Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/q88FqUqQOErTcvm_XY-E-cd4oWQ.roa
File: q88FqUqQOErTcvm_XY-E-cd4oWQ.roa (raw, json)
Hash identifier: HEVqrPMUB7eKEav7FXAO3oLSNljtnGEkGxAOiV2VF+w=
Subject key identifier: AB:CF:05:A9:4A:90:38:4A:D3:72:F9:BF:5D:8F:84:F9:C7:78:A1:64
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018D1827B53BF91035D0A13A7F5AD15454F0
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/q88FqUqQOErTcvm_XY-E-cd4oWQ.roa
Signing time: Wed 17 Jan 2024 16:01:11 +0000
ROA not before: Wed 17 Jan 2024 16:01:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41957
IP address blocks: 45.86.169.0/24 maxlen: 24
77.83.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:27:b5:3b:f9:10:35:d0:a1:3a:7f:5a:d1:54:54:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 17 16:01:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abcf05a94a90384ad372f9bf5d8f84f9c778a164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f5:54:ee:0c:a5:76:32:31:88:f1:12:c3:23:
df:0d:da:c5:ad:fa:01:f5:a0:de:2a:00:6d:60:bd:
0a:d4:aa:1f:e3:97:72:15:d8:02:73:8e:db:84:5b:
b0:f8:2d:d1:0f:61:f7:b8:6a:36:7f:c3:91:32:0b:
dd:0a:25:15:60:10:1b:ff:a3:3a:60:ea:02:16:cf:
88:49:ab:ab:65:cc:6d:89:ad:96:a4:97:fc:cf:0f:
bb:19:6f:3f:25:aa:ae:12:38:85:7a:da:40:e0:1a:
c2:c7:02:d2:c8:16:b7:54:76:cf:3c:8e:43:72:9a:
61:a6:48:62:8d:2b:c9:c5:9c:98:ce:f2:61:cb:30:
18:8b:d8:44:69:66:87:cb:e9:6f:21:c6:7b:54:cc:
dd:7f:51:7f:00:27:43:a0:cc:a4:91:b2:d0:07:55:
92:44:e7:88:13:dc:a9:bd:eb:ad:9d:c0:aa:bf:56:
6b:c8:a2:71:ec:15:b7:f9:89:64:0b:8c:80:5e:10:
49:90:af:30:70:67:c7:e7:58:19:97:ae:ae:6e:43:
f4:c8:d2:e4:8f:bf:f0:8e:bc:fd:83:45:ce:77:9a:
24:4f:b9:84:05:ea:08:41:07:49:26:41:43:fa:36:
fc:f0:75:6b:ad:2c:ee:4f:9e:0e:84:c3:79:95:96:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CF:05:A9:4A:90:38:4A:D3:72:F9:BF:5D:8F:84:F9:C7:78:A1:64
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/q88FqUqQOErTcvm_XY-E-cd4oWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.169.0/24
77.83.94.0/24
Signature Algorithm: sha256WithRSAEncryption
38:7c:87:79:9b:10:a4:e9:63:c2:b8:19:77:31:90:a6:07:ac:
98:18:ea:2c:97:d8:18:89:b4:39:e8:b9:68:96:b9:cc:e4:fe:
af:0f:a9:5e:18:c8:7e:92:65:84:09:0d:52:7d:e2:fc:8f:b6:
a3:a8:4e:0b:de:29:42:52:e7:c4:76:a0:ea:5a:bc:ac:de:09:
3c:d2:79:7b:9b:96:dd:78:50:7f:42:b3:03:04:ab:f8:ac:73:
1f:56:f2:7a:7b:72:59:0a:2b:79:d9:e8:5a:5f:c8:ca:1b:47:
99:48:b3:d6:fa:a8:50:3c:ab:85:31:b5:38:f7:46:ce:d7:96:
69:a0:05:8f:dd:79:fd:89:0a:9f:e7:90:41:4f:c8:f4:cf:b5:
30:d8:86:26:0e:72:1f:d5:35:48:c1:02:6d:2e:1f:d1:46:1b:
73:f8:9c:49:e8:b0:86:fa:e6:7b:12:98:ec:b0:33:0c:ba:21:
d8:cb:4b:1b:d4:bf:95:ec:a6:e9:e9:ba:d8:88:51:ba:42:8f:
81:a8:4a:79:52:d9:de:f7:15:4b:ec:aa:3a:14:fc:63:cb:cc:
ee:51:04:89:cf:73:b7:51:96:05:22:b4:5a:6f:e2:41:97:97:
72:6c:06:4a:26:c3:ec:65:59:10:54:83:6d:2b:2e:95:cd:02:
7c:b8:ef:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 15:38:19 2024 by rpki-client on console-ams.rpki-client.org