Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/NJXziIlJYgbBGydQaQPeI4MJjpI.roa
File: NJXziIlJYgbBGydQaQPeI4MJjpI.roa (raw, json)
Hash identifier: ujGy/n3hEVnZYpUbwco1uYfl/4NT+/I1rgR6gTcP/pw=
Subject key identifier: 34:95:F3:88:89:49:62:06:C1:1B:27:50:69:03:DE:23:83:09:8E:92
Certificate issuer: /CN=1b12f8b5681f554a03b30e2e4f805c66f8315e0a
Certificate serial: 01903067E97F52808AEAD01C0C07D0EF488E
Authority key identifier: 1B:12:F8:B5:68:1F:55:4A:03:B3:0E:2E:4F:80:5C:66:F8:31:5E:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxL4tWgfVUoDsw4uT4BcZvgxXgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/NJXziIlJYgbBGydQaQPeI4MJjpI.roa
Signing time: Wed 19 Jun 2024 12:10:34 +0000
ROA not before: Wed 19 Jun 2024 12:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 193.84.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/GxL4tWgfVUoDsw4uT4BcZvgxXgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/GxL4tWgfVUoDsw4uT4BcZvgxXgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/GxL4tWgfVUoDsw4uT4BcZvgxXgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 15:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:67:e9:7f:52:80:8a:ea:d0:1c:0c:07:d0:ef:48:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b12f8b5681f554a03b30e2e4f805c66f8315e0a
Validity
Not Before: Jun 19 12:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3495f38889496206c11b27506903de2383098e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4e:d4:dd:1b:8c:5f:c3:63:87:f7:de:12:1d:
5c:20:c1:53:09:72:a1:00:20:02:ac:c2:7c:ad:66:
ee:87:b2:bf:b3:78:af:5b:dc:c0:f7:bb:03:8e:0d:
e4:89:ff:83:3c:4a:f1:19:f0:86:11:77:c7:f0:e8:
f2:65:1b:dc:22:92:9b:df:7d:f5:21:91:c2:6d:9b:
4f:6a:31:2d:8f:bf:3f:b9:1d:37:ab:fa:39:92:5b:
c4:a9:68:7d:d7:29:00:b1:10:4b:79:c7:b7:4f:bf:
65:68:0c:8f:8d:05:d8:a3:da:c9:22:21:19:bd:48:
44:37:86:f9:58:92:58:c9:85:1d:9b:62:19:4a:d6:
96:35:ab:20:4c:6b:39:bb:67:62:1a:a6:2a:b2:36:
aa:15:59:7b:1f:2c:72:07:e9:c4:a0:89:c7:c2:78:
9a:93:c2:46:9c:79:1b:86:0a:30:a5:7e:0c:2b:49:
f2:27:62:47:7e:f3:4d:07:e1:8d:fe:31:c3:83:e0:
2c:36:1b:b7:94:18:81:64:d3:c1:fb:5d:0a:a1:4f:
51:3d:ef:e8:b3:b3:ef:53:ed:47:a8:f6:de:44:ee:
8d:15:a5:e9:87:3c:2e:d8:4a:99:bd:19:b7:f6:9e:
4f:55:0d:73:65:9c:1a:fc:d3:fc:7d:6b:06:2a:39:
c0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:95:F3:88:89:49:62:06:C1:1B:27:50:69:03:DE:23:83:09:8E:92
X509v3 Authority Key Identifier:
keyid:1B:12:F8:B5:68:1F:55:4A:03:B3:0E:2E:4F:80:5C:66:F8:31:5E:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxL4tWgfVUoDsw4uT4BcZvgxXgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/NJXziIlJYgbBGydQaQPeI4MJjpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fdafd2-3dcf-4043-86e6-3e801694e048/1/GxL4tWgfVUoDsw4uT4BcZvgxXgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.100.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e3:a1:49:d7:de:00:78:47:6d:a4:bd:d6:7d:83:7b:9c:4d:
03:af:aa:c3:e2:d9:b5:5b:47:58:5f:83:38:56:44:5d:39:e0:
0b:4f:4f:1e:ec:fe:61:95:56:23:c6:62:f2:b7:6e:ed:aa:cc:
ea:0f:fe:70:39:c5:ac:c6:ea:c3:09:76:7b:aa:15:e5:b6:e6:
e6:ae:c0:9a:3e:1f:9d:c3:4e:6e:de:8b:c1:80:9f:7f:68:71:
c2:01:4e:52:81:8c:3f:fd:31:a8:ba:61:3b:2c:27:86:71:43:
5a:28:c8:1c:fe:1f:b7:48:07:8d:2e:7e:fc:30:f9:c3:6d:3b:
cf:6a:a2:36:5f:af:d6:73:d1:16:5b:5c:9a:8f:02:93:50:7b:
84:e2:21:7d:3b:7e:de:79:93:4e:b6:f4:70:8e:56:3a:45:84:
a2:d0:6a:67:78:c8:52:07:d1:89:62:ef:3b:06:8f:14:a5:04:
c9:50:5a:64:dd:6b:d4:29:1a:ec:85:33:65:20:82:33:64:1a:
ef:81:32:50:3a:e9:21:d0:a4:3f:9e:47:ed:19:22:9b:70:7f:
3f:4a:27:90:ad:26:e2:fd:07:bd:ca:57:2e:c4:83:c8:9d:a1:
b0:01:cb:d4:fb:07:29:c0:7f:0a:80:eb:6d:21:6e:16:ad:e5:
84:c6:ce:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:39:04 2024 by rpki-client on console-ams.rpki-client.org