Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i5i_77-KtCYBi84lPpMCCi0RxG8.roa
File: i5i_77-KtCYBi84lPpMCCi0RxG8.roa (raw, json)
Hash identifier: vM6jQ3zqXtoIVUTL0Rj339wTt+dppEpw/wnHdRhJtdM=
Subject key identifier: 8B:98:BF:EF:BF:8A:B4:26:01:8B:CE:25:3E:93:02:0A:2D:11:C4:6F
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B5D530358EFD97339E0800044F28
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i5i_77-KtCYBi84lPpMCCi0RxG8.roa
Signing time: Mon 01 Jan 2024 12:30:07 +0000
ROA not before: Mon 01 Jan 2024 12:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209242
IP address blocks: 95.214.178.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b5:d5:30:35:8e:fd:97:33:9e:08:00:04:4f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b98bfefbf8ab426018bce253e93020a2d11c46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:8a:b9:5b:0e:e0:6c:16:54:14:de:67:6b:52:
e1:48:e8:b0:ca:06:6d:7b:26:d7:9a:fd:3b:96:fa:
66:9e:d7:ab:8c:30:c5:f5:c6:e8:e1:0b:1c:34:70:
9d:6e:ac:37:fd:76:88:5e:f2:ec:fd:c2:a5:f8:eb:
11:2f:32:af:d6:30:87:12:d9:e4:ad:03:6c:71:89:
df:90:45:c9:37:c4:67:1a:ab:73:21:e1:ab:12:67:
11:1b:af:c5:2b:03:3a:ab:16:21:6a:07:19:20:30:
c7:4c:ec:b3:ca:0f:fe:98:10:0c:84:53:72:e7:59:
1b:2c:8c:e8:3f:93:ed:8f:7d:33:f0:60:bd:98:0a:
e1:97:29:cc:65:8f:67:62:13:00:f9:34:c0:7a:24:
60:60:d0:67:58:b5:f3:41:56:1c:a2:88:c2:67:4d:
bf:d3:16:98:6b:05:53:d8:37:99:20:dc:2d:1c:6f:
ec:05:cd:b0:85:25:b9:f5:85:29:a8:c4:da:08:c4:
d9:f4:45:49:1e:55:22:bf:d3:82:0e:07:d3:4a:60:
1f:2c:29:46:e8:c5:14:78:61:e6:38:53:0a:d6:63:
1b:3d:a4:15:5c:9d:59:20:f1:13:46:08:d7:7e:c5:
03:ff:c1:4f:6b:5f:9c:be:14:f9:ff:dc:0b:ff:d8:
78:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:98:BF:EF:BF:8A:B4:26:01:8B:CE:25:3E:93:02:0A:2D:11:C4:6F
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/i5i_77-KtCYBi84lPpMCCi0RxG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.178.0/23
Signature Algorithm: sha256WithRSAEncryption
70:be:9b:7e:fd:17:55:ce:ae:f7:2e:88:28:9b:2b:5c:20:f9:
bf:ff:89:2a:88:93:17:cc:7f:d4:0b:df:e8:9b:7e:12:05:58:
19:8e:51:02:21:d0:9b:79:1f:ee:c0:3f:eb:d1:fb:96:a4:9f:
a8:d5:97:c0:9d:07:f7:56:10:cb:83:e1:93:63:b8:07:fc:82:
00:0f:84:ab:92:c9:dc:67:88:9b:7c:f9:a8:c9:b3:91:25:64:
95:3a:40:dc:eb:89:0d:4d:d5:c6:a5:00:d0:78:d4:44:12:f4:
50:5d:4c:3e:13:b6:3a:a3:0b:97:60:7f:b9:18:24:66:18:14:
35:d3:fb:25:a6:29:17:af:e1:93:7f:0e:f0:7f:e6:a5:b8:6d:
eb:6b:39:bf:25:15:f5:ec:66:d7:e8:86:9f:e5:88:81:8f:77:
d6:99:91:a2:49:42:d4:a3:8f:2b:7b:de:7e:2e:d1:96:85:40:
f0:78:6d:68:1b:e0:50:8f:1e:d7:1b:ab:57:f9:07:f3:9a:09:
ba:c2:d8:61:da:94:b9:4c:24:c1:ed:37:de:44:85:7b:47:b2:
8b:de:ef:51:6a:74:d3:2f:6b:01:c1:ce:f9:90:c4:20:04:56:
8a:21:9c:69:c2:0f:df:32:b8:b7:b0:06:bb:83:04:2c:af:4b:
59:4d:7d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:28:05 2024 by rpki-client on console-ams.rpki-client.org