Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/jR6flSC4-dwVjU8j7bFtHn0L5JE.roa
File: jR6flSC4-dwVjU8j7bFtHn0L5JE.roa (raw, json)
Hash identifier: xbq8EOHU9hJVTauxJiHal9k9/6AYQeDUbewmzhAj9ZQ=
Subject key identifier: 8D:1E:9F:95:20:B8:F9:DC:15:8D:4F:23:ED:B1:6D:1E:7D:0B:E4:91
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 018CC9BCEBCA66809097DE46480123C954D2
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/jR6flSC4-dwVjU8j7bFtHn0L5JE.roa
Signing time: Tue 02 Jan 2024 10:34:10 +0000
ROA not before: Tue 02 Jan 2024 10:34:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198381
IP address blocks: 91.126.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:eb:ca:66:80:90:97:de:46:48:01:23:c9:54:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 2 10:34:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d1e9f9520b8f9dc158d4f23edb16d1e7d0be491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a8:39:89:85:d1:2d:1c:63:18:aa:4a:4c:af:
d3:bb:a3:a0:70:3c:07:7e:24:70:32:9d:ff:cf:66:
9e:10:48:9b:1a:5d:a5:8d:7a:62:2b:11:36:2c:e4:
18:d8:c9:6e:26:a5:aa:e2:9c:b2:00:f3:a0:e3:47:
63:1d:aa:42:54:c7:69:40:bd:db:93:69:2f:72:7a:
bb:ef:25:4f:02:e4:89:3b:e0:68:5d:10:50:1f:3c:
d7:6b:13:5a:4e:54:d7:17:a1:18:b1:ff:0f:29:08:
ef:18:6d:19:2a:9f:d1:a1:b7:35:8a:f6:e8:74:30:
c9:ab:8d:4e:b9:9b:23:8c:bb:70:55:1f:fc:5c:31:
fe:6c:1a:ef:63:4b:76:e3:ae:59:fc:54:7f:a7:65:
11:fc:c8:da:42:7b:70:60:3b:94:f4:23:7e:f1:2e:
6d:c9:07:bd:ba:f8:41:42:35:99:37:78:bc:57:32:
3a:44:19:5a:fa:a9:af:fd:71:26:21:4a:0b:2c:6e:
4b:65:18:f3:57:8c:b1:34:d6:86:35:e5:87:e0:0c:
8f:8e:01:f6:41:7b:27:ef:e0:e6:2a:27:e5:f6:8e:
cb:97:95:c8:ff:0b:7e:d1:ed:b1:eb:0d:95:b8:a5:
45:a5:1c:63:71:99:81:87:16:7e:fa:37:c9:f9:be:
54:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1E:9F:95:20:B8:F9:DC:15:8D:4F:23:ED:B1:6D:1E:7D:0B:E4:91
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/jR6flSC4-dwVjU8j7bFtHn0L5JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.126.178.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f8:1a:18:34:c1:d6:34:b5:e8:44:6e:01:ce:b5:1a:c7:00:
93:74:d1:fb:dd:07:27:3b:31:db:5a:e5:8a:bd:20:f6:5e:be:
18:b4:e4:a1:35:60:af:3a:bd:99:f4:17:69:c7:05:1d:b7:92:
de:ab:e4:14:68:b2:64:3e:e3:02:3d:e5:6a:73:90:6f:f1:fa:
5a:ef:d1:b2:3c:34:f8:8e:f0:65:de:c6:05:88:b5:c1:62:c8:
f7:7e:b5:e4:8f:7a:57:73:27:31:09:87:14:a6:3b:4d:6d:f2:
3d:55:35:74:47:25:b8:4f:b4:22:d9:02:02:b7:4d:b9:aa:b6:
77:ce:ea:82:00:df:f2:4b:ae:07:cd:3b:d0:9a:5f:f9:b7:94:
a0:6e:31:c9:c6:06:62:40:4b:bc:36:b3:06:32:1f:73:22:98:
ff:84:79:1d:ee:59:16:d9:d7:f1:29:e0:6c:39:43:d7:f1:13:
03:70:ee:66:39:4c:b6:19:27:2e:cd:50:23:25:11:61:d0:12:
28:d3:07:75:92:9c:96:ba:fa:5c:c7:8e:34:2a:20:92:f8:da:
2a:59:61:d0:f6:40:6f:ab:3d:f0:86:40:9e:aa:7f:02:69:f9:
f5:47:f5:2b:e5:36:11:17:d2:54:a4:44:ea:c6:b0:16:99:57:
c1:57:09:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:24:56 2024 by rpki-client on console-fra.rpki-client.org