Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/1-syBacrDkNtm4raZphc0D-KPtYg.roa
File: 1-syBacrDkNtm4raZphc0D-KPtYg.roa (raw, json)
Hash identifier: oCnM5SV5wEpzxcBs7L/pXdosl4Y14Fl1VQHaejHfRU0=
Subject key identifier: FA:CC:81:69:CA:C3:90:DB:66:E2:B6:99:A6:17:34:0F:E2:8F:B5:88
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 018CC348FB0F1B38A1B13877D6CF25A99DCF
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/1-syBacrDkNtm4raZphc0D-KPtYg.roa
Signing time: Mon 01 Jan 2024 04:29:49 +0000
ROA not before: Mon 01 Jan 2024 04:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41870
IP address blocks: 88.80.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:fb:0f:1b:38:a1:b1:38:77:d6:cf:25:a9:9d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Jan 1 04:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=facc8169cac390db66e2b699a617340fe28fb588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:19:dd:68:51:9d:3b:cd:96:db:7e:e7:19:
8e:5f:fb:a0:42:58:e5:d3:8f:49:df:e3:da:62:ed:
96:ff:0d:7e:e6:1b:02:78:0e:1a:19:81:04:7b:e6:
7c:dd:69:d0:7c:0e:b6:a1:73:94:54:dc:a9:f2:62:
23:02:40:76:99:24:cd:63:e6:5c:c8:3a:6b:55:8c:
3f:f8:7f:05:87:65:b1:c4:43:8e:f8:a4:05:49:41:
7d:c1:59:63:91:aa:db:cb:ac:83:d1:99:67:2d:97:
d7:b8:25:07:f8:cd:3c:b3:9b:87:3a:ed:c4:f9:fe:
94:eb:4e:b8:3c:f0:a0:be:7c:62:84:92:4a:59:cf:
3f:5b:5b:f7:97:9b:30:00:16:79:e1:6a:d0:7e:fd:
d6:57:fe:ec:8f:54:4c:cd:e5:50:f9:8b:9a:48:55:
67:e8:1f:10:a8:75:f7:4b:b0:98:f3:45:17:17:2a:
42:75:3b:78:1b:f2:5b:c5:68:c7:c0:dc:e8:93:ea:
68:5e:51:a9:32:d4:ab:f6:0c:a8:be:dc:81:ce:77:
21:96:ee:ea:58:fd:02:d5:f2:1a:e1:ea:b1:c6:bf:
3f:0a:5e:8d:67:46:fb:ea:75:ce:6c:36:db:df:4b:
4f:b9:0e:4e:0f:80:c6:27:c9:c9:c5:af:09:84:7c:
ec:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CC:81:69:CA:C3:90:DB:66:E2:B6:99:A6:17:34:0F:E2:8F:B5:88
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/1-syBacrDkNtm4raZphc0D-KPtYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.150.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a5:9c:ca:c4:71:25:bd:6c:78:4b:3e:65:ae:28:13:ea:3f:
6a:ec:2c:87:89:85:b7:d8:e4:4f:ae:49:eb:64:32:86:52:68:
fe:37:10:a0:40:be:e1:f5:34:c8:63:d6:27:ae:2b:65:f3:2a:
92:10:eb:b6:6e:81:77:ac:bc:86:95:56:1d:32:3c:55:2e:04:
aa:3c:5c:09:d7:18:49:b7:e7:d4:92:94:2e:42:8a:5d:a7:79:
8d:ae:7a:f3:db:f7:31:df:4f:49:4e:22:2f:88:1e:8f:e3:61:
c5:46:eb:1d:c1:fa:3f:b5:81:04:cf:3d:8d:97:8d:8d:33:a6:
82:8a:bd:79:73:be:6f:af:79:f0:bd:79:02:c7:99:b9:ee:8e:
00:92:0a:4c:95:2d:ee:1b:07:25:ec:00:fb:8e:12:80:7e:59:
18:fe:6f:42:cd:ff:50:c2:90:34:8c:0a:be:95:8c:17:15:7a:
54:26:7d:da:6e:02:e8:79:56:e1:db:bd:93:fd:b6:fd:63:f6:
14:4b:63:21:e8:bd:cf:fd:29:69:2e:cc:9b:67:f0:94:97:2b:
1e:67:86:86:ea:d2:48:b9:a2:1a:42:21:4e:82:e5:4f:ae:bc:
6d:e6:d1:a7:22:6c:9c:f1:30:d0:b6:4b:f1:03:5e:e6:33:23:
ef:0f:56:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:35:13 2024 by rpki-client on console-fra.rpki-client.org