70:D8:EA:81
X509v3 Authority Key Identifier:
keyid:E7:C3:41:5B:DF:1C:01:4A:E1:C1:8E:7C:FD:33:C5:6F:01:8F:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58NBW98cAUrhwY58_TPFbwGP7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/vQxO6cgv7YN-tvBCXWQaW3DY6oE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/ccb56f-dd05-4616-a5f1-56324668a964/1/58NBW98cAUrhwY58_TPFbwGP7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.4.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:e2:fb:06:40:02:56:8a:a4:91:52:95:38:5b:08:1f:f6:5b:
78:09:94:ad:cd:06:2f:3c:57:a9:20:76:1c:f7:64:cb:34:c8:
84:81:f4:95:b9:d6:50:c7:f2:2d:70:d6:67:62:5a:79:b2:3b:
f5:5a:af:a1:a4:06:1c:f0:7c:e2:fd:17:f1:e0:21:5a:f9:90:
cd:bc:3e:c5:cd:2b:0e:6d:31:43:22:8b:e2:84:16:a7:97:a6:
03:f5:b2:19:44:42:23:d3:31:72:c6:e5:23:df:d8:fd:de:97:
9f:a9:23:25:26:13:37:06:e0:10:d6:4d:e6:90:e0:a9:7b:59:
83:bc:96:16:23:c0:5b:3c:fc:17:17:5b:d6:8d:f0:b9:35:46:
05:4a:54:52:8e:68:80:5e:a7:93:0e:7e:78:c1:7f:5c:ff:5b:
03:5b:db:23:cd:02:44:6a:a1:df:40:65:6c:1c:98:98:84:82:
ca:86:10:5b:48:f4:fb:ad:6d:87:49:2e:9d:6d:c2:18:f6:c7:
59:ad:c1:15:1d:56:7c:2a:48:0e:17:5b:25:7f:cf:1b:50:94:
09:e3:0f:40:00:65:c0:c4:80:54:ea:8d:91:ef:01:67:dc:2e:
9a:6e:c6:70:1d:0b:a6:ab:e2:9f:2e:b5:5b:26:2a:c6:b1:49:
1b:3a:35:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:19:29 2024 by rpki-client on console-ams.rpki-client.org