Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/76bGrAxO4__XTrKj6weRjk_4p1g.roa
File: 76bGrAxO4__XTrKj6weRjk_4p1g.roa (raw, json)
Hash identifier: Su6LwPnNwpyKtqX0qCFxne39014DgwzYBnXu/SgORtg=
Subject key identifier: EF:A6:C6:AC:0C:4E:E3:FF:D7:4E:B2:A3:EB:07:91:8E:4F:F8:A7:58
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 01901071D771939D8B887EA96260962AF7D1
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/76bGrAxO4__XTrKj6weRjk_4p1g.roa
Signing time: Thu 13 Jun 2024 07:13:34 +0000
ROA not before: Thu 13 Jun 2024 07:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197540
IP address blocks: 94.154.148.0/22 maxlen: 24
185.158.212.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:10:71:d7:71:93:9d:8b:88:7e:a9:62:60:96:2a:f7:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jun 13 07:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efa6c6ac0c4ee3ffd74eb2a3eb07918e4ff8a758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:b9:3e:c6:dc:98:d9:7a:d9:d1:50:ed:33:
e3:e0:4b:07:47:9a:63:e9:e8:e4:41:63:ce:15:3f:
d9:78:3c:de:43:2c:57:16:d3:fa:bf:e6:bc:8d:83:
48:be:13:18:ea:d9:11:34:5d:cf:80:b2:cf:91:ff:
4d:91:91:39:e0:95:14:9f:9c:0a:d7:ea:6d:5f:e6:
7e:27:91:9b:e7:aa:71:d7:5d:7c:91:17:9e:75:32:
dd:39:70:99:46:5a:cf:35:45:d8:bf:45:11:a0:a7:
2d:ad:3f:f3:5d:6e:2f:c0:d4:47:05:06:0c:c6:30:
ab:d7:3c:35:66:14:87:31:b7:e1:76:15:8f:f5:9f:
11:ac:7b:bb:47:af:8c:19:43:d1:1e:22:56:a0:88:
fe:13:58:87:71:41:9a:ac:5e:35:63:b0:92:c9:11:
e5:a3:6b:98:db:f0:9b:99:36:bd:9f:d2:a4:92:df:
bf:ee:52:0a:e5:2a:8f:0a:af:5d:53:3f:0c:dd:f5:
dd:2f:b2:c5:03:3c:d4:cc:45:7c:7f:86:76:a6:d7:
e1:a6:04:77:6e:ab:0e:5c:04:cc:c0:2e:01:24:9a:
49:70:0f:c7:1d:c9:dd:fd:d4:70:4b:f5:71:da:46:
9a:17:4f:b1:13:cf:8e:ab:fa:d9:ff:c6:78:2f:fd:
62:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A6:C6:AC:0C:4E:E3:FF:D7:4E:B2:A3:EB:07:91:8E:4F:F8:A7:58
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/76bGrAxO4__XTrKj6weRjk_4p1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.148.0/22
185.158.212.0/22
Signature Algorithm: sha256WithRSAEncryption
24:2b:07:0b:47:58:1e:97:34:72:69:44:0d:4c:33:c7:c2:7c:
91:66:94:03:74:d4:65:c6:d5:58:25:dc:7b:a8:0e:e7:0c:08:
0a:e2:46:9c:eb:23:0c:97:21:46:ed:cc:b4:7d:93:57:ce:7a:
08:78:c0:9f:c6:5a:ed:ac:47:3f:46:39:af:4a:47:98:f6:60:
22:4b:d2:cc:b8:57:ea:17:e2:94:d9:7f:b1:de:9e:f7:03:0b:
8f:b6:b0:43:57:0b:1d:38:04:ea:ca:18:64:3f:48:88:4c:bd:
8f:0b:8a:6e:0a:f1:a0:8e:4c:3f:e5:6d:5f:16:ed:55:24:3a:
c5:87:ba:2b:42:c5:17:16:06:f8:59:30:00:6b:40:e7:82:44:
a8:8b:9e:aa:6a:66:f2:22:e3:38:ef:32:c4:01:5a:74:33:53:
c1:69:85:9d:5c:a1:6c:59:71:ca:13:0f:aa:02:97:c8:17:cb:
0f:26:f9:e8:19:01:bd:46:a2:2f:13:3e:be:2b:f8:23:18:16:
35:b8:64:46:7d:d6:98:5e:d1:1a:6c:c2:32:ff:a1:cc:09:a6:
71:45:1d:7b:62:98:17:55:3c:11:ea:da:82:78:c0:7c:14:81:
17:fd:ce:b6:29:e6:9e:25:9c:7b:d4:4b:5e:28:09:e6:b3:2f:
20:eb:67:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:11 2024 by rpki-client on console-fra.rpki-client.org