Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/QU21eDYv3e8gZZ00oA406e9-6Pg.roa
File: QU21eDYv3e8gZZ00oA406e9-6Pg.roa (raw, json)
Hash identifier: ydqdwz17HAKaVFnJaqWbyndxytSb3SqvaFJqizhsN7A=
Subject key identifier: 41:4D:B5:78:36:2F:DD:EF:20:65:9D:34:A0:0E:34:E9:EF:7E:E8:F8
Certificate issuer: /CN=5e7c7736945c29a77bacd5b18b0ff58751117bad
Certificate serial: 018CC6B81D5DDB5B9469071356A9474ED83B
Authority key identifier: 5E:7C:77:36:94:5C:29:A7:7B:AC:D5:B1:8B:0F:F5:87:51:11:7B:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xnx3NpRcKad7rNWxiw_1h1ERe60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/QU21eDYv3e8gZZ00oA406e9-6Pg.roa
Signing time: Mon 01 Jan 2024 20:30:04 +0000
ROA not before: Mon 01 Jan 2024 20:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48789
IP address blocks: 193.104.229.0/24 maxlen: 24
2a12:6cc0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/Xnx3NpRcKad7rNWxiw_1h1ERe60.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/Xnx3NpRcKad7rNWxiw_1h1ERe60.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xnx3NpRcKad7rNWxiw_1h1ERe60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:1d:5d:db:5b:94:69:07:13:56:a9:47:4e:d8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e7c7736945c29a77bacd5b18b0ff58751117bad
Validity
Not Before: Jan 1 20:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=414db578362fddef20659d34a00e34e9ef7ee8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9d:c4:da:94:ef:7e:91:d3:f2:bf:18:35:7e:
aa:81:84:4e:11:b9:7b:45:3e:c7:a6:7f:2f:22:5a:
50:46:5c:88:a8:97:98:1a:68:78:d6:e1:8b:b0:62:
a2:fa:82:48:8f:0b:6f:8f:06:61:68:c5:72:d0:a8:
e7:fb:e5:7a:93:33:29:39:53:ad:70:8e:8b:cf:68:
b3:cc:c3:c8:c7:4e:5f:87:1e:bd:81:21:05:9b:88:
d1:08:b7:48:5a:4d:4e:f5:1b:79:60:80:4c:e9:9b:
b5:63:40:7f:46:b6:2d:ff:fa:27:63:95:aa:71:7e:
a0:9a:64:ad:1d:2a:7d:f2:36:eb:e4:ae:6c:c6:b3:
13:9a:ef:80:ef:9b:cb:3d:ce:26:ab:09:75:40:0e:
de:77:22:f9:1e:85:72:bb:bd:87:32:df:c3:c2:49:
38:f5:63:c1:71:49:58:0b:d9:31:0a:02:55:a2:f5:
d0:8e:99:17:5f:dc:0f:1d:ab:5e:c3:ba:6e:40:ad:
de:c2:7c:03:c5:fe:39:fe:64:73:7d:1a:61:e6:b0:
3f:10:b9:e7:db:54:50:47:2c:81:46:e9:75:0c:e0:
22:74:55:3a:74:16:5a:76:e9:4f:6d:9a:70:e7:ca:
0e:4e:42:8f:f4:b3:9c:58:b8:fd:30:80:4b:05:16:
14:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4D:B5:78:36:2F:DD:EF:20:65:9D:34:A0:0E:34:E9:EF:7E:E8:F8
X509v3 Authority Key Identifier:
keyid:5E:7C:77:36:94:5C:29:A7:7B:AC:D5:B1:8B:0F:F5:87:51:11:7B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xnx3NpRcKad7rNWxiw_1h1ERe60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/QU21eDYv3e8gZZ00oA406e9-6Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/7bdd07-6e55-4a05-9d1b-eeedd99b8cc4/1/Xnx3NpRcKad7rNWxiw_1h1ERe60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.229.0/24
IPv6:
2a12:6cc0::/32
Signature Algorithm: sha256WithRSAEncryption
c8:26:3c:3c:28:22:ba:9f:fa:53:6f:ab:9f:cb:64:9f:bf:49:
87:ba:48:db:c7:7b:af:b8:1e:c8:bd:14:b6:eb:60:43:d5:7f:
88:1d:29:8e:b6:77:5a:1e:43:ff:bc:e8:41:89:4d:d1:ce:ab:
e2:99:a8:49:c4:ad:01:2c:e2:89:7c:1a:7e:37:df:e3:58:eb:
15:3b:13:e6:f7:3d:2c:f7:70:7c:01:22:fd:1d:1e:bf:72:b7:
fd:b9:09:d2:a9:30:0f:eb:02:73:06:6f:82:46:7e:29:25:72:
9a:fa:22:97:ff:d1:19:a7:03:da:01:86:26:d8:50:d3:7b:3b:
99:82:d7:96:66:51:b7:b9:99:a1:b8:00:68:16:34:fd:0a:dd:
7c:a3:50:4e:65:9d:3a:2e:28:56:3a:56:2c:4e:a9:9d:ab:4d:
db:9b:a8:fc:ad:ae:33:c4:f1:ee:a3:52:04:ae:d6:b3:38:cf:
9e:e3:ec:47:d0:14:52:24:c4:0b:82:41:92:c4:ae:53:62:bb:
25:7f:5d:d8:2d:d9:05:2d:d2:0e:7b:06:8e:02:1d:9d:44:37:
5e:5a:22:61:0e:97:29:35:79:97:ab:44:07:1c:a8:37:82:1b:
0d:0a:d9:d7:a7:bf:be:e9:8c:1f:1e:09:e1:8d:90:bc:90:ad:
7f:8c:89:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 19:24:49 2024 by rpki-client on console-ams.rpki-client.org