Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/SQzgKYqcxQT6pwmJkusO1zb6KaU.roa
File: SQzgKYqcxQT6pwmJkusO1zb6KaU.roa (raw, json)
Hash identifier: /fJ942ACiq358vfrKWNTuESYcFxiCC11HRf4kNTasWk=
Subject key identifier: 49:0C:E0:29:8A:9C:C5:04:FA:A7:09:89:92:EB:0E:D7:36:FA:29:A5
Certificate issuer: /CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Certificate serial: 018CC8012A8425D688AD952330D4DFEB2283
Authority key identifier: 4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/SQzgKYqcxQT6pwmJkusO1zb6KaU.roa
Signing time: Tue 02 Jan 2024 02:29:28 +0000
ROA not before: Tue 02 Jan 2024 02:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210069
IP address blocks: 185.93.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:2a:84:25:d6:88:ad:95:23:30:d4:df:eb:22:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9ac6fe2031adde03668240e3c5d91ec6711e1e
Validity
Not Before: Jan 2 02:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=490ce0298a9cc504faa7098992eb0ed736fa29a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ce:45:e5:69:02:63:28:9b:40:2b:85:7d:b7:
61:88:0c:8e:a5:8f:6d:2c:14:ee:eb:2b:77:3c:f9:
14:85:c3:d9:25:e0:56:e7:c0:e5:a6:c0:ae:72:03:
c4:81:f7:60:86:78:1a:f6:25:25:fb:6c:31:e3:81:
e8:be:10:91:89:28:dd:78:9f:38:41:9a:a7:b6:5b:
ae:c2:05:b3:61:ce:2f:13:c9:9c:a6:15:49:23:ae:
81:f1:f7:71:f2:3e:fd:3d:0b:a7:c9:4d:ef:a5:53:
0f:d9:af:ac:67:c5:c1:4f:ba:0f:fd:f1:51:ef:f2:
0b:96:00:62:8e:b5:44:e9:41:9b:1a:5a:da:b5:bd:
25:00:f1:e0:eb:80:4b:93:0d:46:21:d8:17:ef:6e:
ca:66:39:3e:1c:e4:f9:ba:e6:f5:7c:0d:9e:be:5f:
b0:3a:6d:ed:2b:ca:a7:df:b9:0c:e6:90:9b:86:07:
4a:a8:0a:95:39:51:a0:9a:57:4f:ba:0e:35:1e:a9:
cd:c3:af:a5:7a:69:5b:47:fd:de:de:be:1a:4f:d6:
eb:71:10:f7:1f:40:f8:4d:a9:f6:8d:52:b0:5c:ca:
13:e1:45:9a:d2:2c:13:94:70:0b:40:7c:6b:20:2b:
23:5e:ea:ff:9f:6c:1f:31:44:86:97:2e:2e:49:d5:
d2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0C:E0:29:8A:9C:C5:04:FA:A7:09:89:92:EB:0E:D7:36:FA:29:A5
X509v3 Authority Key Identifier:
keyid:4F:9A:C6:FE:20:31:AD:DE:03:66:82:40:E3:C5:D9:1E:C6:71:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5rG_iAxrd4DZoJA48XZHsZxHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/SQzgKYqcxQT6pwmJkusO1zb6KaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/847ffa-9f38-4610-98e7-528a63be4c87/1/T5rG_iAxrd4DZoJA48XZHsZxHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.187.0/24
Signature Algorithm: sha256WithRSAEncryption
29:4d:30:24:0a:fc:02:79:70:5a:25:c5:f1:55:d1:25:f5:ba:
41:97:db:d9:48:2e:81:5c:a4:50:96:65:9e:48:e1:f1:a1:b0:
64:55:b6:3e:77:79:55:d3:d6:59:19:15:5a:1a:a5:51:d0:ac:
8f:29:18:43:03:40:ad:c9:c8:22:cf:38:d1:76:2e:b1:5e:56:
67:40:43:ec:65:27:e0:3e:0c:c9:4a:de:c1:27:4a:d4:c0:34:
eb:31:66:71:2e:47:ee:39:a4:28:f7:8e:01:77:a7:c9:85:72:
20:d4:a4:ba:4b:5e:8d:47:1c:89:8a:ea:d5:19:e6:5e:7f:79:
d3:85:e1:49:f2:c9:79:66:8b:61:a1:6f:2f:79:bf:9e:b4:98:
9f:90:34:03:35:85:02:8e:0a:02:32:a3:75:b7:51:c7:53:67:
10:c7:99:2c:b7:53:a7:62:bd:61:e8:07:b5:be:3b:73:f9:eb:
1c:ad:c6:b8:c5:39:97:72:6c:d2:58:b7:08:d7:35:fd:ac:3f:
fe:35:fc:51:a1:9a:73:52:54:4f:ce:26:57:44:8f:35:7e:fa:
22:ad:a8:56:89:9b:19:07:28:7f:2e:cd:58:fe:f6:0c:c4:af:
2b:28:66:4b:08:dd:94:57:48:db:05:d5:10:4a:63:6e:6e:a8:
04:b1:ae:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:19:54 2024 by rpki-client on console-fra.rpki-client.org