Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa
File: 8edM_wRbz08p34QgPCrqma56NKw.roa (raw, json)
Hash identifier: oBT7whGbPyMUil8Vm8qqVor0gP6nsXSCAvrRyQLFMLE=
Subject key identifier: F1:E7:4C:FF:04:5B:CF:4F:29:DF:84:20:3C:2A:EA:99:AE:7A:34:AC
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018CC2DB13037219FF06C46A3049205A8D37
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15924
IP address blocks: 185.205.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:13:03:72:19:ff:06:c4:6a:30:49:20:5a:8d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1e74cff045bcf4f29df84203c2aea99ae7a34ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dd:b0:0f:f9:da:0d:2d:68:67:34:f6:ad:57:
45:3e:72:fd:f5:f7:07:94:af:fd:3d:d4:e8:f8:9b:
4f:77:ef:54:47:de:2e:b8:ca:67:41:4e:2d:79:f1:
f8:56:72:cd:88:dd:42:ef:5e:23:39:f7:db:6b:f3:
82:e9:42:9c:5f:d2:1f:07:b2:f3:2f:c4:87:e1:ef:
60:3f:c2:de:bc:f7:03:17:0d:90:a4:b8:d2:08:e3:
3b:bc:3c:6e:7d:d6:1a:9b:bc:02:78:c4:e1:31:16:
de:5e:de:fd:87:fd:12:24:d4:3b:0d:33:49:72:b3:
aa:2b:66:03:b7:b9:b4:51:b1:a8:5d:69:e5:85:19:
27:96:d2:54:10:96:5d:7d:7a:cd:1b:9c:4a:3d:c2:
3d:e7:65:fd:76:a3:e1:41:4b:cd:2b:64:78:55:1c:
db:a8:51:a7:7b:00:d8:06:05:fe:39:2c:84:a4:97:
d2:46:bd:9c:bb:e1:0e:07:55:4e:55:6e:f3:55:41:
f2:08:37:b0:fd:2d:2e:59:71:f8:fb:aa:ef:44:02:
44:4a:5a:62:9c:b2:b6:ae:2d:86:ba:6c:5a:e1:a7:
6f:20:32:c5:db:ab:ac:02:0a:1d:d9:5c:f8:3d:54:
ec:80:57:4a:1d:53:74:db:7c:59:f6:4b:99:da:fe:
2f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E7:4C:FF:04:5B:CF:4F:29:DF:84:20:3C:2A:EA:99:AE:7A:34:AC
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.17.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:dd:5c:46:b5:22:cf:b0:1e:b3:9a:96:c8:f4:74:92:58:06:
66:08:e1:f5:53:5e:71:5b:69:1d:60:18:7f:59:0d:66:98:13:
7d:11:7a:8d:d1:3d:39:09:82:51:6a:41:80:2c:01:55:5d:65:
d1:53:af:88:21:3f:1b:ca:23:3b:3a:e5:8f:c8:2a:be:83:a8:
37:7f:4c:bb:fe:58:80:d4:bb:8e:dc:60:5a:e2:03:bc:8d:a5:
06:76:78:14:c6:5a:9e:88:aa:e5:71:70:d4:a3:06:ca:6b:e4:
a5:64:bb:42:e9:9c:2a:ab:d8:40:99:f4:03:a4:34:bf:fb:3a:
70:67:57:54:74:5d:37:2a:4b:90:cc:79:99:64:65:6d:d0:93:
6a:e3:11:de:e0:56:66:4a:96:02:df:c8:3f:55:bf:15:02:18:
4f:4d:e1:3b:2f:9f:8d:fb:84:ea:9f:c0:77:9d:f4:31:e5:0e:
9a:f2:8c:25:81:04:dd:04:2e:c2:14:7e:c3:34:6f:d0:cc:5a:
f1:c4:13:36:1e:36:79:b5:9a:cf:14:09:eb:c0:d6:ae:c2:1c:
73:c1:88:67:c1:4d:9d:39:74:1a:98:9f:53:ab:b9:91:9e:00:
73:03:11:49:e0:f5:be:99:7c:4e:37:eb:70:7d:b0:75:98:4d:
16:77:b3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 07:50:02 2024 by rpki-client on console-fra.rpki-client.org