Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZGWaOiGICSU9SdopkGoMBmMhA0Y.roa
File: ZGWaOiGICSU9SdopkGoMBmMhA0Y.roa (raw, json)
Hash identifier: nNMiJ73dcU8eBBUVLJJAJ9VnYD4pge4pPF3dLXE+BqM=
Subject key identifier: 64:65:9A:3A:21:88:09:25:3D:49:DA:29:90:6A:0C:06:63:21:03:46
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802DCDA5757D380B84A5BDC52023C85
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZGWaOiGICSU9SdopkGoMBmMhA0Y.roa
Signing time: Tue 02 Jan 2024 02:31:19 +0000
ROA not before: Tue 02 Jan 2024 02:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8995
IP address blocks: 192.165.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:dc:da:57:57:d3:80:b8:4a:5b:dc:52:02:3c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64659a3a218809253d49da29906a0c0663210346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c8:c4:c0:d8:3c:c0:3f:49:5d:8a:c7:e7:28:
1c:dd:26:14:e1:5a:ac:81:de:bf:62:c1:96:a8:92:
60:d4:c4:c1:cd:fa:8c:2c:99:67:0a:2c:fd:5a:52:
27:db:32:c6:65:38:4d:15:c0:10:09:fd:14:9e:1f:
dd:86:4a:20:e1:ee:09:f5:ea:29:f6:b8:b1:13:a9:
7e:f9:49:9a:e2:ea:db:19:6f:da:17:99:41:ce:90:
35:57:8a:be:21:06:3c:f2:94:92:c3:ed:36:41:b3:
1b:d8:72:2f:9f:6e:8a:09:9d:1e:79:74:64:3f:c2:
cb:17:10:4c:1a:36:f1:96:db:f4:8f:5b:f9:63:49:
df:dc:c2:6f:de:dd:8f:b1:75:18:8e:08:c8:85:07:
99:2b:bb:a2:06:f1:f7:f2:45:2f:1d:c8:77:2d:8f:
53:99:87:25:8c:94:2d:a9:f6:6e:ac:c5:d7:85:c1:
58:cf:7d:b1:58:53:d9:10:d3:8a:c7:47:04:27:ca:
73:9d:8a:b2:ed:7b:c6:8e:84:16:a8:f3:55:6d:17:
29:bb:85:85:ec:ff:fe:55:cf:32:22:6b:37:c5:c3:
d0:cf:8d:28:e5:89:57:5c:ba:84:75:05:76:35:c0:
f1:7c:99:d7:57:ef:86:3b:c3:81:1e:6e:4d:d3:fe:
fb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:65:9A:3A:21:88:09:25:3D:49:DA:29:90:6A:0C:06:63:21:03:46
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ZGWaOiGICSU9SdopkGoMBmMhA0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.165.82.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:da:13:c8:51:68:22:71:3f:98:f1:39:ea:bf:ff:af:9d:96:
9f:ce:c5:43:3b:6d:c9:d0:75:89:ea:9d:44:d9:b9:a5:63:2b:
e8:f6:f3:9a:49:0a:d4:19:db:19:1f:0c:e8:38:44:c9:aa:b5:
b5:54:1a:24:f0:fd:e9:13:ae:33:76:5e:e4:9b:70:43:82:4c:
37:b0:1a:3b:80:19:20:2f:1a:67:f7:68:42:c1:56:b4:08:19:
d2:15:29:26:b2:3a:6f:20:36:5a:73:b7:68:d0:2e:b9:06:72:
e1:73:01:f1:e7:fa:0e:9b:ed:9a:d1:39:49:81:0f:5e:ca:01:
8b:b7:70:06:e5:f8:fd:4b:00:a3:aa:12:8e:5e:b1:68:70:14:
95:06:e1:21:f4:e1:e3:04:b1:ed:eb:1e:ba:73:19:72:8d:7f:
84:34:d6:01:3c:58:db:16:85:18:d7:82:7b:10:08:c3:fa:13:
4f:b4:d7:61:91:90:f1:6f:ec:ae:8f:71:26:a0:c3:c1:1e:93:
96:dc:dd:8d:60:00:75:23:22:a4:23:b8:76:f6:52:20:e3:c9:
82:8f:65:6a:f8:bb:14:de:f5:bc:d9:f3:47:3f:66:39:61:52:
c9:7d:cb:91:0d:12:80:8c:56:c2:c2:a9:f1:e0:fb:2b:a3:61:
b9:49:72:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:04:54 2024 by rpki-client on console-ams.rpki-client.org