Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/cHsi_8Rv16iSe0Wz3prrZ5XXPU0.roa
File: cHsi_8Rv16iSe0Wz3prrZ5XXPU0.roa (raw, json)
Hash identifier: Kl9mifeH0p7jmyv3K0184/Hnl0/5B3k0gVd4cStALB4=
Subject key identifier: 70:7B:22:FF:C4:6F:D7:A8:92:7B:45:B3:DE:9A:EB:67:95:D7:3D:4D
Certificate issuer: /CN=be43995289b6a5ca972c4b87b5e3149c32cb4430
Certificate serial: 018D45A77A003A374D63550AD18B4D1C69BE
Authority key identifier: BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/cHsi_8Rv16iSe0Wz3prrZ5XXPU0.roa
Signing time: Fri 26 Jan 2024 12:03:40 +0000
ROA not before: Fri 26 Jan 2024 12:03:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5607
IP address blocks: 91.103.34.0/24 maxlen: 24
94.116.0.0/16 maxlen: 16
94.117.0.0/16 maxlen: 16
94.118.0.0/16 maxlen: 16
94.119.4.0/22 maxlen: 22
94.119.8.0/21 maxlen: 21
94.119.16.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:45:a7:7a:00:3a:37:4d:63:55:0a:d1:8b:4d:1c:69:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be43995289b6a5ca972c4b87b5e3149c32cb4430
Validity
Not Before: Jan 26 12:03:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=707b22ffc46fd7a8927b45b3de9aeb6795d73d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:63:50:ed:af:29:bf:7a:52:dc:40:3f:47:6d:
83:96:39:6a:21:5e:e7:b2:72:23:c7:22:81:eb:1b:
73:f3:3e:8e:71:85:de:22:61:ca:cf:cf:fa:14:28:
54:c4:46:d6:9c:f1:12:74:33:6c:f0:04:71:15:a3:
3d:98:53:1d:87:ab:1d:c5:fd:24:7c:34:12:fd:9f:
37:c8:c2:9c:62:fb:80:2c:10:3a:3e:4e:66:55:aa:
43:88:c3:57:81:9f:56:89:b5:81:c8:ea:2d:b4:cb:
78:63:fe:25:ff:7e:ad:eb:d2:77:a1:e5:55:1b:2b:
d0:8b:63:cf:41:72:23:8e:a4:9e:ac:f0:f1:20:90:
12:ad:8b:24:f4:b6:bc:c8:ce:f0:dc:79:7b:09:6b:
0f:67:c7:3e:d4:79:63:15:1b:29:3e:cd:15:50:1e:
58:8b:1d:62:a9:ee:5a:f7:79:e5:88:4c:7d:1c:4b:
dd:8f:90:40:c1:f1:e3:71:53:19:d2:aa:68:e0:68:
eb:f6:53:f8:ed:eb:7e:6c:0c:b0:df:55:e1:42:76:
09:14:2f:c9:c4:22:a0:d3:65:eb:c0:f1:b3:06:e6:
fb:2d:96:68:d5:ba:fe:93:f9:d3:5c:af:03:d2:b8:
3c:af:9b:ae:93:48:8c:0d:bc:02:22:de:9c:bd:1e:
7b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:7B:22:FF:C4:6F:D7:A8:92:7B:45:B3:DE:9A:EB:67:95:D7:3D:4D
X509v3 Authority Key Identifier:
keyid:BE:43:99:52:89:B6:A5:CA:97:2C:4B:87:B5:E3:14:9C:32:CB:44:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkOZUom2pcqXLEuHteMUnDLLRDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/cHsi_8Rv16iSe0Wz3prrZ5XXPU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/764b34-0d98-454c-85a2-306045efcd68/1/vkOZUom2pcqXLEuHteMUnDLLRDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.34.0/24
94.116.0.0-94.118.255.255
94.119.4.0-94.119.23.255
Signature Algorithm: sha256WithRSAEncryption
39:9e:00:db:5a:06:cb:5b:c3:c1:f7:11:fb:69:16:43:10:5a:
ac:25:57:c2:3a:8e:ef:49:34:72:47:96:ab:2f:8e:be:e6:05:
25:07:32:bd:c4:8f:0f:08:ab:9a:0c:1b:66:5b:3a:47:49:6c:
43:3e:31:e4:36:6a:bf:01:0f:ab:d1:02:5b:ed:e1:c4:4a:49:
a8:e1:99:42:44:c9:47:08:19:ec:ce:6b:8f:c9:28:d5:5e:fb:
d9:8e:d4:ad:71:24:be:2a:6c:95:00:e1:9f:74:85:24:bf:44:
f7:a6:8b:3e:fd:e3:23:af:a5:ad:8a:83:65:c9:d1:97:fb:19:
58:0e:95:e6:87:d1:5c:55:3d:d6:35:c6:54:32:6b:ed:63:9b:
19:0a:54:4b:bb:d7:69:e9:bc:d3:87:87:60:24:d2:95:39:f4:
60:e5:50:3f:6a:e3:7e:32:0c:41:93:8c:e8:55:7e:41:a1:f3:
b3:51:b0:e3:8c:d4:ad:e1:28:8c:77:4c:e3:24:11:18:c0:c8:
f0:0f:1d:ae:69:b1:00:1a:76:1f:af:e4:19:69:79:07:6a:42:
d4:15:a5:11:a5:6f:59:60:06:7d:da:55:e8:57:96:b4:c6:85:
2c:c0:6d:4b:96:e6:97:d3:92:96:cf:0c:cd:6f:75:e3:ae:08:
41:28:f6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:05:28 2024 by rpki-client on console-fra.rpki-client.org