Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HIT6VSYihz9pFPQLbr15kRYcGQ4.roa
File: HIT6VSYihz9pFPQLbr15kRYcGQ4.roa (raw, json)
Hash identifier: fS3Hfd8YJ+Jtk/U0pXFb5aH2P4dLzahbcq93gvwvzHM=
Subject key identifier: 1C:84:FA:55:26:22:87:3F:69:14:F4:0B:6E:BD:79:91:16:1C:19:0E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018D40C8191478A821C72DDCA36A10C4FE28
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HIT6VSYihz9pFPQLbr15kRYcGQ4.roa
Signing time: Thu 25 Jan 2024 13:21:11 +0000
ROA not before: Thu 25 Jan 2024 13:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198463
IP address blocks: 193.182.180.0/24 maxlen: 24
194.68.125.0/24 maxlen: 24
194.132.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:40:c8:19:14:78:a8:21:c7:2d:dc:a3:6a:10:c4:fe:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 25 13:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c84fa552622873f6914f40b6ebd7991161c190e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2c:c1:5d:54:29:51:7e:d6:4d:78:f1:20:99:
ff:28:0b:64:40:25:cd:31:d0:0b:84:8c:53:79:9f:
f4:0a:b3:6d:26:c4:13:15:d5:6d:e5:03:1a:d1:0e:
38:20:c2:9b:2f:06:45:71:17:60:d4:28:f0:75:99:
49:05:96:5c:14:a1:eb:15:91:80:b2:6c:36:c9:58:
92:c0:8e:85:e0:4b:a8:97:e9:8e:15:2e:24:05:2c:
49:39:4b:0f:01:2c:07:db:5d:24:24:cb:a1:cf:c2:
7f:a8:fd:24:39:f2:59:87:38:98:c7:ee:0b:90:d9:
18:41:dd:a0:43:a8:df:fd:1a:cf:85:24:d7:f3:53:
2d:1b:92:6f:84:9a:30:44:c0:dd:6b:c0:15:d1:36:
6f:b2:ea:c6:d0:c2:12:b3:9d:01:88:2b:a4:cb:1d:
9c:e7:2b:7d:72:b8:d9:3e:58:04:2d:46:2a:30:18:
26:02:79:8b:88:5d:53:29:9b:14:a1:42:fc:7c:37:
b8:3f:07:5e:f3:0d:43:8b:43:d3:05:95:68:53:14:
f3:ed:e2:78:5b:e2:02:09:a4:79:c4:02:13:3c:65:
27:a5:93:43:55:4f:dd:28:7b:79:55:45:a8:fa:ef:
01:4a:60:5f:4d:8c:ba:cc:82:be:f1:88:f1:25:0c:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:84:FA:55:26:22:87:3F:69:14:F4:0B:6E:BD:79:91:16:1C:19:0E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HIT6VSYihz9pFPQLbr15kRYcGQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.182.180.0/24
194.68.125.0/24
194.132.214.0/24
Signature Algorithm: sha256WithRSAEncryption
61:18:17:13:1e:8d:34:e9:b4:3b:a0:ee:7a:7d:ee:3e:48:fa:
9b:fe:70:49:ed:ae:dc:80:f4:59:74:ac:36:b7:f2:a4:35:b2:
ff:38:f2:b8:c1:e1:e6:b0:cf:ea:4e:d0:c6:dd:f6:5a:4d:34:
f5:5f:0a:e5:b0:72:96:89:0b:41:d4:be:bd:2f:ea:4d:39:21:
c6:57:9d:0c:fd:2a:19:4a:f3:8c:8e:78:f5:32:ed:5f:9b:55:
40:c7:6f:b7:01:24:b8:bf:c1:1e:94:f7:b0:85:ee:92:c9:d5:
81:d4:64:a6:e8:38:80:1f:74:0e:94:83:08:96:13:1b:31:11:
9b:a0:59:24:38:31:57:cc:e2:42:4e:b6:a7:a9:79:27:c3:51:
0c:b5:80:a1:2b:63:47:2f:ab:9b:f7:46:8b:6f:0e:62:7f:95:
9c:ef:17:fd:e2:cc:87:56:58:03:6d:97:c7:44:f6:8d:da:15:
69:9f:a5:81:00:6e:af:5a:06:c6:af:08:a3:6a:02:4f:05:6c:
b3:4c:d3:d1:f3:83:03:d3:a1:2d:1a:10:f7:bb:a8:30:66:c8:
a5:52:2a:a3:57:08:0c:46:72:1e:c0:c5:55:65:44:49:58:da:
8e:5e:7f:ca:ec:33:dd:0d:67:9d:1a:ee:16:91:46:c1:e8:42:
72:8c:2c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:10:30 2024 by rpki-client on console-fra.rpki-client.org