Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/93O2jWXU0aa7pkK34WcJLtnaAwo.roa
File: 93O2jWXU0aa7pkK34WcJLtnaAwo.roa (raw, json)
Hash identifier: k8SJv/Wrpx3CH7j7ABFlhE1B+DeznISo97asPQtzy4A=
Subject key identifier: F7:73:B6:8D:65:D4:D1:A6:BB:A6:42:B7:E1:67:09:2E:D9:DA:03:0A
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 019089A6A73B534785768B2CE2BFA0DAB2D7
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/93O2jWXU0aa7pkK34WcJLtnaAwo.roa
Signing time: Sat 06 Jul 2024 20:05:18 +0000
ROA not before: Sat 06 Jul 2024 20:05:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16200
IP address blocks: 83.147.193.0/24 maxlen: 24
91.186.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:a6:a7:3b:53:47:85:76:8b:2c:e2:bf:a0:da:b2:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 6 20:05:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f773b68d65d4d1a6bba642b7e167092ed9da030a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9a:af:47:73:e5:1f:ac:5b:ad:9e:0f:35:e9:
de:d2:35:bd:c4:c6:64:13:b6:8f:9d:a3:f2:ae:51:
dd:67:33:e2:7c:a7:23:89:7e:57:d7:81:68:65:d8:
17:7f:22:f4:ec:fe:71:c4:e3:92:4a:90:8f:c9:f9:
78:ad:c1:e2:26:7c:af:df:06:89:35:a6:57:e0:a2:
1e:a0:d9:3a:8f:be:76:16:68:a4:8d:22:1c:58:12:
10:37:74:a3:82:eb:99:a6:01:6c:a0:9d:a6:2a:4e:
2f:96:7c:93:7a:f0:f8:ab:ea:e7:a9:09:a6:aa:d7:
06:a6:e4:74:68:1a:1c:1b:c2:0c:75:67:00:f9:4f:
45:5a:1b:02:0d:96:99:9e:86:37:e4:9f:58:b2:e5:
9b:8e:83:09:f4:33:a3:85:ec:6c:10:c8:5e:38:ee:
f7:65:3c:14:36:bc:b6:d1:32:b7:57:85:3b:01:ee:
cf:6d:c6:3e:16:69:23:b1:b8:58:79:28:0d:3e:4f:
64:79:1d:ab:2a:78:27:a5:70:84:09:db:4d:24:71:
ed:9c:01:60:01:be:ba:4f:70:0f:91:75:2f:45:98:
94:e9:63:32:2d:e4:fc:33:86:81:73:2b:f4:5c:19:
d4:dd:04:40:62:6a:b7:68:e7:cc:ff:32:05:5a:dd:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:73:B6:8D:65:D4:D1:A6:BB:A6:42:B7:E1:67:09:2E:D9:DA:03:0A
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/93O2jWXU0aa7pkK34WcJLtnaAwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.193.0/24
91.186.192.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:44:9a:d0:a9:03:50:0d:cb:5e:cf:e6:b6:e6:95:f4:1f:8b:
88:30:e2:eb:2a:f4:62:a0:54:70:54:78:0b:35:e0:79:65:54:
cb:d9:9b:aa:7c:51:51:93:a4:72:8f:5a:6f:7d:da:3d:e9:ab:
25:72:6b:8e:89:11:63:da:26:bb:6a:e9:38:bb:49:a4:cb:72:
28:5f:84:f1:da:26:b2:d3:45:a7:e0:21:a8:cc:d9:9b:cd:39:
83:93:33:86:97:f6:e7:b9:4d:38:c4:a1:d5:76:5a:2c:06:32:
03:69:ee:59:dc:be:d7:01:3e:a0:78:6d:ac:9f:16:fd:d3:b0:
49:58:40:ad:98:d7:f9:c2:7d:58:67:8e:c3:1b:71:1c:07:f4:
cf:22:0a:4d:63:ec:67:41:36:27:a9:19:aa:98:3f:72:12:76:
e2:5c:63:76:cc:6d:13:1c:34:8c:81:bb:bd:5b:1c:bc:a6:a6:
d0:8a:3d:22:d4:f6:20:00:e4:15:f3:2b:86:74:e8:bf:64:ce:
8e:e8:71:c2:f8:25:23:c0:f8:dc:8d:58:30:6e:f3:60:c8:62:
bc:a0:f4:5f:f8:2b:7a:9b:cb:12:33:c7:a8:fa:aa:4d:67:6e:
97:57:9d:af:1c:94:4c:80:7b:a7:58:8b:59:24:58:e0:82:e9:
02:42:af:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:01:23 2024 by rpki-client on console-fra.rpki-client.org