Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/AdQEpwyXXtV2-WL9Ch5cOfruRYI.roa
File: AdQEpwyXXtV2-WL9Ch5cOfruRYI.roa (raw, json)
Hash identifier: i6qMGuKsfk/MzkytFogVloPQxuD0TyjpaNzRaWrr34Y=
Subject key identifier: 01:D4:04:A7:0C:97:5E:D5:76:F9:62:FD:0A:1E:5C:39:FA:EE:45:82
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 018CC64B6EDC739AB2E1E21CB905CB62F0EA
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/AdQEpwyXXtV2-WL9Ch5cOfruRYI.roa
Signing time: Mon 01 Jan 2024 18:31:21 +0000
ROA not before: Mon 01 Jan 2024 18:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60455
IP address blocks: 195.69.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.mft
rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:6e:dc:73:9a:b2:e1:e2:1c:b9:05:cb:62:f0:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 1 18:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01d404a70c975ed576f962fd0a1e5c39faee4582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:20:b0:4c:f8:4d:52:92:d0:e0:6b:42:b7:
ff:60:04:f4:b2:92:e1:6c:7b:95:07:b1:3e:5c:e4:
02:ae:15:0d:be:8c:7f:68:46:cc:99:e5:db:57:ae:
e5:54:ab:35:43:bf:ec:27:03:d4:8d:d7:6a:8d:d7:
11:62:08:57:36:f5:b9:3e:c7:6e:a1:06:bc:b4:b1:
8b:f9:bb:4e:1e:9e:a2:3b:53:50:88:63:2a:6b:59:
5e:30:34:1b:2e:8c:59:d6:3f:df:78:25:dd:75:e6:
77:d9:9d:7c:ea:4a:42:04:b5:a1:ca:0e:a4:8f:9f:
9a:ae:2d:21:47:3e:0d:64:a3:0e:0b:c9:70:c7:c5:
75:04:d4:21:15:16:a1:77:0c:63:a7:3a:4d:66:d9:
b9:20:ab:80:47:65:c9:1f:88:1b:2e:d3:29:4a:80:
e3:16:3f:ad:02:04:9d:ab:ff:a4:02:29:33:1b:48:
f3:ab:55:85:35:55:7f:85:b0:5a:98:0c:d9:18:c1:
b4:2a:85:93:5d:75:56:a8:86:01:c1:7b:f0:04:f3:
68:8c:bb:3b:40:db:89:14:cf:25:8f:8c:61:4b:ab:
26:53:be:e2:69:e0:a6:14:c6:be:83:2c:03:f4:ff:
97:a8:d3:13:c6:39:12:a3:29:25:57:81:ef:fb:27:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D4:04:A7:0C:97:5E:D5:76:F9:62:FD:0A:1E:5C:39:FA:EE:45:82
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/AdQEpwyXXtV2-WL9Ch5cOfruRYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.187.0/24
Signature Algorithm: sha256WithRSAEncryption
22:56:ad:e1:55:18:c7:7f:0a:d5:ae:d9:50:ed:62:2d:05:42:
a7:41:2e:ad:30:b7:47:ee:0c:e7:99:71:28:1c:ec:ff:f6:78:
91:9c:83:cc:94:0d:83:92:93:6e:27:35:27:0e:76:7f:ce:29:
bb:9a:a2:82:1e:2e:4c:cc:8d:ca:9c:ba:07:83:16:2a:3a:d3:
f3:b5:73:38:2a:07:55:c6:e9:7f:7a:88:cf:7e:0f:aa:07:ae:
0a:2c:c1:03:e3:44:41:74:cd:89:1c:54:a0:86:31:6b:8a:9b:
56:7f:8b:2f:de:00:62:7a:e7:98:f8:ff:29:64:cd:cf:e1:f7:
e3:36:71:56:1e:51:4c:46:e7:c9:c6:10:37:25:30:89:ca:a9:
20:b1:6e:c8:eb:b3:4a:29:47:ad:69:a6:e5:fc:a3:a6:a8:58:
58:2c:d5:59:e2:64:c1:49:1a:a6:a3:7a:f1:f0:2c:1d:94:d1:
e7:72:d4:1e:37:87:63:b4:55:5b:9e:18:ee:1d:3c:ff:3f:d6:
20:c8:9d:86:ad:a8:b1:f4:dc:51:60:bc:6d:3a:6a:7c:7a:1f:
63:66:15:e0:a7:1a:24:02:cf:0a:e8:e3:29:52:d4:3f:a5:ca:
5d:17:63:64:34:63:e3:e7:6e:a2:1d:f4:c0:f7:c3:75:e0:90:
ea:ce:00:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 16:05:06 2024 by rpki-client on console-fra.rpki-client.org