Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/cZVebBf7ZUm6mXqqJR1gum1mLs4.roa
File: cZVebBf7ZUm6mXqqJR1gum1mLs4.roa (raw, json)
Hash identifier: Vspthv2wVygH57oEVFEXdS3X0AhitP/7nAo+ifLY05o=
Subject key identifier: 71:95:5E:6C:17:FB:65:49:BA:99:7A:AA:25:1D:60:BA:6D:66:2E:CE
Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Certificate serial: 018CC72578EDA2AF19D1B4AAF837A04FB0E8
Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/cZVebBf7ZUm6mXqqJR1gum1mLs4.roa
Signing time: Mon 01 Jan 2024 22:29:30 +0000
ROA not before: Mon 01 Jan 2024 22:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199725
IP address blocks: 212.21.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft
rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 20:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:78:ed:a2:af:19:d1:b4:aa:f8:37:a0:4f:b0:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Validity
Not Before: Jan 1 22:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71955e6c17fb6549ba997aaa251d60ba6d662ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:27:07:53:44:96:2e:b3:5f:44:f2:42:80:92:
d4:30:84:99:b7:c6:80:a9:54:a6:75:f8:82:82:90:
cb:d5:44:ec:c7:32:94:a8:22:b0:d7:23:8c:d2:d9:
16:83:ba:b0:5c:50:f4:db:2a:a7:9e:bc:3f:47:4c:
a2:ac:b7:be:77:b7:32:77:87:5a:df:c5:30:1b:c9:
7d:0f:f0:ca:86:7d:de:6f:89:f1:4f:77:a7:6a:ed:
54:d3:42:0f:b1:d2:c5:c9:96:cc:14:71:db:f1:be:
b9:e8:ec:93:f9:fc:38:0a:ee:65:04:0b:70:7a:ba:
b1:ca:92:90:dc:c4:9b:84:60:3f:36:5a:51:82:e8:
81:f4:a1:27:27:2a:9c:ca:b8:3b:40:6e:72:6c:64:
8b:e6:54:3e:a0:31:3b:d6:b5:0f:b1:7b:e2:d1:bf:
07:34:8d:3b:98:9f:6b:8b:01:35:02:ea:da:94:38:
ab:4e:a1:bd:67:ea:cd:4a:65:8f:c5:ef:c3:a1:dc:
26:f3:ba:d7:68:47:fa:52:a3:ec:eb:b9:9b:e3:f0:
67:36:a7:72:ba:ac:f2:77:31:28:38:db:4d:77:5f:
2a:b6:f7:2c:d2:dd:07:7d:da:8c:b4:23:30:d6:41:
c1:e4:72:87:59:d9:3d:60:c3:54:df:ab:0e:32:c9:
1b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:95:5E:6C:17:FB:65:49:BA:99:7A:AA:25:1D:60:BA:6D:66:2E:CE
X509v3 Authority Key Identifier:
keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/cZVebBf7ZUm6mXqqJR1gum1mLs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.21.93.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:91:3a:43:65:53:da:97:7c:5d:ae:bf:cc:dd:a6:aa:b7:ce:
82:74:e5:4e:91:0c:ef:09:f5:4b:39:92:f2:b9:4b:d7:df:51:
4d:b5:6f:6d:a9:53:1d:a3:b3:c6:d5:2a:c2:53:40:a2:df:05:
b3:0b:fa:2f:4b:a6:f0:49:eb:f9:ee:87:c7:00:65:35:b3:aa:
85:fc:d7:eb:d2:aa:04:42:3b:07:de:04:36:a2:d7:d7:12:c3:
34:8b:93:84:ab:10:96:c2:d2:02:20:60:36:15:83:ef:51:00:
59:cf:c6:f7:22:9c:61:2d:97:a4:29:be:d3:b4:97:9d:e5:1b:
95:20:8d:51:73:05:c5:22:b9:be:e4:f4:a4:0a:2b:17:95:95:
bb:6d:c2:89:ad:bb:ff:72:18:64:99:82:2d:d5:a7:02:46:a6:
5d:91:dc:78:79:1e:8b:74:55:86:f9:dc:38:93:56:48:ff:f5:
a4:e8:82:ea:6f:88:7f:2b:e8:20:16:a2:86:81:75:4a:50:64:
80:6c:f5:70:38:09:e3:bc:89:48:61:8f:a5:2a:41:15:d1:09:
f9:b3:a3:1b:05:4e:a8:a5:71:5c:9b:ee:e2:ca:45:b4:fc:bf:
46:37:7c:19:b3:a0:b5:b6:8a:89:61:b0:f8:ca:ee:d2:8b:b0:
07:85:25:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 04:13:50 2024 by rpki-client on console-ams.rpki-client.org