Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/F0-phcw45_cJBU0Lx0Wgku7JEFc.roa
File: F0-phcw45_cJBU0Lx0Wgku7JEFc.roa (raw, json)
Hash identifier: 5tEKyZUlI6qoQ14hu/BdaWRjlvsz0YCjSKe3xFRmtpM=
Subject key identifier: 17:4F:A9:85:CC:38:E7:F7:09:05:4D:0B:C7:45:A0:92:EE:C9:10:57
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 018CC424BC23488E12302F4E0EA5711A77DF
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/F0-phcw45_cJBU0Lx0Wgku7JEFc.roa
Signing time: Mon 01 Jan 2024 08:29:50 +0000
ROA not before: Mon 01 Jan 2024 08:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200296
IP address blocks: 5.56.135.0/24 maxlen: 24
79.143.85.0/24 maxlen: 24
87.236.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:bc:23:48:8e:12:30:2f:4e:0e:a5:71:1a:77:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 1 08:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=174fa985cc38e7f709054d0bc745a092eec91057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7f:18:c1:11:1b:00:e4:1a:db:1e:93:01:bd:
50:da:25:0f:86:ee:0e:f8:d4:c9:a4:b9:28:5a:d1:
24:62:3c:1a:d3:de:dd:1e:9c:96:f8:33:b4:6d:7a:
ea:5f:f1:3c:7d:f8:82:ec:e2:ab:07:46:fd:8f:12:
f3:63:77:dd:82:29:27:ad:27:59:e9:39:a9:e4:5c:
3e:fd:2b:e6:fe:f8:6e:d4:ff:be:87:8f:22:40:00:
00:4f:7b:e5:01:a9:d1:45:32:a8:24:e7:08:76:54:
1e:49:ad:2d:0d:43:5d:e3:5e:a3:4c:09:55:73:ef:
c0:73:1d:fb:b5:a7:11:7d:ba:51:c5:20:30:80:52:
34:5e:9a:85:30:61:24:9c:e4:45:f3:a4:23:db:93:
b7:b9:de:62:cf:0c:c1:02:62:e8:9b:a3:c4:8e:b0:
a5:4b:d3:07:b8:b1:80:23:6d:4d:47:f5:fe:16:b8:
cf:0b:78:fa:4e:c2:24:f3:b4:be:68:2c:e4:b6:25:
f6:61:88:cf:b6:08:fe:ab:c4:8c:e0:cd:10:ae:3d:
ee:2a:aa:0e:22:c5:37:7c:05:59:6e:44:51:06:07:
6c:df:b2:f3:00:b3:06:b1:83:c2:57:9f:70:05:56:
a8:9e:e4:b8:a9:a3:76:84:70:07:81:40:83:42:73:
fc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4F:A9:85:CC:38:E7:F7:09:05:4D:0B:C7:45:A0:92:EE:C9:10:57
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/F0-phcw45_cJBU0Lx0Wgku7JEFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.135.0/24
79.143.85.0/24
87.236.211.0/24
Signature Algorithm: sha256WithRSAEncryption
45:bb:d4:85:e0:01:45:91:d8:4f:2b:ad:03:18:a9:0c:f5:7b:
58:15:cb:29:06:87:59:c7:f2:23:12:63:8c:68:c3:af:12:f5:
90:1a:f0:12:2f:53:a5:88:25:d0:4c:fc:59:d0:c7:ad:d4:f5:
28:4e:6d:bf:d9:c5:73:4a:23:f5:6e:10:33:02:8d:d0:71:88:
38:bc:52:99:00:ef:c6:f5:5d:9e:fd:bd:98:97:5a:f8:69:2d:
8d:ec:e5:b0:4d:59:18:c3:62:76:b4:a0:66:41:01:e7:86:23:
38:b5:fb:b8:32:f5:e1:f4:9d:8a:36:d5:89:e7:4a:31:fe:72:
7c:80:fc:97:82:51:1a:d2:ec:5d:9b:1e:7a:ad:4a:e1:bd:6b:
be:ba:7f:d1:42:9b:75:2c:f7:fa:01:6b:bc:dd:0c:27:ab:3a:
9f:fc:aa:2b:24:c8:1c:25:a5:fa:f0:58:08:eb:1a:af:c0:bf:
d3:75:91:2f:fa:ad:a6:55:c1:e7:fb:55:9f:21:49:98:7e:06:
63:91:7b:6e:7d:9c:52:77:8c:57:af:0c:1e:e8:0b:b3:22:cb:
ae:9c:39:ab:d7:68:00:ec:f5:52:60:e7:47:78:48:50:a4:99:
1a:6c:ce:16:ac:ed:f2:fd:91:10:d6:e1:ab:07:05:1a:ac:26:
48:0c:fd:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:00:03 2024 by rpki-client on console-ams.rpki-client.org