Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/7mLzh2gBsXZDtsQeb0ZWsPv4fYE.roa
File: 7mLzh2gBsXZDtsQeb0ZWsPv4fYE.roa (raw, json)
Hash identifier: p+ypeSZlq8CNj+oOx5xHx7U5QUrTCD5JSBRgagK8CBs=
Subject key identifier: EE:62:F3:87:68:01:B1:76:43:B6:C4:1E:6F:46:56:B0:FB:F8:7D:81
Certificate issuer: /CN=2c9e49962073f9efb66a4b303506da6341567450
Certificate serial: 018DA33CE99F64B83B6FE4AC031405E10F68
Authority key identifier: 2C:9E:49:96:20:73:F9:EF:B6:6A:4B:30:35:06:DA:63:41:56:74:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJ5JliBz-e-2akswNQbaY0FWdFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/7mLzh2gBsXZDtsQeb0ZWsPv4fYE.roa
Signing time: Tue 13 Feb 2024 16:11:34 +0000
ROA not before: Tue 13 Feb 2024 16:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5405
IP address blocks: 195.200.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/LJ5JliBz-e-2akswNQbaY0FWdFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/LJ5JliBz-e-2akswNQbaY0FWdFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/LJ5JliBz-e-2akswNQbaY0FWdFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a3:3c:e9:9f:64:b8:3b:6f:e4:ac:03:14:05:e1:0f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9e49962073f9efb66a4b303506da6341567450
Validity
Not Before: Feb 13 16:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee62f3876801b17643b6c41e6f4656b0fbf87d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:54:76:83:d3:a7:61:08:9d:82:21:55:07:ad:
19:00:1a:f0:33:d4:f9:1f:e5:35:a3:ed:22:de:f3:
b5:72:de:3b:c8:74:fa:a9:22:5e:e5:8c:d5:3d:c7:
f7:28:e0:31:47:13:c4:fc:86:30:cb:dc:6a:1e:94:
22:ea:96:a5:06:53:4f:7f:4f:1c:df:7a:19:29:7e:
3c:73:31:6a:40:3e:66:b0:77:7e:98:f2:6e:68:c4:
22:2d:35:d2:72:f8:22:05:69:f3:51:0b:8a:3f:ca:
4d:d9:15:b5:21:92:77:f9:f7:b2:6a:1f:f6:37:b0:
35:6a:62:41:bd:ad:41:c2:b2:9e:2c:0c:aa:10:8d:
00:79:a8:5e:e6:8f:19:e5:37:ac:2a:8b:f9:78:e9:
cb:d0:9a:df:d1:bc:ba:d7:15:ff:95:73:e8:4b:c1:
bd:4e:fa:5b:48:74:d4:1b:89:77:e3:15:73:20:e7:
85:89:30:c0:0e:3e:25:b3:c6:ee:40:6c:79:d6:46:
f7:00:57:82:c6:87:d8:2b:34:7e:6b:33:61:aa:d0:
08:2d:51:db:6a:5e:6a:a6:58:0c:cc:a7:ee:88:ac:
05:96:35:e6:4c:62:34:41:bb:f8:57:1c:d7:72:0e:
89:30:9f:df:f4:6d:61:52:6a:7b:59:f3:b2:3e:ba:
e3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:62:F3:87:68:01:B1:76:43:B6:C4:1E:6F:46:56:B0:FB:F8:7D:81
X509v3 Authority Key Identifier:
keyid:2C:9E:49:96:20:73:F9:EF:B6:6A:4B:30:35:06:DA:63:41:56:74:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJ5JliBz-e-2akswNQbaY0FWdFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/7mLzh2gBsXZDtsQeb0ZWsPv4fYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/LJ5JliBz-e-2akswNQbaY0FWdFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.69.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7a:fc:ff:5c:dd:c0:c5:3e:29:cf:15:07:90:d5:3b:bc:9a:
65:a0:f9:7c:8e:67:fc:6a:f3:e4:5e:77:11:f0:60:80:20:ff:
d1:f9:c3:b0:a3:4b:d3:a0:c5:2e:bb:2d:2c:7d:7d:71:55:52:
a1:58:05:79:69:d3:3f:5a:b2:3e:3a:52:43:ff:ee:7c:7e:70:
6f:f5:a6:e0:de:bf:56:a1:fd:a9:3f:df:84:68:04:67:6d:46:
d2:d5:f1:ef:9c:2d:5d:43:b1:38:1e:63:79:ef:5c:c7:8f:73:
ab:00:b1:87:89:9d:a0:08:9f:41:29:2b:e6:25:32:a4:fb:88:
a2:ac:28:d2:2a:f3:a7:59:fd:ca:79:3b:67:a7:81:14:ed:0a:
f4:78:47:9d:3c:07:b5:1c:48:67:5b:42:92:ee:46:e1:a8:64:
a2:0f:78:0a:40:b9:b0:74:55:3e:94:14:fc:52:cb:ee:1a:73:
f9:23:dd:cd:cd:a8:61:d3:e7:7c:a2:2d:0d:ea:20:ee:a2:2d:
56:40:26:89:a9:b3:1e:49:d2:97:8d:67:32:e4:30:ed:e7:6c:
ad:01:ec:8c:f1:2e:00:c3:b0:d1:b8:db:b9:19:e8:70:d4:db:
e5:de:14:27:0f:51:68:57:49:13:0f:e1:b6:0e:ab:ee:d9:1a:
60:bb:91:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:30:06 2024 by rpki-client on console-ams.rpki-client.org