Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/Hk1cd7Mk4JTGUuz9Awq1zAU983Q.roa
File: Hk1cd7Mk4JTGUuz9Awq1zAU983Q.roa (raw, json)
Hash identifier: axhamO0azMw277GbsBtSJOrvhlWzzF6zqUWzXgYl/MA=
Subject key identifier: 1E:4D:5C:77:B3:24:E0:94:C6:52:EC:FD:03:0A:B5:CC:05:3D:F3:74
Certificate issuer: /CN=6ff362c0765afb7b9804b6d819470007b01f262e
Certificate serial: 0190BFE01D9E96EFE3E4C9B4FD8C140177A6
Authority key identifier: 6F:F3:62:C0:76:5A:FB:7B:98:04:B6:D8:19:47:00:07:B0:1F:26:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_NiwHZa-3uYBLbYGUcAB7AfJi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/Hk1cd7Mk4JTGUuz9Awq1zAU983Q.roa
Signing time: Wed 17 Jul 2024 08:47:34 +0000
ROA not before: Wed 17 Jul 2024 08:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 141.113.16.0/24 maxlen: 24
141.113.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/b_NiwHZa-3uYBLbYGUcAB7AfJi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/b_NiwHZa-3uYBLbYGUcAB7AfJi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/b_NiwHZa-3uYBLbYGUcAB7AfJi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:e0:1d:9e:96:ef:e3:e4:c9:b4:fd:8c:14:01:77:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ff362c0765afb7b9804b6d819470007b01f262e
Validity
Not Before: Jul 17 08:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e4d5c77b324e094c652ecfd030ab5cc053df374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:31:03:29:5a:a3:ef:8d:9e:bf:28:72:5c:e5:
2a:88:d0:f7:27:ac:69:b2:15:8d:21:4c:60:50:70:
2b:fd:1d:13:0a:cf:2c:e1:fe:5b:30:d1:30:96:13:
a0:c5:2b:7e:37:4c:45:d7:ec:38:6c:a5:ec:60:37:
20:10:b8:9f:0d:6f:5c:26:89:93:28:6b:65:99:7c:
41:8d:87:b0:1e:e0:57:01:82:e9:de:10:0f:13:1c:
85:a9:51:79:30:90:74:99:a5:5b:b2:d7:5a:bc:b4:
8d:a5:df:98:30:55:17:fb:63:5e:7f:0e:9d:34:c3:
70:35:78:5f:f5:5e:a7:5d:28:2c:e2:04:e6:20:dd:
47:e8:d3:fb:c2:80:e1:56:4f:03:25:d8:49:a6:cd:
44:33:fc:09:17:43:08:91:d1:af:85:47:4f:37:b7:
9a:4a:ea:2a:07:8e:99:ac:8c:bf:09:95:5a:b3:5e:
13:48:85:9f:f7:31:c9:55:2e:bc:a7:e9:f3:21:f4:
6e:48:af:e4:bb:e5:f5:6c:82:f8:e6:c7:60:dd:68:
f7:de:96:2d:29:de:22:cc:1c:fb:3c:30:d0:79:f6:
32:1f:b8:01:3d:18:f5:ad:93:39:ac:ed:17:10:d9:
1b:f6:d7:d7:06:08:9a:83:d7:a5:c7:44:5b:7f:39:
c5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4D:5C:77:B3:24:E0:94:C6:52:EC:FD:03:0A:B5:CC:05:3D:F3:74
X509v3 Authority Key Identifier:
keyid:6F:F3:62:C0:76:5A:FB:7B:98:04:B6:D8:19:47:00:07:B0:1F:26:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_NiwHZa-3uYBLbYGUcAB7AfJi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/Hk1cd7Mk4JTGUuz9Awq1zAU983Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/b_NiwHZa-3uYBLbYGUcAB7AfJi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.113.16.0/23
Signature Algorithm: sha256WithRSAEncryption
53:20:d1:6c:04:94:8c:25:0c:20:3c:c1:2d:62:23:1c:a2:91:
2b:d5:b2:97:5a:2e:8b:5e:4e:9b:9f:ae:af:b1:b4:0c:c4:bc:
2e:d6:43:66:8a:b5:01:cf:59:eb:3a:09:e7:99:07:b6:c2:2d:
44:9f:10:95:19:42:e6:3c:c2:9e:b1:ef:d6:f0:08:bc:45:7d:
08:a8:99:5e:72:d4:75:ef:f3:dd:cd:1a:3a:f9:ce:fb:8a:6f:
5b:35:06:02:51:54:d3:1a:53:5d:bd:c9:ed:8d:cd:6e:0e:32:
af:7c:1c:02:b1:d1:79:64:b8:f4:48:71:9e:a3:f5:17:7d:a6:
fa:36:c8:c5:2b:dc:22:f6:4c:fb:3a:17:b5:9a:3e:62:bb:b6:
b4:78:39:0c:87:f8:2f:a9:a8:16:d4:61:f2:3f:b7:96:ac:fe:
83:e9:d8:65:81:df:f7:8f:16:59:9c:2c:ed:b5:07:aa:39:53:
45:f1:de:02:07:5e:2c:e8:25:d3:d1:ae:11:1f:fe:29:c5:c0:
8a:cb:b1:ff:ee:f6:fc:17:83:6d:17:f1:75:4e:fc:1c:59:51:
61:b4:e3:e4:8f:9b:9b:b8:f8:66:bd:96:a5:c8:8b:61:e2:ad:
9a:c9:4a:08:45:62:5a:4b:10:9e:9a:a7:0c:36:2c:03:89:bd:
6d:8b:c3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:48:00 2024 by rpki-client on console-fra.rpki-client.org