Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/sQXVys13s8mZmGc44vE3hPhwaaE.roa
File: sQXVys13s8mZmGc44vE3hPhwaaE.roa (raw, json)
Hash identifier: 3iOKJym1lDwo4Q94jnexAVx4E8FQ2c9rRzmaRkZPoy8=
Subject key identifier: B1:05:D5:CA:CD:77:B3:C9:99:98:67:38:E2:F1:37:84:F8:70:69:A1
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 0191C803DFADAA6000240C41C42FAD1F826A
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/sQXVys13s8mZmGc44vE3hPhwaaE.roa
Signing time: Fri 06 Sep 2024 15:46:22 +0000
ROA not before: Fri 06 Sep 2024 15:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33915
IP address blocks: 193.200.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c8:03:df:ad:aa:60:00:24:0c:41:c4:2f:ad:1f:82:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Sep 6 15:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b105d5cacd77b3c999986738e2f13784f87069a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8f:75:fa:2b:17:1d:4a:f1:5a:f4:85:cb:7f:
74:d7:a7:cb:f4:dc:6c:93:69:cf:e5:5c:4c:c3:e6:
88:64:a1:2b:92:06:e6:f7:b6:5f:24:45:7c:64:be:
c1:8a:16:6e:06:2e:b7:7c:21:4f:cf:7a:7e:bd:98:
bf:9d:6b:24:3b:68:d7:6d:02:a6:80:00:2c:35:ef:
77:81:36:3a:f5:42:4a:2c:ef:03:40:fb:cb:9b:8d:
80:5e:74:f1:e1:f7:dd:af:78:e4:5f:44:91:75:4b:
6e:4f:7f:97:96:a9:98:ca:c6:5e:91:9b:a3:d7:75:
39:80:cf:84:d6:82:0c:b4:45:46:48:f8:61:01:8c:
7b:80:6b:58:cf:5f:ac:b8:28:0f:82:df:b3:06:81:
0a:3d:8e:c2:8e:6a:9c:f4:cd:82:9b:3e:ac:7b:78:
3f:96:1e:6d:f9:4f:05:f6:de:1a:65:5f:0a:5e:22:
53:f5:97:9c:87:3f:01:da:3f:e2:d0:1e:69:f2:69:
bb:54:74:7f:e1:19:42:0c:45:5b:d1:62:0f:20:de:
b5:9f:a0:7d:a9:ca:49:41:23:70:b8:6c:c9:11:51:
02:96:cd:91:a1:e2:09:1b:0d:03:c7:a4:7a:79:9c:
3e:54:00:6f:a2:f4:bb:cf:77:7d:cf:3b:eb:4b:f8:
20:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:05:D5:CA:CD:77:B3:C9:99:98:67:38:E2:F1:37:84:F8:70:69:A1
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/sQXVys13s8mZmGc44vE3hPhwaaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.147.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e8:1b:7c:0e:04:d5:57:5e:66:ad:07:4a:06:9f:0e:dd:38:
31:30:67:6a:e3:51:e2:6c:11:62:0c:16:64:78:c6:34:4f:5d:
3a:a1:2b:b5:cc:08:23:2c:54:9b:eb:0d:45:f7:f9:fb:df:9c:
aa:62:c7:f3:23:8c:02:c6:87:65:9a:03:2d:35:aa:26:c2:ae:
da:c4:90:be:c6:bc:fc:48:1f:60:27:09:e6:5d:ab:a4:9e:29:
d0:73:25:c5:eb:58:b1:b7:a2:c8:5c:dd:78:8c:4f:ea:67:41:
42:5e:fa:9e:00:a6:ca:67:dd:1f:17:42:17:62:be:59:ea:a4:
8e:35:3c:e2:56:a3:5c:56:5e:52:3d:36:82:90:79:e7:67:40:
80:1b:7c:0e:fc:50:cc:42:b1:33:bb:0e:4f:c2:4d:6a:2a:43:
a7:77:a4:0b:c4:8d:e9:34:ee:de:3b:31:73:ae:1e:46:f3:d1:
ca:a6:27:2f:c4:da:00:ba:3c:2b:30:5c:3e:56:5c:88:d3:ca:
ad:90:7f:c7:0b:93:e9:63:a2:47:5f:5f:48:26:36:eb:62:8e:
95:11:4b:69:ee:24:69:65:c6:d2:99:bd:04:d3:64:90:17:f9:
09:58:4a:bd:7a:42:89:eb:4c:c4:b0:db:93:bb:23:87:8a:4a:
68:b3:39:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:17 2024 by rpki-client on console-fra.rpki-client.org