Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/e-TuRjXoqkUV5hSh69Xea1_zwp8.roa
File: e-TuRjXoqkUV5hSh69Xea1_zwp8.roa (raw, json)
Hash identifier: pZ6TU/oMst1Q4sArqbWFW1jEYg2igQsydkHY4MHKi5o=
Subject key identifier: 7B:E4:EE:46:35:E8:AA:45:15:E6:14:A1:EB:D5:DE:6B:5F:F3:C2:9F
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 019137186D7AE8088772A8D5045F977ACF7B
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/e-TuRjXoqkUV5hSh69Xea1_zwp8.roa
Signing time: Fri 09 Aug 2024 12:23:53 +0000
ROA not before: Fri 09 Aug 2024 12:23:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
2a11:1680::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:18:6d:7a:e8:08:87:72:a8:d5:04:5f:97:7a:cf:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Aug 9 12:23:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7be4ee4635e8aa4515e614a1ebd5de6b5ff3c29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:b8:9d:59:5a:ef:44:66:f7:1e:57:ac:68:
dd:35:e4:e4:a6:15:8a:a8:3e:78:06:8d:a9:26:ae:
8d:37:ab:72:7f:97:9b:3b:d4:9a:e1:f8:a0:54:56:
9f:f2:0f:dc:55:52:b5:68:e6:d5:3c:86:5c:58:a0:
00:21:d5:8b:e1:67:b9:bd:c0:6d:5c:ca:f6:6c:c3:
f6:c3:77:58:8a:80:7f:78:62:ce:8c:10:43:de:8e:
f2:69:13:6e:e0:ed:20:08:dc:e7:41:fd:3a:0d:47:
79:0a:ed:08:e0:41:a1:31:5c:1d:9c:04:1a:dd:89:
75:4f:2a:53:ba:94:b6:9d:44:e3:ad:c7:8c:74:8d:
e4:bd:87:49:ee:ff:55:7c:7c:01:91:89:30:39:6c:
ca:be:23:61:16:1f:2d:99:b3:00:55:6c:5c:3a:e7:
4c:da:5d:80:15:b5:a9:80:55:14:c1:90:9b:8d:d3:
2a:bb:d0:c9:ca:e0:a7:b2:b7:29:c9:f8:e4:e5:62:
14:f1:d8:56:d5:d4:11:da:7e:6b:a3:ac:a1:73:ef:
06:81:88:97:f4:81:54:5a:ea:69:ab:dd:e6:65:55:
8c:39:c7:ba:41:ac:67:7e:b6:8a:28:6a:62:45:b2:
b9:0c:b6:6b:26:23:bf:18:0d:7b:b3:cb:9c:97:ed:
cf:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E4:EE:46:35:E8:AA:45:15:E6:14:A1:EB:D5:DE:6B:5F:F3:C2:9F
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/e-TuRjXoqkUV5hSh69Xea1_zwp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
IPv6:
2a11:1680::/29
Signature Algorithm: sha256WithRSAEncryption
09:1a:0e:21:25:5e:da:6b:7d:8b:88:18:60:49:39:f1:4b:fc:
a4:83:6f:01:fb:08:e8:42:ce:b7:ee:01:89:23:b1:27:c0:97:
27:c7:2a:dc:1a:27:c6:ed:c7:c1:64:7d:dc:86:45:26:b5:82:
17:8b:f3:aa:e2:12:8a:e3:5a:ca:90:0e:18:a9:d5:3e:d2:42:
d2:7f:cc:e0:00:f8:e9:86:63:90:db:3b:2b:12:85:dd:45:e6:
68:f1:29:1e:2c:6e:f0:16:82:69:5e:8b:02:00:a2:0f:5d:98:
03:f8:12:4a:fd:3f:95:32:17:32:e4:d5:9c:f8:ad:b9:9d:75:
91:22:1c:1e:51:df:b7:df:07:f0:f4:6d:8a:de:ac:ab:7b:56:
4a:c2:36:2a:aa:53:6d:5f:0c:cf:b2:e5:58:c6:4a:7f:d6:37:
1e:7d:09:2b:83:4b:4f:c3:f8:08:25:ad:ec:b8:42:a7:e3:e4:
d6:1c:2d:b4:d7:a3:29:dd:4b:17:db:f2:ba:d8:1a:9e:dc:70:
73:29:b3:85:85:c4:16:3b:d8:52:8d:de:85:fc:72:96:2e:e6:
ec:a8:da:1d:0b:e6:68:2d:d1:d3:d8:60:03:d7:f6:4f:8d:d6:
e8:5a:23:9a:c1:17:43:75:d5:f3:bb:5d:8e:57:55:23:a4:0f:
a2:80:b0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:50:26 2024 by rpki-client on console-fra.rpki-client.org