Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/eUw1tXGZOIXWRt52uY67pQOM1S4.roa
File: eUw1tXGZOIXWRt52uY67pQOM1S4.roa (raw, json)
Hash identifier: pJk9qSmey8ru+nVaaYmmBoTvhYu+bUbiXgo1Ppo/JJM=
Subject key identifier: 79:4C:35:B5:71:99:38:85:D6:46:DE:76:B9:8E:BB:A5:03:8C:D5:2E
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 018CC492D64AD41DBBD157F2C4CBAD97C71E
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/eUw1tXGZOIXWRt52uY67pQOM1S4.roa
Signing time: Mon 01 Jan 2024 10:30:06 +0000
ROA not before: Mon 01 Jan 2024 10:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16262
IP address blocks: 94.159.109.0/24 maxlen: 24
94.159.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:d6:4a:d4:1d:bb:d1:57:f2:c4:cb:ad:97:c7:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 10:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=794c35b571993885d646de76b98ebba5038cd52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:59:a0:13:1c:2a:6f:81:5d:27:a5:37:c0:66:
8a:7f:d1:a3:ce:5b:23:32:2b:ae:72:c3:24:aa:04:
85:48:70:3c:a2:73:89:fd:e1:25:bf:6d:5d:4f:0b:
02:96:16:42:00:35:2f:59:96:e4:79:cb:62:b4:8a:
71:6a:ce:93:49:63:c4:74:f0:6d:fe:e1:c2:6e:73:
bd:60:67:5f:5b:91:8e:a4:50:d8:94:ab:60:1d:0b:
07:98:51:34:d5:b1:62:6d:91:8c:74:24:5d:38:3d:
22:72:50:5a:08:e3:b5:e3:c1:50:b4:7a:15:64:e7:
4f:df:f7:54:13:61:cb:1a:e6:64:7a:06:f7:e8:7f:
13:f8:2f:f2:65:e9:f8:94:dc:39:ab:cc:68:64:15:
15:a9:ef:1b:66:ed:24:c4:78:e4:42:4e:ec:4c:9f:
0e:66:6b:c6:ba:0c:a6:be:7f:8b:0c:8c:34:d9:05:
39:ef:03:a6:f7:6b:1b:60:ea:58:19:c5:f3:a3:01:
ef:23:19:a6:64:52:c3:ff:3c:d0:ff:ab:cc:9e:f3:
69:e7:78:b1:44:c4:82:64:fc:c7:5e:25:af:a1:78:
46:60:1e:79:e7:ab:2e:43:89:a4:9b:74:c3:d4:6e:
0d:bc:2b:23:06:2f:44:88:49:84:8a:e3:53:28:bc:
4e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4C:35:B5:71:99:38:85:D6:46:DE:76:B9:8E:BB:A5:03:8C:D5:2E
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/eUw1tXGZOIXWRt52uY67pQOM1S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.109.0-94.159.110.255
Signature Algorithm: sha256WithRSAEncryption
21:56:a0:94:15:17:05:a5:4d:54:cf:6e:f2:97:27:0f:72:0c:
78:52:ca:f9:25:38:60:3c:8a:e6:d1:96:53:31:f5:00:ba:dc:
30:41:46:83:70:4f:ec:4d:aa:bf:ad:6d:9d:82:9d:b6:fa:bb:
f0:f2:24:b0:cb:b1:60:c7:3c:74:bc:6a:64:7e:88:33:b9:43:
dd:79:d2:e8:bc:0e:5b:2d:a2:7c:00:5a:4b:98:a7:77:05:38:
c0:ea:c5:5f:80:36:84:a2:47:c2:5a:b7:b3:b1:01:e9:98:dc:
95:69:6c:f6:e3:33:51:2e:aa:05:a4:d5:a2:2f:e5:71:f7:a7:
d2:38:b0:2e:d7:8d:df:32:2e:fb:b3:73:a5:ab:5f:04:28:9e:
05:0a:bb:4f:67:e4:d9:b8:03:58:35:cf:4e:b8:ec:bf:e2:35:
c5:f9:a1:f1:b8:73:07:8f:19:1d:2e:34:5d:8c:e4:e8:51:93:
d8:f9:79:cc:35:27:08:b7:09:54:eb:bf:d8:30:ce:5d:20:03:
d7:27:a6:16:f6:34:c6:0c:51:58:55:af:ca:35:7d:84:d4:0e:
ae:fb:9e:de:2d:17:60:a7:5e:f4:f8:59:ec:88:bd:9b:93:eb:
85:00:e1:ae:1d:38:f5:b1:0b:94:0f:7a:94:fb:90:92:96:a6:
cb:1b:0f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 07:12:54 2024 by rpki-client on console-fra.rpki-client.org