Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/TMdvE5HBhSAmJkFUnk2SuiovQxk.roa
File: TMdvE5HBhSAmJkFUnk2SuiovQxk.roa (raw, json)
Hash identifier: /pOabDafx1ga0YspoUi/pelv0hXkB0C9XE/iC9fx110=
Subject key identifier: 4C:C7:6F:13:91:C1:85:20:26:26:41:54:9E:4D:92:BA:2A:2F:43:19
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 018E60D880852E9E75DB37273AB4646FF7F7
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/TMdvE5HBhSAmJkFUnk2SuiovQxk.roa
Signing time: Thu 21 Mar 2024 11:49:45 +0000
ROA not before: Thu 21 Mar 2024 11:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 87.121.59.0/24 maxlen: 24
91.92.24.0/24 maxlen: 24
91.92.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:d8:80:85:2e:9e:75:db:37:27:3a:b4:64:6f:f7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Mar 21 11:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cc76f1391c18520262641549e4d92ba2a2f4319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ca:a8:86:b6:ec:ff:4a:63:10:fa:5d:e5:ba:
13:6c:54:5a:d4:17:bd:88:0d:c1:75:1a:10:08:59:
5d:ec:14:df:60:c1:09:6b:fa:d8:05:1e:67:d9:d1:
d0:1d:74:8f:1d:c9:c2:97:e8:39:12:68:8c:df:a8:
2c:fe:c7:9c:57:33:fd:fa:6b:cc:84:de:cc:48:ab:
3d:07:54:e7:f9:bd:11:e5:0e:4e:1b:4a:c6:16:ed:
72:e9:3e:0e:3d:10:a0:2f:9a:4e:78:22:06:9c:3f:
3b:84:cd:35:c4:6a:4a:d7:ef:11:a1:f8:6e:09:5b:
80:86:cb:58:de:9c:17:be:4c:8c:57:3d:87:87:a8:
f1:dd:aa:11:a6:a8:86:b0:c5:de:eb:b3:c7:01:06:
fd:ec:7a:2b:64:62:8e:cd:c5:67:41:1a:a3:d4:3d:
31:67:73:13:b4:37:35:30:d9:0b:aa:b5:27:5c:51:
28:ee:b0:24:22:d4:36:ee:91:3c:f8:f3:8e:c1:3d:
e8:32:fc:6e:71:d8:1a:a1:f1:b4:24:c8:a0:0c:75:
cb:38:f6:27:07:32:21:71:f9:d6:17:77:8f:14:42:
ec:d4:15:df:72:43:c8:15:80:61:87:fe:83:b7:34:
3e:98:f3:32:d1:e5:1b:21:38:8b:a3:28:d4:33:49:
22:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C7:6F:13:91:C1:85:20:26:26:41:54:9E:4D:92:BA:2A:2F:43:19
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/TMdvE5HBhSAmJkFUnk2SuiovQxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.59.0/24
91.92.24.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:74:df:70:01:85:6f:05:1f:07:9f:c8:12:b6:80:5a:93:6b:
5a:2c:82:a3:36:4b:24:00:87:26:e3:f7:95:70:de:0b:27:e7:
8f:7f:b4:a7:0c:e9:9a:76:c8:55:03:2d:86:c1:08:5b:bd:a9:
b3:11:41:e4:65:79:49:a9:d2:95:0e:c3:30:3d:43:54:8f:b2:
80:f2:b9:e7:ab:df:2e:f9:17:78:a1:1b:13:04:ff:ad:df:2e:
dc:64:de:9d:b8:04:7d:cd:5c:da:f9:06:5b:07:86:ab:e2:35:
f7:43:8f:a9:72:50:49:db:e8:42:ec:5e:6b:b6:59:ea:53:35:
a2:10:a9:ab:68:b0:a8:52:46:d9:6e:84:21:04:d7:a5:c4:06:
4e:8f:0d:7f:b8:66:15:09:ff:11:c9:52:4b:ad:db:db:f2:45:
3d:53:31:57:ef:ef:7d:96:43:d4:3b:ff:42:e1:ac:c0:f9:ba:
76:78:e0:5d:87:4e:5e:22:7a:e8:d5:3f:49:76:3a:18:30:47:
28:b1:51:23:78:cb:5b:8a:70:5c:ff:4e:37:e1:01:a9:3d:1b:
04:f5:35:84:71:52:30:5f:b8:7e:41:58:e3:e6:7d:df:25:8e:
e7:68:1f:b1:ee:b0:50:44:cd:31:ca:fd:13:42:64:bd:fa:94:
e5:7c:df:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 07:51:17 2024 by rpki-client on console-fra.rpki-client.org