Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/70guu4N61aRlqdO-JImj-xi1jQU.roa
File: 70guu4N61aRlqdO-JImj-xi1jQU.roa (raw, json)
Hash identifier: Mxf967umtTHRpmsgyY3qJn5pkt5ABPLMoxXO9njLAUc=
Subject key identifier: EF:48:2E:BB:83:7A:D5:A4:65:A9:D3:BE:24:89:A3:FB:18:B5:8D:05
Certificate issuer: /CN=5d30056bc4e20393a6febf6576b3912c7ea569a6
Certificate serial: 018FC341765EB3D718E2122141F9717786C3
Authority key identifier: 5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/70guu4N61aRlqdO-JImj-xi1jQU.roa
Signing time: Wed 29 May 2024 07:29:58 +0000
ROA not before: Wed 29 May 2024 07:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29684
IP address blocks: 185.149.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c3:41:76:5e:b3:d7:18:e2:12:21:41:f9:71:77:86:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d30056bc4e20393a6febf6576b3912c7ea569a6
Validity
Not Before: May 29 07:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef482ebb837ad5a465a9d3be2489a3fb18b58d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e9:3b:13:03:92:b3:42:67:71:38:e3:50:5b:
5d:07:63:1e:db:c6:74:57:51:8f:6d:70:d5:6b:ec:
68:aa:24:33:d4:dc:a1:05:84:b6:0a:2c:6a:1e:86:
06:c3:a7:12:9b:1f:77:99:62:fb:4f:f1:7d:89:47:
9a:8b:bb:e5:8b:9d:0b:bf:90:a6:5c:90:ee:f5:9c:
d9:7d:00:79:c0:24:5c:fa:05:ab:bc:6b:9a:d3:3d:
c1:6a:9e:21:9f:1d:9c:7b:5c:01:0b:81:a0:5d:0c:
2a:3d:fa:02:51:32:ca:ca:15:38:45:2f:2b:aa:d7:
21:42:da:48:c4:a8:85:ca:00:7a:7a:d0:92:f4:4c:
d4:34:ad:78:f4:f0:a7:1f:56:b5:56:40:89:de:e1:
ca:cd:45:bc:00:cc:0e:1e:25:74:da:83:45:53:fe:
38:3c:be:b4:a1:b7:d8:55:af:d9:59:3a:98:11:25:
42:04:4e:86:83:ea:e5:06:42:4a:87:75:da:22:ad:
9a:b0:83:19:b2:84:38:5b:9c:ae:c7:2d:30:85:f7:
c2:e2:a4:28:81:e0:b9:68:ee:85:ab:82:51:c3:24:
c9:d0:c1:6c:1d:88:b6:eb:be:2a:66:03:ee:9a:56:
da:d4:70:2a:65:10:fc:5f:77:9d:4e:f7:ad:95:c4:
0b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:48:2E:BB:83:7A:D5:A4:65:A9:D3:BE:24:89:A3:FB:18:B5:8D:05
X509v3 Authority Key Identifier:
keyid:5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/70guu4N61aRlqdO-JImj-xi1jQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.193.0/24
Signature Algorithm: sha256WithRSAEncryption
55:c8:6d:ba:3a:e3:09:72:e6:2f:6c:48:10:d5:2f:5b:9b:dd:
94:7c:9c:3d:5e:ae:70:40:6c:8c:b0:22:ad:8d:61:e9:ad:f1:
d9:7f:42:ed:3b:8b:2a:be:9c:4f:8d:88:72:7f:48:ef:1f:ef:
37:95:30:df:f1:a7:c5:90:8e:d1:6b:4c:fa:4f:b4:03:ce:23:
bf:b1:5c:7b:1b:da:40:38:77:86:60:30:0e:0b:a7:76:95:d1:
0d:85:25:c8:f1:9f:2b:5f:0d:39:25:ab:67:43:15:ec:7b:c1:
13:17:b8:43:d3:9f:13:a4:55:a9:da:30:20:c6:ef:a2:6c:39:
e9:8c:f1:3a:11:35:96:d4:6f:2c:5c:17:e6:ef:0a:e8:b0:de:
e6:e5:52:30:61:5e:5a:9a:ff:c9:23:54:f8:52:8a:21:27:4f:
7b:61:64:08:06:ed:82:52:e2:01:b9:0b:70:e2:5c:4d:09:b4:
b4:e0:6a:71:39:3e:f9:4b:08:b8:c9:9c:60:e7:30:3f:88:aa:
d5:d0:77:e8:0f:62:2f:53:20:fb:bd:3e:3f:cc:c8:e4:7f:09:
5e:e5:90:3e:16:1b:67:0e:4f:79:97:3d:b8:9b:d4:32:61:fa:
e0:06:4c:1d:96:d1:9b:c9:65:06:10:43:a0:3a:70:52:5b:f5:
5e:2c:a8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:24:50 2024 by rpki-client on console-fra.rpki-client.org