Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Vn28edPl7ZwkU_ekocvlh8gUFNs.roa
File: Vn28edPl7ZwkU_ekocvlh8gUFNs.roa (raw, json)
Hash identifier: HjycG5KU3+R3J7DdxdDcnjnFjwh/u4mUBzFMoqMeT2s=
Subject key identifier: 56:7D:BC:79:D3:E5:ED:9C:24:53:F7:A4:A1:CB:E5:87:C8:14:14:DB
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 019247A9464CB21F27AC443E4DE6FB467324
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Vn28edPl7ZwkU_ekocvlh8gUFNs.roa
Signing time: Tue 01 Oct 2024 10:38:48 +0000
ROA not before: Tue 01 Oct 2024 10:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 93.152.217.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:47:a9:46:4c:b2:1f:27:ac:44:3e:4d:e6:fb:46:73:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Oct 1 10:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=567dbc79d3e5ed9c2453f7a4a1cbe587c81414db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2b:96:bc:51:f0:68:4d:c2:38:04:5a:43:44:
71:ec:12:b5:20:3e:3a:d7:4c:01:87:26:39:c3:de:
7a:67:f8:50:b5:b5:58:68:47:9f:66:07:fd:42:cb:
ca:c5:51:c7:d1:5b:ca:d6:5d:6f:94:16:6b:14:41:
cf:01:d2:22:66:9d:25:fd:53:e3:5b:5d:d5:f4:ce:
02:6c:35:8c:10:79:d6:8b:65:84:75:62:1f:1e:4e:
a4:00:82:b4:f3:04:f6:08:29:3c:cc:c7:10:94:b7:
b3:45:9b:40:5f:89:4d:92:f2:72:33:32:89:56:f2:
36:91:ce:46:e5:af:ec:a8:9f:46:05:67:08:e9:1b:
1e:76:f7:c3:64:89:b4:15:f4:32:e3:a3:6c:c0:2a:
cd:0a:b7:64:4d:ce:15:b0:f3:29:3b:9d:b3:68:5a:
eb:05:c7:01:7a:89:39:bd:25:c6:39:e2:f3:e9:84:
10:3c:1d:60:d0:83:3c:8c:24:4f:e4:02:3a:65:18:
75:ee:2f:58:98:05:8f:95:46:6c:59:a4:fd:f4:7c:
1f:e1:d6:85:07:12:2d:8d:a7:c4:59:37:4b:71:ad:
6e:2c:7e:f4:b7:95:29:47:ea:29:a7:e3:d1:d6:b2:
c8:9d:20:2a:f6:75:e2:be:12:a8:d2:be:b8:eb:8b:
3e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7D:BC:79:D3:E5:ED:9C:24:53:F7:A4:A1:CB:E5:87:C8:14:14:DB
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Vn28edPl7ZwkU_ekocvlh8gUFNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.217.0/24
93.152.230.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:bc:8f:77:57:d5:59:42:71:02:7a:0d:7b:f3:34:b2:81:f2:
02:03:76:79:f4:57:8a:67:59:4b:2a:bf:a8:bb:ff:24:88:e3:
8a:aa:b4:7d:15:92:2b:d2:d7:21:61:08:4c:c5:72:cf:ad:6c:
94:b9:1f:09:38:2b:85:2c:92:11:34:d0:de:19:3f:51:89:e6:
b1:fc:99:79:cd:4a:1d:64:2f:83:64:eb:71:78:c0:26:c4:77:
bf:7d:03:3a:61:c7:20:a4:c4:0e:ba:75:12:be:e6:87:e8:3a:
87:17:65:a7:e5:60:01:68:43:b3:15:7f:64:1c:05:93:3a:e8:
9a:50:68:79:73:d9:d4:a0:58:d6:d7:45:cb:45:bb:fa:68:02:
34:18:dd:3d:95:28:d8:09:3c:cc:0d:7a:d2:90:7e:3f:0c:2f:
01:1b:64:8b:a2:77:b8:bf:e1:45:e2:77:80:30:23:c6:c9:c5:
cd:2d:5f:3d:95:58:eb:20:13:69:00:ae:8f:16:54:b4:24:33:
70:3a:52:da:46:23:7a:8a:6d:0d:6e:39:74:65:08:d8:7c:21:
a3:38:ba:6c:a2:3d:86:eb:85:c0:59:41:10:45:67:e5:85:89:
c3:6f:dd:d1:03:da:bd:02:6b:70:9c:ab:75:a2:fe:4f:d8:27:
f3:7d:81:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:57:54 2024 by rpki-client on console-ams.rpki-client.org