Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/ko_JYMe1LIp1pzmXO0lySAw5SWE.roa
File: ko_JYMe1LIp1pzmXO0lySAw5SWE.roa (raw, json)
Hash identifier: kJtpshTlhdX7yhOlmg5tprYFxLO24B8tyX6k0N9lScY=
Subject key identifier: 92:8F:C9:60:C7:B5:2C:8A:75:A7:39:97:3B:49:72:48:0C:39:49:61
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018F1F3214A4F0341A345469D55F1A1BA1D3
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/ko_JYMe1LIp1pzmXO0lySAw5SWE.roa
Signing time: Sat 27 Apr 2024 10:55:26 +0000
ROA not before: Sat 27 Apr 2024 10:55:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35278
IP address blocks: 185.218.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1f:32:14:a4:f0:34:1a:34:54:69:d5:5f:1a:1b:a1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Apr 27 10:55:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=928fc960c7b52c8a75a739973b4972480c394961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4b:00:53:b1:86:64:41:ca:72:ba:80:fa:f5:
a4:51:f3:7c:68:37:3e:7d:9d:7e:26:84:5f:b5:94:
8c:04:24:8b:d0:60:a0:b8:0f:57:84:20:ef:7e:31:
36:9c:3b:2f:c7:65:af:7b:a8:98:41:40:74:9b:de:
dc:6d:6b:b2:57:49:cf:bd:cb:c4:87:d1:0a:a8:a9:
a5:ad:5b:f3:78:41:47:ba:87:3a:51:84:ea:4d:a1:
cb:d2:73:a6:3a:d5:d3:52:67:58:05:c2:94:77:95:
35:91:c3:02:c7:37:f8:b9:6a:0b:a0:d7:28:9f:90:
1f:9f:07:84:34:10:d3:a4:79:05:cf:3d:46:8c:5e:
15:54:3f:39:18:19:83:8c:07:82:1e:1f:34:e9:b4:
a6:8f:00:cc:27:d2:92:73:74:54:0e:31:5e:13:ea:
bb:40:58:68:59:90:93:09:71:95:dd:a6:85:8b:c6:
22:17:13:b8:5b:d8:b2:78:74:3e:b3:d0:15:85:7e:
a0:1f:b2:ba:2e:cc:87:7e:ba:68:bc:b2:fb:7d:d1:
cb:86:51:70:5c:da:d9:22:20:d3:e9:2c:7d:79:0f:
b2:92:ec:1d:5c:22:fa:0c:44:07:e6:aa:15:f8:2e:
1d:64:34:9b:29:2a:73:47:8a:10:01:b5:e2:d5:51:
b3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8F:C9:60:C7:B5:2C:8A:75:A7:39:97:3B:49:72:48:0C:39:49:61
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/ko_JYMe1LIp1pzmXO0lySAw5SWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.0.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:6d:c4:13:df:4a:51:cf:4a:17:40:b2:c8:b1:1a:43:aa:18:
86:d0:a5:54:03:32:e3:8d:c2:71:42:57:0e:0a:a0:b2:f5:09:
26:28:00:bd:f3:80:f3:58:5e:5b:a7:ac:13:74:b1:a8:bd:9c:
61:b5:67:81:49:c5:3b:29:49:d0:cc:45:99:6a:5f:38:23:c4:
5c:cc:f8:eb:17:97:c5:54:e1:77:6f:74:71:df:67:05:f5:ec:
aa:09:0e:b2:1e:70:98:b5:d7:07:dd:d3:4a:4d:97:f4:99:63:
d9:15:29:5a:bb:51:8f:21:38:7a:b5:03:57:39:98:58:f2:1e:
85:be:95:90:33:e4:25:4c:db:ba:87:f7:b9:15:f2:a0:04:01:
29:6f:50:0d:0e:12:5e:0e:d7:ce:27:5b:30:cb:75:82:b5:6f:
47:cb:54:b3:f4:1b:7d:0f:6f:51:a4:ed:e7:33:a9:da:40:ef:
9c:c6:83:53:b8:35:eb:26:f4:7b:e5:1b:00:68:17:2c:f9:30:
12:d9:54:e7:1c:e8:66:35:e3:ae:5a:57:00:4b:fd:4d:23:c4:
bb:ce:18:a1:5d:5b:92:e2:22:d7:05:29:33:d4:7a:ce:c2:d0:
c6:ea:d5:a5:ed:69:8d:3f:fb:68:da:0c:92:04:b8:f6:a1:03:
b9:0a:41:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 14:47:38 2024 by rpki-client on console-fra.rpki-client.org