Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jxHwHTkNusgNd-pEeGUYVHgjWSs.roa
File: jxHwHTkNusgNd-pEeGUYVHgjWSs.roa (raw, json)
Hash identifier: F8NHV4tdSH9t+x2fQM20bdrGaSlw9MiKW+lc3brQKxg=
Subject key identifier: 8F:11:F0:1D:39:0D:BA:C8:0D:77:EA:44:78:65:18:54:78:23:59:2B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0192EF55F90FE21D149F96FE54FD2732A28F
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jxHwHTkNusgNd-pEeGUYVHgjWSs.roa
Signing time: Sun 03 Nov 2024 00:04:01 +0000
ROA not before: Sun 03 Nov 2024 00:04:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 140096
IP address blocks: 185.188.5.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft
rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ef:55:f9:0f:e2:1d:14:9f:96:fe:54:fd:27:32:a2:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Nov 3 00:04:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f11f01d390dbac80d77ea44786518547823592b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2e:f0:e4:07:61:ae:0b:f2:0c:dc:0c:d4:cd:
87:58:78:4c:4a:13:f8:b5:0c:8b:41:5d:e5:71:4d:
c7:29:52:20:91:c7:84:1e:49:dd:3f:a8:21:c8:81:
d4:85:74:22:cc:c8:57:e5:84:5e:9d:b9:08:26:98:
bc:60:df:48:43:65:56:df:69:91:89:64:66:53:48:
6a:4b:89:be:c5:b7:53:69:0b:94:e7:66:6e:47:0c:
3c:30:63:96:cc:2f:5e:c7:30:8f:44:ea:5e:bb:f2:
72:1b:34:6c:97:eb:cd:2a:33:b8:2e:ea:a9:48:4b:
a7:bd:19:6e:93:ea:ca:e4:5c:72:34:05:ae:0e:f5:
6d:b2:56:9c:4f:c8:42:69:3f:9f:02:44:42:67:c5:
cf:6d:65:78:c0:48:e2:7c:87:13:bd:41:45:fd:85:
1b:39:58:57:4f:7b:64:70:a5:44:7f:8e:84:c2:60:
dc:f2:c5:ea:82:9f:fd:d5:67:0c:7e:2d:88:c8:9e:
cc:b7:9f:0a:20:28:a3:b1:c9:cc:58:7d:8e:f7:2e:
12:44:de:6f:d4:65:4c:ea:cf:04:f4:99:aa:a5:c4:
69:7f:40:4b:43:0b:ae:53:b9:bc:4d:bd:08:a3:16:
0b:11:8e:0e:bd:cc:a2:28:d0:85:64:b0:39:cb:07:
6e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:11:F0:1D:39:0D:BA:C8:0D:77:EA:44:78:65:18:54:78:23:59:2B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jxHwHTkNusgNd-pEeGUYVHgjWSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.5.0/24
Signature Algorithm: sha256WithRSAEncryption
10:55:13:3f:9d:ed:0b:e2:3f:56:d5:eb:4f:b0:f9:1d:ed:b9:
4a:20:bb:f9:49:7b:a4:0d:05:27:7e:47:71:53:ad:29:ac:dc:
fe:29:61:de:26:fe:7e:fc:34:6e:bb:8c:a5:a4:26:e0:01:c6:
c2:75:47:5b:49:e9:ff:01:cb:45:19:5c:99:28:eb:ad:e3:fc:
17:a8:a7:ca:a1:b5:fa:62:92:fe:58:c6:23:63:6c:75:73:b8:
7b:44:b2:31:43:75:88:89:83:e2:9a:bd:42:ba:49:69:dd:f1:
6d:81:27:d6:00:52:01:23:b4:88:e4:92:da:6f:4c:46:32:9d:
f4:9b:e6:c4:de:fa:9a:24:af:a4:54:03:8a:7d:d5:11:39:47:
af:8d:d5:e9:c0:33:b4:28:d5:2d:5b:72:9c:1f:0e:ec:8a:31:
7d:2f:0e:a7:25:a4:6b:f8:7c:a7:62:5c:47:6f:33:17:b9:26:
f6:6b:89:f9:b5:71:a2:ff:b6:02:db:0a:25:75:0d:75:52:0f:
c4:6f:3c:09:16:a1:f9:e7:02:96:84:3f:0f:8a:2a:25:44:4a:
76:97:99:9e:37:27:e1:1f:16:68:47:b2:1c:2c:6f:16:a2:bd:
fd:67:78:5f:54:00:59:88:e0:fd:30:f2:c0:b6:3a:23:d0:e1:
41:60:94:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:47:06 2024 by rpki-client on console-fra.rpki-client.org