Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pgXsWYc-kLbpvMeZ53WESUwtaMw.roa
File: pgXsWYc-kLbpvMeZ53WESUwtaMw.roa (raw, json)
Hash identifier: znosVXdhXSEZKaNW7lcT7udWa+yGT0zLGwLi0/7mLPE=
Subject key identifier: A6:05:EC:59:87:3E:90:B6:E9:BC:C7:99:E7:75:84:49:4C:2D:68:CC
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01930CC3D93351A2202A54532232E0E732BD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pgXsWYc-kLbpvMeZ53WESUwtaMw.roa
Signing time: Fri 08 Nov 2024 17:13:01 +0000
ROA not before: Fri 08 Nov 2024 17:13:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 178.253.12.0/23 maxlen: 24
178.253.16.0/24 maxlen: 24
178.253.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:c3:d9:33:51:a2:20:2a:54:53:22:32:e0:e7:32:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 8 17:13:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a605ec59873e90b6e9bcc799e77584494c2d68cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:18:37:a7:7e:41:e1:29:e0:c0:06:1b:7a:93:
46:23:8c:e3:1f:26:8e:89:03:cb:9b:15:e1:94:4b:
85:ba:e3:74:c1:22:e4:d8:72:59:a9:fd:8e:a7:29:
db:e3:ff:c6:fb:a0:62:dc:59:32:5a:0d:e0:6d:68:
e0:4f:fe:43:d9:42:7c:7e:df:50:17:30:42:1a:70:
66:c7:35:68:76:72:d5:d3:40:ff:d4:0f:be:f0:2c:
f1:2a:ed:4e:86:04:21:1f:c3:b1:42:36:13:89:9b:
c0:de:07:90:2b:f4:02:5a:12:37:13:c7:fd:eb:db:
a9:40:18:d5:7a:f0:4a:7e:ee:f0:fd:f2:42:5c:83:
fd:15:5f:6e:32:9f:ff:94:8e:44:42:3e:bd:22:ee:
2a:78:70:ad:72:00:93:31:37:1b:18:a9:97:8a:4d:
a8:85:7c:04:9f:c3:c8:b4:6a:1c:81:73:06:bb:38:
85:c8:90:0a:90:f6:1c:8d:ca:2d:8b:3c:f6:c1:d5:
c7:42:a5:67:56:24:7c:8b:ba:26:3f:8f:67:71:0e:
06:df:3c:2b:49:94:52:39:df:1a:ac:37:b1:de:6a:
30:ea:60:af:d2:a2:4b:17:55:6e:d6:3f:f1:20:d4:
33:14:f3:34:17:2f:95:6e:66:3c:13:17:64:83:3a:
ab:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:05:EC:59:87:3E:90:B6:E9:BC:C7:99:E7:75:84:49:4C:2D:68:CC
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pgXsWYc-kLbpvMeZ53WESUwtaMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.12.0/23
178.253.16.0/24
178.253.44.0/23
Signature Algorithm: sha256WithRSAEncryption
66:bb:5c:b1:40:53:be:c7:37:a5:eb:7b:98:45:ab:d3:37:31:
e9:be:6e:a9:68:e2:38:b4:a9:2e:98:6b:bd:7b:f0:c0:93:1a:
11:7a:8e:fb:b6:2b:d9:a2:5b:22:2a:ab:96:5f:82:2d:a7:82:
9e:79:65:ca:1b:63:ac:7e:a4:45:ce:84:41:32:b9:e2:7d:48:
b8:a0:96:4d:32:f3:3f:d5:2a:13:b8:38:c4:53:1d:b8:b7:58:
97:a0:1c:47:31:be:0a:cb:e0:97:51:a5:c8:d4:6b:51:5d:d6:
c9:a4:37:45:80:98:27:df:0a:f7:c5:a1:7a:8c:48:78:c4:bc:
ac:7e:56:15:54:11:53:45:30:cf:bf:3f:67:e5:20:1d:0c:ee:
00:a4:68:0f:c4:e3:87:a7:e8:be:0d:78:02:21:40:3f:74:7f:
e6:37:c1:b9:7e:2d:fa:d8:b9:f0:63:1d:ee:64:a4:67:21:07:
1e:8f:bd:53:dd:e7:f0:ab:2e:12:4d:2e:be:ee:ea:3c:5d:83:
c8:2a:85:e6:25:b5:7f:65:e2:ff:ef:58:1b:b0:7c:5d:4a:03:
3b:9a:16:8c:07:9a:ac:44:b6:da:72:42:db:18:81:01:ad:75:
e5:57:9c:ba:5d:0b:ac:69:df:28:af:63:ef:4c:53:e2:1f:ce:
1d:0d:93:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:43:17 2024 by rpki-client on console-fra.rpki-client.org