Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/j_O_CBfyWZJiXVR2A8gd1DEl6O4.roa
File: j_O_CBfyWZJiXVR2A8gd1DEl6O4.roa (raw, json)
Hash identifier: zNWMntowec5Ri5fKjxwlpZH02mUij1J/29/yBtcbbr0=
Subject key identifier: 8F:F3:BF:08:17:F2:59:92:62:5D:54:76:03:C8:1D:D4:31:25:E8:EE
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018D844169333B279E374F834A5A758BC9F9
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/j_O_CBfyWZJiXVR2A8gd1DEl6O4.roa
Signing time: Wed 07 Feb 2024 15:48:15 +0000
ROA not before: Wed 07 Feb 2024 15:48:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 192.71.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:41:69:33:3b:27:9e:37:4f:83:4a:5a:75:8b:c9:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Feb 7 15:48:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ff3bf0817f25992625d547603c81dd43125e8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:44:f8:1a:90:6f:39:03:d8:8d:04:44:ea:41:
bc:06:87:bc:7a:d7:d6:45:d8:09:05:90:75:10:58:
54:dc:1d:34:6e:59:e4:2c:49:42:1c:f9:39:81:ff:
c4:e8:19:4e:5f:44:3d:c9:06:b5:3b:39:03:ea:6c:
e4:60:ba:a6:3f:db:a3:31:94:f7:04:27:a2:a3:69:
46:9d:2a:ae:c9:15:4f:71:fe:41:43:f6:d2:de:37:
d6:45:2e:3c:7a:27:de:dd:9c:51:a8:cf:b9:8b:20:
b2:a1:15:8c:de:d8:41:d0:a2:b3:00:f2:4a:e0:c4:
7b:ac:c6:87:c3:1c:95:a0:a1:b6:38:3e:dc:e3:13:
0a:ec:e8:39:73:37:86:d8:7e:64:36:fa:a0:55:7a:
d4:6e:cd:c4:1f:71:a8:01:8d:cd:2a:5f:c4:6d:76:
24:b8:bf:d2:6e:f5:5b:24:6a:b4:83:b9:49:8c:2c:
e8:72:16:32:ef:c4:25:7a:ad:1e:66:10:3a:d9:cb:
da:b1:3e:a4:83:54:7a:81:96:14:97:02:33:54:4f:
6d:a6:93:84:21:85:e7:e9:34:9e:78:94:37:07:ad:
84:88:ef:a1:0c:de:ed:2b:3a:fd:f7:8d:a8:46:df:
e0:10:fa:2a:db:c5:43:92:50:f8:36:5e:34:69:6a:
7e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F3:BF:08:17:F2:59:92:62:5D:54:76:03:C8:1D:D4:31:25:E8:EE
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/j_O_CBfyWZJiXVR2A8gd1DEl6O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.41.0/24
Signature Algorithm: sha256WithRSAEncryption
64:75:65:8f:49:8e:24:1e:dc:3d:30:f4:d7:22:0e:cd:01:84:
ca:12:5f:19:85:87:fa:59:6d:c3:f1:bc:0b:6d:b9:7a:1d:15:
c3:14:60:bc:2a:ed:24:d1:04:3b:47:54:9a:f5:c9:fd:07:8c:
38:21:96:2c:5c:fb:92:6b:12:c7:1d:25:f7:6a:3a:41:16:0e:
d2:a3:36:a7:c8:44:a2:5f:bc:8d:d1:de:6c:59:0a:5e:0d:b5:
94:9e:a1:0c:de:e3:a5:99:17:13:69:4a:01:6d:a0:61:1b:a7:
ee:dd:39:1e:ba:81:27:0f:e7:7b:11:59:22:63:ba:99:dd:15:
c3:89:79:39:8c:8f:21:af:54:60:f4:10:f1:ff:b0:30:e6:91:
e5:1f:e9:5d:46:fb:fc:50:07:79:31:dc:b2:0a:04:a9:11:8b:
56:fa:76:c4:a3:b7:fa:f4:0d:56:33:1a:02:05:fc:e0:a4:83:
72:2d:5c:b0:79:97:49:4f:2b:d9:16:7f:a7:7d:f4:bd:a8:fe:
4f:ba:19:1f:07:47:a1:11:f9:17:3b:90:a4:0d:97:be:17:20:
50:b7:7a:ff:7b:73:5c:4e:19:7e:03:a7:86:b1:af:dd:9a:45:
a2:7e:4a:0c:c3:57:7d:96:dc:4b:75:54:28:25:06:67:8c:db:
4b:b3:8e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:31:58 2024 by rpki-client on console-ams.rpki-client.org