Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/f5fxtAyYk7hfKSAb3p5VaGEqTyY.roa
File: f5fxtAyYk7hfKSAb3p5VaGEqTyY.roa (raw, json)
Hash identifier: jz4KThJNsrRZqpncyw96Ac/mgwM52O0wpiwF2LjjyEc=
Subject key identifier: 7F:97:F1:B4:0C:98:93:B8:5F:29:20:1B:DE:9E:55:68:61:2A:4F:26
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 018CC50092ECD56A762C41292A01BE2B96F3
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/f5fxtAyYk7hfKSAb3p5VaGEqTyY.roa
Signing time: Mon 01 Jan 2024 12:29:58 +0000
ROA not before: Mon 01 Jan 2024 12:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211793
IP address blocks: 83.139.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:92:ec:d5:6a:76:2c:41:29:2a:01:be:2b:96:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jan 1 12:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f97f1b40c9893b85f29201bde9e5568612a4f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:d1:7f:4e:54:2c:8a:50:48:55:df:b8:1e:
65:5c:1c:58:c6:87:41:0a:28:6e:af:e5:44:63:c3:
f3:fd:45:ce:e5:9c:be:55:af:f4:12:91:30:1d:a5:
e2:b3:c6:dc:dd:26:80:66:f4:d2:a2:8f:27:22:2e:
83:44:b4:bf:9d:c7:ba:46:65:e5:f9:69:40:bc:ba:
06:b6:d2:74:b6:9f:2c:ee:f0:42:66:8b:86:52:9c:
ed:03:0e:e3:0e:e6:0d:35:ae:d3:54:2e:5d:3a:e7:
05:52:70:72:13:53:ed:4a:16:86:0d:fc:cb:bc:98:
d3:8c:9a:16:c2:2f:22:c0:fb:22:95:3e:c3:d9:05:
13:80:63:ab:b9:d5:93:ef:ee:87:88:99:8d:cb:05:
eb:94:e2:c7:0c:26:49:c8:00:83:78:ab:2b:12:e5:
d2:04:3c:ff:d7:7f:f7:f0:f3:11:13:fa:f2:b9:8d:
ea:04:24:10:9d:97:29:34:7b:56:9b:d7:da:1c:cd:
f7:26:57:2d:3d:16:6b:18:6e:d8:24:99:49:af:17:
11:bc:e6:c6:da:a3:9b:ca:28:6a:b0:62:9c:1e:c5:
14:38:2e:3d:e6:b5:d5:98:9e:88:f1:dd:a7:32:4c:
cb:a3:aa:01:8d:22:cb:0b:04:9e:cd:c0:c1:0f:5d:
da:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:97:F1:B4:0C:98:93:B8:5F:29:20:1B:DE:9E:55:68:61:2A:4F:26
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/f5fxtAyYk7hfKSAb3p5VaGEqTyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.20.0/24
Signature Algorithm: sha256WithRSAEncryption
53:07:c9:a0:79:ef:8f:72:0b:71:2e:15:9c:af:5d:9e:04:46:
75:9d:cd:d1:8b:e0:42:79:34:31:cc:8f:87:2f:b6:1b:da:e1:
c4:4d:31:99:61:3e:81:3d:13:21:37:20:90:0d:d1:8e:01:ab:
20:45:71:81:70:20:77:50:e3:4c:24:ca:a0:06:a1:f7:0d:f5:
55:98:1a:e2:9b:e1:53:8d:8a:69:d6:bc:59:04:20:14:c1:38:
7c:21:7c:11:52:4c:a0:6f:87:46:9d:0b:04:04:3d:b4:07:e5:
b5:9c:67:8b:c9:ed:47:d3:f2:62:17:7f:08:8c:b5:90:dc:47:
65:9f:ee:ae:77:ce:92:7d:44:7f:7a:5a:f1:93:fa:36:d2:2d:
8b:2c:f9:a5:52:6e:0e:b5:6f:93:5e:9b:1e:60:1f:26:2b:9a:
02:23:69:39:cb:eb:0c:da:2d:f7:18:18:54:a5:a8:57:76:dd:
f0:23:bd:c3:61:f7:d6:01:cc:7c:5e:e0:af:d1:bb:54:7a:40:
1c:d7:fd:9e:da:00:ad:bf:82:03:92:43:44:df:6b:c4:f9:3d:
b4:53:fc:bb:de:a3:0c:ee:a9:cc:71:29:ca:9d:e1:ec:ff:b5:
0e:d3:ab:8d:88:f2:12:b0:a5:9a:3a:bc:c4:21:79:7a:41:95:
39:05:53:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:14:35 2024 by rpki-client on console-fra.rpki-client.org