Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/KKPKNigrtidn50ae8QCoaM2nkQk.roa
File: KKPKNigrtidn50ae8QCoaM2nkQk.roa (raw, json)
Hash identifier: mu2QEb/QpHAG7Zh8vE/iuQ03z54wg93ubZ1YmCLwPts=
Subject key identifier: 28:A3:CA:36:28:2B:B6:27:67:E7:46:9E:F1:00:A8:68:CD:A7:91:09
Certificate issuer: /CN=67800aba40639bf38d1eb6c9157b994f19323b13
Certificate serial: 018D12DDFACC3376F9F3AA4146869008F2AA
Authority key identifier: 67:80:0A:BA:40:63:9B:F3:8D:1E:B6:C9:15:7B:99:4F:19:32:3B:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z4AKukBjm_ONHrbJFXuZTxkyOxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/KKPKNigrtidn50ae8QCoaM2nkQk.roa
Signing time: Tue 16 Jan 2024 15:22:33 +0000
ROA not before: Tue 16 Jan 2024 15:22:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51512
IP address blocks: 176.119.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/Z4AKukBjm_ONHrbJFXuZTxkyOxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/Z4AKukBjm_ONHrbJFXuZTxkyOxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z4AKukBjm_ONHrbJFXuZTxkyOxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 12:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:dd:fa:cc:33:76:f9:f3:aa:41:46:86:90:08:f2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67800aba40639bf38d1eb6c9157b994f19323b13
Validity
Not Before: Jan 16 15:22:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28a3ca36282bb62767e7469ef100a868cda79109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:da:7f:8f:f9:b0:09:95:39:35:11:41:4d:
d7:89:3d:20:8c:12:48:04:e1:ad:e6:5f:aa:2a:5b:
30:6c:a1:ff:d5:40:ee:30:77:41:89:ec:07:f7:44:
ae:ba:a7:c4:d2:86:fc:0a:82:bc:7d:03:1f:d1:a5:
e5:d4:91:63:14:69:d2:ae:29:47:e7:76:75:9d:3d:
46:54:f7:87:6b:88:0e:f4:4a:1c:49:cc:4a:27:c0:
b7:87:fe:e1:07:27:a7:13:ca:31:57:21:8b:ac:f7:
54:a8:e6:aa:f2:c2:a0:e0:18:00:ff:14:55:08:bc:
70:ce:02:20:a6:8f:70:4f:02:b5:a4:e3:e1:25:e2:
d1:e2:4f:cf:97:ea:cd:d4:06:08:4a:c1:22:32:a2:
5c:17:e6:41:1c:76:68:4d:b5:e8:37:4f:e7:4e:4c:
d1:af:5c:91:b0:cb:86:b7:ca:ff:9a:1e:e5:51:b1:
aa:b0:a7:e9:e5:7b:87:7a:2a:21:99:d7:36:3a:48:
eb:38:d8:c6:98:45:fb:37:88:4f:cb:9b:bc:68:be:
f9:2f:5b:76:2f:c2:2d:ce:8a:25:df:42:c6:cf:d1:
e7:f2:83:c5:f4:0a:0c:35:f2:25:8f:8c:0b:4a:88:
e7:31:22:bd:f3:d8:63:86:59:cb:97:ee:22:7b:4d:
4a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A3:CA:36:28:2B:B6:27:67:E7:46:9E:F1:00:A8:68:CD:A7:91:09
X509v3 Authority Key Identifier:
keyid:67:80:0A:BA:40:63:9B:F3:8D:1E:B6:C9:15:7B:99:4F:19:32:3B:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z4AKukBjm_ONHrbJFXuZTxkyOxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/KKPKNigrtidn50ae8QCoaM2nkQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/Z4AKukBjm_ONHrbJFXuZTxkyOxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.193.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:4d:81:6e:9e:88:14:bd:e7:0f:68:ba:34:47:13:7e:a2:9e:
46:da:af:a3:fb:56:81:0e:ef:3e:60:0e:ee:c6:f0:4d:6e:14:
03:58:3b:ee:6c:7d:92:90:ad:6d:dc:42:9d:d3:02:b4:1e:43:
f3:d3:fd:a4:df:c9:64:69:d9:ce:cf:6f:05:80:d4:c6:ad:15:
64:6d:c9:c1:13:31:77:eb:f0:2b:8d:31:8e:31:53:9d:a4:19:
6a:da:31:0a:88:4b:1b:5f:6c:1b:b1:ac:55:c1:21:aa:cc:13:
e4:4d:be:4a:82:2c:e0:30:92:3e:f6:cd:2f:a7:cc:8f:2d:1d:
d2:0a:a5:dd:4a:d8:90:37:74:28:e8:f1:0b:a9:ff:5b:2b:33:
29:25:39:1c:b4:de:f2:5e:c2:6c:99:aa:b1:af:12:a9:f3:ff:
02:58:90:0a:64:70:ab:26:01:5c:46:19:b3:13:07:cf:78:37:
63:a5:cc:0a:a8:d1:38:01:ba:20:52:e9:fe:e8:b1:e4:cb:95:
13:04:d9:d0:35:ae:47:e5:b4:3b:8e:73:05:2d:69:12:83:24:
ae:2d:27:af:44:1a:09:54:96:0a:6c:8f:ee:3d:6b:2d:5c:c7:
7a:b4:bf:56:f3:92:4e:49:c7:f7:ae:0c:f2:6d:6c:0c:c8:f7:
28:d5:2a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 21:01:08 2024 by rpki-client on console-fra.rpki-client.org