Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/lAx6XZMs1365bpgZx18aYK1BykU.roa
File: lAx6XZMs1365bpgZx18aYK1BykU.roa (raw, json)
Hash identifier: EGom+ASY3q+Mk429POFfwpTDEQDnYsNLQrAkpmdDxek=
Subject key identifier: 94:0C:7A:5D:93:2C:D7:7E:B9:6E:98:19:C7:5F:1A:60:AD:41:CA:45
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CC86F96EBAD80A2CDA7794C71FD751748
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/lAx6XZMs1365bpgZx18aYK1BykU.roa
Signing time: Tue 02 Jan 2024 04:30:05 +0000
ROA not before: Tue 02 Jan 2024 04:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211424
IP address blocks: 80.233.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:96:eb:ad:80:a2:cd:a7:79:4c:71:fd:75:17:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 04:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=940c7a5d932cd77eb96e9819c75f1a60ad41ca45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e4:9e:ca:35:ee:75:a7:c0:e4:11:b2:18:f5:
2f:ec:be:34:10:8d:0b:9b:ae:39:f1:22:bf:bb:4f:
6b:17:e8:c8:67:51:39:16:fd:83:a8:d3:99:5e:bf:
5c:e3:2f:b3:09:3e:08:5d:ee:02:23:e1:e3:40:3b:
2b:6a:48:db:31:33:bf:e6:e9:ae:19:f2:9f:4a:0f:
51:e2:6a:51:9a:24:0d:13:5c:ac:7a:44:84:6a:e3:
fd:a2:53:33:5d:dc:a0:60:ce:4b:f9:83:58:67:5e:
0f:6b:93:48:fc:65:70:fc:6d:bc:b9:f3:d5:71:4d:
bb:c7:ee:d6:90:f7:5b:8a:ab:dd:4d:9b:85:15:96:
16:9b:cb:d8:3d:88:6c:33:98:e3:29:0a:de:ba:9c:
e9:92:01:ad:79:f0:e2:2d:65:49:84:ac:d8:ad:5f:
e0:23:50:76:eb:51:10:17:7e:5e:bb:da:d9:96:f3:
fd:18:82:af:ec:2e:1c:0a:29:df:87:db:7b:fa:2c:
ba:bd:64:15:28:8b:df:ba:e9:06:5d:af:76:57:4f:
b7:d7:3d:85:9a:0f:fc:08:2e:d6:c1:d6:87:3a:e1:
ce:77:b8:f4:0b:9d:6c:0d:40:18:55:bb:7e:8f:ca:
1a:b3:23:21:c4:a6:99:92:b5:fd:cd:f6:71:e3:15:
3d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0C:7A:5D:93:2C:D7:7E:B9:6E:98:19:C7:5F:1A:60:AD:41:CA:45
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/lAx6XZMs1365bpgZx18aYK1BykU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.177.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ea:8e:ec:8a:a2:b4:58:45:6d:ad:ea:69:d4:a3:c2:2b:e8:
bc:97:82:da:f7:b9:79:ae:ab:fa:14:4d:6d:08:09:26:dd:80:
68:3f:de:69:c6:cc:7a:68:fa:06:24:d3:25:ee:07:2f:01:19:
1a:3b:40:7f:b7:53:8c:c6:3d:2f:57:c6:85:98:d0:31:94:a4:
61:33:2d:d0:2f:85:c3:3e:99:11:e9:43:9e:3e:5c:8f:2c:b6:
e0:ee:c0:69:ad:27:11:f7:4a:01:cd:8a:78:ca:5d:04:1e:af:
1d:7b:4f:77:c1:79:8c:54:a3:cd:43:4f:13:2a:5d:e4:79:47:
6e:3b:1f:d1:ed:8a:59:e3:9e:81:9b:23:a0:46:3f:c0:24:91:
19:14:1c:94:ea:94:62:05:52:1e:a2:2c:60:ae:22:7a:c4:93:
7d:b4:2e:48:1f:3f:c9:47:65:1a:58:c8:71:d3:50:2a:2a:2a:
14:44:cc:00:66:b1:d0:e2:a8:47:0d:bd:c5:df:07:aa:c7:a6:
3d:c1:d0:1b:74:2c:77:0f:cb:b3:85:5f:99:f5:9d:03:b0:4a:
25:c0:e3:d1:d3:cf:e6:ca:cf:67:5a:99:80:42:ac:8e:ca:14:
8a:04:7e:9f:3e:a4:f4:48:01:40:77:1b:c5:f5:97:8d:d9:fa:
7e:4f:ac:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:24:50 2024 by rpki-client on console-ams.rpki-client.org