Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_RpTgE7vgjPdvrGqSj_f6TFLtwo.roa
File: _RpTgE7vgjPdvrGqSj_f6TFLtwo.roa (raw, json)
Hash identifier: x9z5slztfeF0e0u1dCk7PyIp2xBAiFcJFI0E++a/aR8=
Subject key identifier: FD:1A:53:80:4E:EF:82:33:DD:BE:B1:AA:4A:3F:DF:E9:31:4B:B7:0A
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC803044236458E35E71126E6E663D39B
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_RpTgE7vgjPdvrGqSj_f6TFLtwo.roa
Signing time: Tue 02 Jan 2024 02:31:30 +0000
ROA not before: Tue 02 Jan 2024 02:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208001
IP address blocks: 194.71.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:04:42:36:45:8e:35:e7:11:26:e6:e6:63:d3:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd1a53804eef8233ddbeb1aa4a3fdfe9314bb70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:96:f9:5e:61:ca:a2:0a:36:53:9c:b4:dc:2a:
51:f5:99:6a:59:34:3b:f8:21:bf:45:fe:0f:88:23:
9c:85:9a:71:2f:fc:00:56:f5:bc:ad:b3:f6:4a:bb:
d3:7c:f6:6e:04:1a:4b:42:fe:d1:fc:3b:fb:c0:86:
47:b8:88:f7:1e:49:3e:6b:f4:e6:cb:68:c0:b6:59:
bd:b6:53:2b:6a:6f:30:de:c4:00:2f:67:8c:af:1c:
16:f8:06:e7:b8:b2:04:c4:a8:c6:4e:60:62:14:f6:
a5:2b:87:2f:cb:d3:fa:0e:a5:de:de:54:44:97:45:
e6:7e:d1:91:79:3d:1d:51:8b:3d:36:91:7c:8b:44:
ef:05:bc:37:e1:6f:34:40:bc:a5:6d:05:88:bd:f6:
f5:2a:96:bd:55:26:1f:60:8d:ff:a4:75:5a:2c:7a:
84:a1:3e:b0:85:c2:9f:af:d3:86:5c:35:82:dc:52:
3a:99:72:ea:8a:81:9a:a4:da:e5:48:6a:03:9c:ad:
aa:01:d3:dd:f1:4c:df:19:b1:e1:da:9b:9c:e2:50:
2d:cb:4b:e7:f2:6c:c3:de:c2:b0:98:66:28:7f:bb:
17:5b:cc:b0:f1:22:80:4b:e1:9d:d7:1b:57:40:41:
be:a4:8d:e6:0e:0d:23:38:f4:65:4f:7f:8a:e4:95:
e5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:1A:53:80:4E:EF:82:33:DD:BE:B1:AA:4A:3F:DF:E9:31:4B:B7:0A
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/_RpTgE7vgjPdvrGqSj_f6TFLtwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.122.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:b0:34:9e:6a:03:e6:61:4c:76:ae:2c:dc:bb:8b:3e:2e:9e:
51:c6:7c:df:68:0a:fb:1c:78:57:fb:b9:24:25:96:7d:57:25:
2c:72:b6:98:71:cf:a6:70:3f:d3:21:6d:7a:79:35:1e:f3:5a:
97:f7:68:7b:56:16:88:53:d8:29:27:b3:5f:7c:75:d5:84:ee:
ec:a8:10:a2:27:f5:5c:3a:f9:0e:8f:c7:42:ee:60:a5:b5:f4:
f2:37:eb:b4:fe:af:ef:c6:a4:18:88:55:55:f4:d6:7f:74:a0:
fe:4b:dc:5e:ae:5c:aa:7d:33:97:c0:14:8e:f3:d6:db:51:f9:
6f:a7:84:1f:ba:73:53:d9:9a:2b:8b:3f:63:68:be:a5:ef:16:
05:a5:07:15:5a:5a:1c:53:68:b0:ca:a9:40:07:0a:56:e3:71:
fb:12:34:74:5f:d9:3f:05:c5:6b:1a:0c:dc:fe:98:22:58:6e:
44:5a:95:2d:cc:90:73:8e:b8:3f:f2:cf:ac:34:b6:33:9f:4d:
b0:30:ca:47:4d:8f:9c:b9:44:9e:6c:46:51:6c:25:82:1e:28:
f0:a0:b2:ea:0f:db:6f:01:3b:36:96:02:f5:49:46:6b:b1:8a:
f7:af:5d:d3:ab:d9:b6:d4:80:de:f5:47:57:9d:42:ad:a0:bb:
55:20:af:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:44:00 2024 by rpki-client on console-ams.rpki-client.org