Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/J3felz2QutEZIqm52BySKt44WhY.roa
File: J3felz2QutEZIqm52BySKt44WhY.roa (raw, json)
Hash identifier: OSE9/OKab0TD8jDx2ZccFVYTms50ub+hSqKVrRfb7ko=
Subject key identifier: 27:77:DE:97:3D:90:BA:D1:19:22:A9:B9:D8:1C:92:2A:DE:38:5A:16
Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Certificate serial: 018CC26D37B468CF3184E53FDAA13EDDA40B
Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/J3felz2QutEZIqm52BySKt44WhY.roa
Signing time: Mon 01 Jan 2024 00:29:46 +0000
ROA not before: Mon 01 Jan 2024 00:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50819
IP address blocks: 185.18.226.0/23 maxlen: 23
185.102.88.0/22 maxlen: 22
2a0c:eec0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:37:b4:68:cf:31:84:e5:3f:da:a1:3e:dd:a4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Validity
Not Before: Jan 1 00:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2777de973d90bad11922a9b9d81c922ade385a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3c:cd:5c:ae:db:81:da:fd:9e:5e:93:57:a8:
e3:d2:f8:69:d3:bf:0c:98:6e:a1:55:2a:fa:c6:4c:
55:0d:8c:b8:ba:8e:4f:94:a4:3b:f7:16:10:76:70:
da:c2:5e:1c:c4:b6:39:9f:47:eb:70:96:6e:91:0b:
55:59:61:c2:0c:7c:9f:6d:50:5c:45:f1:dd:82:6b:
7c:92:b9:05:e3:93:f8:6a:c3:90:3a:1c:7d:c1:d7:
a1:09:28:47:1a:4e:53:82:93:be:3f:c8:5b:7a:a7:
1e:2f:bc:70:0b:16:48:60:99:8a:32:5d:5c:b8:55:
ca:cf:4d:fc:01:34:d9:3d:25:3d:75:22:05:35:32:
db:5d:2f:cd:f4:d1:9f:31:2e:49:0e:a1:31:4c:ac:
40:64:8b:b8:25:e8:de:ed:ff:41:18:46:0d:07:2b:
a9:d5:5d:be:61:fb:df:14:64:e2:54:1a:33:e2:08:
17:9a:4e:84:35:2b:2f:7e:a6:65:13:9a:9a:8f:25:
75:09:7d:99:32:78:99:05:81:d9:89:4a:32:06:82:
d1:a8:9d:19:c2:3b:93:46:e7:34:67:7b:eb:93:c7:
ec:40:27:a7:64:9e:aa:5f:09:08:f1:11:01:ba:c6:
5a:f5:d9:3b:41:e7:54:57:85:13:a7:31:41:5f:73:
3a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:77:DE:97:3D:90:BA:D1:19:22:A9:B9:D8:1C:92:2A:DE:38:5A:16
X509v3 Authority Key Identifier:
keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/J3felz2QutEZIqm52BySKt44WhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.226.0/23
185.102.88.0/22
IPv6:
2a0c:eec0::/29
Signature Algorithm: sha256WithRSAEncryption
45:8f:9e:2b:aa:08:5f:ca:e0:08:79:f0:9e:8f:b0:bd:b4:f9:
f1:7a:77:47:87:80:a3:d4:41:71:88:71:82:ca:b5:e1:9a:57:
13:11:0f:98:99:c6:e4:23:b7:7d:5c:51:7e:4b:7f:6d:c7:cd:
cb:dd:4d:06:44:95:61:e2:4e:54:bf:ef:42:73:fb:21:8e:d4:
1d:b9:9e:e1:36:dc:99:c7:30:48:31:0b:64:74:c5:ae:32:83:
2e:47:54:73:84:be:e3:77:75:e7:6d:8f:17:1a:32:51:9f:58:
c1:ea:f6:71:b7:85:5b:14:32:ef:1d:38:36:6e:77:c2:9c:fa:
ec:59:be:40:6e:eb:38:9b:fa:da:7b:67:25:09:7c:19:c7:80:
2a:f8:27:9f:ea:d1:2c:27:76:41:2b:6b:aa:2a:23:41:a1:a2:
7c:5a:0f:4a:67:4d:d8:c7:c9:6a:8c:8c:94:24:b2:aa:cf:c7:
de:d7:34:dd:e4:32:18:7c:45:6c:87:50:ed:16:e2:ca:75:a4:
9c:88:eb:ef:af:c6:90:22:93:be:58:c9:24:32:d7:5b:df:c5:
c8:95:10:ea:ca:e9:5b:5c:1e:89:40:5a:11:07:23:2e:55:6a:
1e:aa:d0:ad:a1:6a:78:42:d9:6d:c2:a2:1b:2c:2c:56:98:22:
f8:55:ed:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:05:02 2024 by rpki-client on console-fra.rpki-client.org