Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/HqpwgnrsF-V3kYZ6FDVb0qB25j4.roa
File: HqpwgnrsF-V3kYZ6FDVb0qB25j4.roa (raw, json)
Hash identifier: 9x9dO/tlqHGiCXBP3iYOptvoU6PH/Ez3bg7+i9ZwDp4=
Subject key identifier: 1E:AA:70:82:7A:EC:17:E5:77:91:86:7A:14:35:5B:D2:A0:76:E6:3E
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC7951BF0885021543C3071078948949E
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/HqpwgnrsF-V3kYZ6FDVb0qB25j4.roa
Signing time: Tue 02 Jan 2024 00:31:27 +0000
ROA not before: Tue 02 Jan 2024 00:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47247
IP address blocks: 81.25.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1b:f0:88:50:21:54:3c:30:71:07:89:48:94:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1eaa70827aec17e57791867a14355bd2a076e63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:54:51:89:99:f5:c9:38:41:03:41:dd:d9:
df:18:c8:02:06:ca:6d:4e:a6:64:aa:69:40:00:08:
8a:9a:87:e0:f7:3b:5e:5c:c7:78:0a:23:65:2d:f1:
9b:0a:96:0c:b4:95:1c:c5:f4:7d:a9:34:c3:93:0e:
6d:af:8d:f4:e7:13:83:a2:70:f4:b1:86:bd:ba:ca:
ef:c6:b6:fa:7f:8f:f4:2c:66:66:11:10:49:55:f6:
41:5a:c1:95:f1:0c:f6:24:36:70:7d:8f:ec:53:c7:
83:44:bf:56:6e:d0:06:1b:5a:be:67:86:c7:46:64:
7b:73:74:51:44:43:2a:4f:aa:8c:62:f3:4c:b1:c5:
a0:99:f0:4b:b3:41:7c:b2:5d:cf:1c:97:8c:70:dc:
76:87:7e:8e:e0:f4:88:96:d6:e1:2c:bb:43:75:94:
eb:7a:e4:fb:4a:d9:81:cb:99:dc:1a:cd:46:89:15:
6f:66:9e:f4:91:83:95:ec:56:19:bf:0e:ca:bf:d5:
bf:fe:1a:f7:c4:43:16:3d:7a:99:2a:f0:77:34:27:
80:1f:66:9a:5a:69:26:03:41:57:db:d3:0a:76:32:
6c:32:df:d5:8c:9a:6c:af:d5:c1:2d:86:32:64:33:
90:07:1b:e4:27:c5:ae:98:c6:9a:03:23:59:b8:fe:
72:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AA:70:82:7A:EC:17:E5:77:91:86:7A:14:35:5B:D2:A0:76:E6:3E
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/HqpwgnrsF-V3kYZ6FDVb0qB25j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.68.0/24
Signature Algorithm: sha256WithRSAEncryption
40:96:60:ef:eb:46:f9:38:f6:3d:bd:7c:c4:1f:6a:58:d0:43:
e4:5b:ff:20:cb:78:69:1b:f9:83:50:9b:19:a5:6e:40:9c:e4:
fc:42:59:ab:fd:73:ca:ad:fd:9e:78:15:d7:d0:a8:4b:2a:dd:
e1:48:f5:f1:8e:da:77:d4:e1:f0:59:c0:28:36:68:9e:7e:19:
29:ca:21:0c:c0:65:cf:74:dd:a2:73:ce:34:54:0d:90:6e:e8:
4c:5d:70:8f:4f:54:0b:66:bd:e0:6e:37:db:08:f7:a9:af:bf:
cb:4b:e9:25:07:8f:4c:f3:4b:c4:0c:46:6c:d8:eb:1a:36:31:
90:96:a5:17:07:3a:9f:65:52:00:37:54:0d:2f:ab:3e:f0:44:
09:d9:8f:1d:23:30:a2:f8:ce:a8:2a:89:4d:7a:a6:fa:e0:2b:
58:3c:84:a8:b5:51:a7:84:17:b2:7a:fd:a8:6f:80:9b:02:5a:
23:d5:ce:b4:e5:6f:5e:e0:14:ff:6b:df:70:9b:7e:e5:99:f8:
98:1f:00:33:bb:34:de:02:5d:59:f6:8a:08:84:e4:28:f6:41:
c5:63:96:c1:89:20:8a:59:85:55:cf:03:21:75:73:25:d7:3b:
ff:44:41:0f:e3:db:ce:85:fa:40:dd:ff:db:64:a1:42:3b:37:
c7:ab:3a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:56:20 2024 by rpki-client on console-fra.rpki-client.org