Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/m-OJ2R-eV_ppzayaH1S26dUvv7I.roa
File: m-OJ2R-eV_ppzayaH1S26dUvv7I.roa (raw, json)
Hash identifier: cSZiVLduo7MMPPT9ayPwingc8VYLm6+YB66QEj8WlkE=
Subject key identifier: 9B:E3:89:D9:1F:9E:57:FA:69:CD:AC:9A:1F:54:B6:E9:D5:2F:BF:B2
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 018CC424565EEBFFA02BA6B3E091EA2B2998
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/m-OJ2R-eV_ppzayaH1S26dUvv7I.roa
Signing time: Mon 01 Jan 2024 08:29:24 +0000
ROA not before: Mon 01 Jan 2024 08:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48810
IP address blocks: 91.238.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:56:5e:eb:ff:a0:2b:a6:b3:e0:91:ea:2b:29:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Jan 1 08:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9be389d91f9e57fa69cdac9a1f54b6e9d52fbfb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:50:1b:49:b2:b3:21:ec:76:11:a7:9e:90:
62:61:69:46:0d:c8:7b:81:c4:95:0b:7e:c5:3b:7c:
30:b8:aa:8d:74:33:47:6c:78:73:3c:ee:2c:e5:85:
ad:83:73:b8:43:0a:c8:82:60:f9:69:4c:3b:77:ec:
f8:62:f1:0c:a8:79:42:aa:6f:aa:20:ea:2b:4c:bd:
d4:0f:7a:63:13:f4:fe:88:2b:7a:c4:5d:9c:2c:e2:
41:a4:7c:87:ec:ef:0c:c1:41:f0:be:40:96:10:a7:
48:ff:0e:72:1c:a7:34:28:3b:fc:dc:df:c7:00:6f:
3a:b6:ae:0d:19:c8:fd:52:9f:6c:94:16:dc:dc:aa:
43:a7:81:f1:5f:75:00:3d:dc:dd:30:61:53:7d:a1:
e0:12:f4:b4:c7:27:6c:ed:39:c2:31:2c:c3:1e:27:
06:c4:8b:0c:5e:8c:86:00:8f:34:1e:0a:6d:61:02:
4f:4e:48:aa:de:e3:d3:c1:4c:0f:59:1b:13:87:00:
40:8b:87:c3:ad:a2:42:2d:81:e0:3c:49:2e:67:02:
e8:e3:bf:44:13:05:d5:13:ea:67:a0:c7:05:ab:49:
d3:b4:c2:f6:03:05:ef:2c:a0:36:a3:cc:8c:29:ef:
0e:a0:1a:e3:32:0a:9e:89:47:39:04:34:49:cc:23:
b9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E3:89:D9:1F:9E:57:FA:69:CD:AC:9A:1F:54:B6:E9:D5:2F:BF:B2
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/m-OJ2R-eV_ppzayaH1S26dUvv7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.37.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7a:69:ed:1b:57:de:20:4c:4d:90:20:79:22:72:94:4c:c4:
e1:54:a6:5f:48:8f:3e:a3:26:b7:b7:09:ba:b3:cf:c5:d8:f0:
11:d2:01:df:ca:1d:1d:ab:52:f1:c5:aa:4f:c6:9a:bf:2b:60:
03:a6:9a:f8:17:5b:fb:4d:bd:ee:62:a4:5a:79:5c:b7:2b:d5:
a6:35:c5:d4:87:3b:90:ba:0d:43:45:c9:7c:29:16:6d:e3:1b:
8a:95:98:21:e6:39:c1:47:07:75:fd:e7:ad:9f:d3:b1:25:55:
3f:b4:b8:7c:88:72:94:5a:15:1a:76:62:db:5d:93:04:4d:cd:
38:0d:ed:18:14:19:ca:31:37:07:81:be:2f:29:30:92:da:8c:
77:38:48:bc:06:5e:ff:d3:1e:45:44:05:6c:b8:36:bd:a5:0c:
83:c3:59:ba:05:a7:86:ad:41:85:df:23:b5:b8:f6:24:67:14:
17:dc:65:bb:e9:75:89:7a:98:3f:52:80:c5:e6:3c:e3:55:f3:
db:99:0b:49:c8:89:0f:6e:9e:8a:91:f7:d1:69:b1:50:f2:4a:
d0:d3:ab:95:0c:80:21:81:81:48:2f:92:00:db:68:a1:57:63:
30:0d:71:97:2b:16:fb:a4:0d:3e:28:c9:7e:63:f6:bc:49:fa:
8d:c0:70:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 00:31:23 2024 by rpki-client on console-fra.rpki-client.org