Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/ZNcZ6L6imD4fymMeD6TcDnM6hXM.roa
File: ZNcZ6L6imD4fymMeD6TcDnM6hXM.roa (raw, json)
Hash identifier: A0wl4JB7GiENDj6MwKGgkSFM8YsuIJhAlSQR1i0IK54=
Subject key identifier: 64:D7:19:E8:BE:A2:98:3E:1F:CA:63:1E:0F:A4:DC:0E:73:3A:85:73
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 018CC26D1622F93C5C7188A5D002CAB5CC55
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/ZNcZ6L6imD4fymMeD6TcDnM6hXM.roa
Signing time: Mon 01 Jan 2024 00:29:37 +0000
ROA not before: Mon 01 Jan 2024 00:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147293
IP address blocks: 146.19.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:16:22:f9:3c:5c:71:88:a5:d0:02:ca:b5:cc:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Jan 1 00:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64d719e8bea2983e1fca631e0fa4dc0e733a8573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c5:ee:38:07:26:cc:c0:09:4e:c8:4a:41:e4:
5c:8f:de:22:8f:23:85:39:6a:0d:7f:2a:3f:9f:ef:
0b:53:47:f6:7a:0a:40:c4:cf:c1:11:5a:02:ea:f0:
49:54:4f:49:ce:e5:29:4d:46:9c:d8:4d:1d:b3:4f:
ef:09:ce:e8:06:0b:05:f3:e8:04:ca:b6:00:6f:52:
34:0d:1d:9d:28:e1:fd:b7:50:7e:1a:5b:da:92:be:
58:56:ab:6f:bc:01:3d:09:ee:ce:b0:e3:ec:30:4a:
4f:1c:be:18:22:a8:01:61:d9:6c:42:1e:06:15:5a:
67:83:e2:bf:af:0e:aa:a9:3d:11:2f:4b:15:87:e0:
63:b4:bf:63:1f:60:12:0c:ba:50:2e:79:97:b2:81:
02:99:0b:fe:9c:89:ac:bd:a3:af:8c:5d:92:0c:53:
34:4d:12:59:79:fb:56:46:9c:80:47:c6:02:9c:35:
f2:65:3f:cb:5a:c8:ce:d6:1a:36:5f:d4:76:8a:07:
a3:e7:6b:71:2d:13:b1:a7:28:e8:f6:c4:50:a0:37:
3c:eb:6f:21:61:38:5e:76:ec:30:e6:2e:38:4f:6c:
55:ea:1b:8f:9e:4f:7a:70:8d:7e:d1:e6:4c:0a:84:
3e:ba:e3:a7:47:c4:ef:43:34:19:85:fd:3e:25:e5:
17:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D7:19:E8:BE:A2:98:3E:1F:CA:63:1E:0F:A4:DC:0E:73:3A:85:73
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/ZNcZ6L6imD4fymMeD6TcDnM6hXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.174.0/24
Signature Algorithm: sha256WithRSAEncryption
13:86:36:2c:8c:a6:6e:4a:ad:ef:55:39:6b:83:1e:5f:ce:d7:
96:65:ab:cf:e9:af:91:17:c8:d4:ca:76:19:33:19:f0:e4:54:
83:50:c8:57:05:05:c9:fe:73:b2:c1:4c:f2:f0:c5:70:6d:70:
81:45:5c:d9:4c:63:a8:14:1b:99:06:35:6d:58:17:71:11:5e:
aa:b1:14:d7:58:9d:23:b1:cc:1e:7b:25:21:c7:af:83:2a:d3:
44:80:e7:49:1a:0c:48:62:df:17:c7:70:1b:8f:9d:79:83:c7:
da:7d:45:19:d2:54:a4:83:a7:8c:97:d8:06:90:e6:7a:fc:d5:
f5:1e:a2:0b:49:8a:6f:96:98:6a:93:c2:ef:cc:98:4f:0d:49:
7c:ce:41:45:93:be:02:47:ee:2d:d9:41:ac:6d:08:38:cc:25:
99:9f:b0:a4:4f:90:1d:ca:b9:65:ff:e7:b6:c3:f8:e6:29:63:
8b:46:69:23:95:fb:aa:76:70:48:03:15:86:2b:84:e1:67:de:
b9:df:00:da:f7:b8:5f:e9:4e:43:5c:af:7f:5d:33:06:5f:8b:
0c:1b:9d:36:c5:95:77:0c:e7:53:22:c1:94:74:33:a1:f3:a5:
db:c0:c3:0c:89:22:e7:f4:73:dc:5d:54:19:9d:f9:c7:12:3a:
a0:ab:a1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:21:30 2024 by rpki-client on console-fra.rpki-client.org