Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VjBnJ_i-Bp8waqxKjac2_FYqHJo.roa
File: VjBnJ_i-Bp8waqxKjac2_FYqHJo.roa (raw, json)
Hash identifier: WFeAqzE07mAJUZlz9Qh2EP7WKTIn790jl/Yp/zM2mWU=
Subject key identifier: 56:30:67:27:F8:BE:06:9F:30:6A:AC:4A:8D:A7:36:FC:56:2A:1C:9A
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CC86F93BBDF2B25B979A1385C8DAFA9CA
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VjBnJ_i-Bp8waqxKjac2_FYqHJo.roa
Signing time: Tue 02 Jan 2024 04:30:04 +0000
ROA not before: Tue 02 Jan 2024 04:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57318
IP address blocks: 80.233.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:93:bb:df:2b:25:b9:79:a1:38:5c:8d:af:a9:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 04:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56306727f8be069f306aac4a8da736fc562a1c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b5:dd:9a:6e:0c:d7:5c:e4:76:12:d8:6d:53:
e1:6a:75:ee:5d:4a:ff:62:55:fd:64:62:89:dd:48:
00:c5:d2:9d:3b:8e:a0:91:6f:df:6d:8c:02:0f:65:
10:bd:a4:9c:02:72:95:b1:d1:9e:6d:7f:14:35:5f:
22:20:19:25:77:f8:73:fa:a2:ce:1a:07:b5:de:9a:
b3:35:bc:87:10:49:ca:37:9e:4c:58:90:d0:76:dd:
79:82:4b:a0:94:60:49:b1:ec:20:19:61:55:55:76:
f9:0e:6b:b0:cd:68:4a:6b:72:98:94:5a:8a:30:0a:
d1:2d:74:06:3a:35:95:db:a2:71:f8:da:b0:c8:73:
fa:b4:5b:66:c8:c9:c7:f4:f8:ae:5f:0e:11:f9:6d:
af:e5:f2:8b:8b:1a:5c:14:3a:28:3a:7e:cd:40:9d:
ca:45:6d:e8:1f:f2:bf:94:88:a9:9b:af:84:44:89:
14:9e:6a:38:e1:ec:8a:a1:76:72:09:34:35:66:ee:
52:54:2b:8c:90:78:e8:95:bc:03:6a:e0:99:25:89:
cd:11:37:0d:1d:09:4c:c5:49:ba:2a:20:8b:6b:b4:
60:38:53:df:30:45:1c:82:01:d9:f9:eb:24:56:a9:
0f:cb:c3:1e:b9:ba:0b:8e:fd:88:c5:98:40:93:55:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:30:67:27:F8:BE:06:9F:30:6A:AC:4A:8D:A7:36:FC:56:2A:1C:9A
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VjBnJ_i-Bp8waqxKjac2_FYqHJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.130.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:bd:47:14:e9:9a:a2:9f:66:68:36:48:71:e1:14:64:fb:84:
ec:b2:84:e5:4b:e0:a1:0e:55:1b:63:5d:6d:9a:93:02:c6:08:
37:d6:6e:c4:0e:c8:07:dd:6c:8b:d6:a5:f0:82:8d:c7:02:20:
e2:c3:fc:c8:e0:06:60:05:19:13:cf:d9:ca:69:55:b6:7b:70:
ad:8e:5f:1d:98:04:db:f6:b7:4e:0e:b6:4a:b6:55:05:74:ba:
32:eb:90:92:1c:cd:3a:3c:2f:d9:2a:5b:e4:fd:cd:dc:87:3b:
4b:24:29:51:9b:9c:9e:ee:5d:86:7b:7e:ae:48:52:86:3f:b8:
d3:41:3a:c9:3d:ee:68:e3:5c:5e:77:bf:d6:83:6a:be:fc:1f:
e6:39:65:da:90:6c:2a:ee:4c:aa:c6:e9:3a:99:b2:85:cd:ba:
1a:5e:8e:72:45:2f:84:6d:a5:e3:cd:15:92:17:c0:b0:f8:b6:
21:97:22:ae:35:41:70:38:12:c7:e7:9f:47:88:82:3f:21:24:
cd:e7:cf:d4:9d:40:14:ca:ab:c9:c5:1e:80:3b:63:17:83:76:
43:3a:b1:19:8b:60:fb:48:f9:d3:55:50:8a:31:95:90:f1:47:
27:2e:f4:ca:66:d9:4d:f9:bd:e0:39:5c:60:b8:dc:d3:39:84:
42:c8:04:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:05:18 2024 by rpki-client on console-fra.rpki-client.org