Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/rYzuwR4586nl9p-UV8DOTeS28BM.roa
File: rYzuwR4586nl9p-UV8DOTeS28BM.roa (raw, json)
Hash identifier: FO2q8VF9a0s0uo9/CT49mc8daG25eCf5QAJadumaE+4=
Subject key identifier: AD:8C:EE:C1:1E:39:F3:A9:E5:F6:9F:94:57:C0:CE:4D:E4:B6:F0:13
Certificate issuer: /CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Certificate serial: 018F6210270ABE3AD548D407F6B809F634D6
Authority key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/rYzuwR4586nl9p-UV8DOTeS28BM.roa
Signing time: Fri 10 May 2024 10:32:56 +0000
ROA not before: Fri 10 May 2024 10:32:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198394
IP address blocks: 80.84.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:10:27:0a:be:3a:d5:48:d4:07:f6:b8:09:f6:34:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Validity
Not Before: May 10 10:32:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad8ceec11e39f3a9e5f69f9457c0ce4de4b6f013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:63:9d:1d:f0:9c:98:a4:34:55:43:eb:fa:fc:
b1:5b:55:c6:14:9b:c1:7e:36:e8:f8:89:4c:d5:a3:
2e:fa:19:ab:f7:6b:05:b2:bb:ad:ce:f7:f1:5b:91:
ec:fe:80:15:18:e2:bc:8f:5b:b2:da:0b:39:70:88:
39:08:8d:ab:8e:44:12:62:64:2d:f2:c2:0b:ff:12:
aa:bc:17:84:a6:e2:0d:1e:d9:e5:5e:c1:2a:07:da:
12:b3:78:21:94:4b:0c:c2:bd:1d:0d:31:eb:ec:99:
4d:12:0e:53:b9:5a:e5:a4:d3:a1:81:ec:38:f8:81:
d8:f3:92:b7:79:fa:02:e7:a0:f2:0b:fa:58:99:e4:
08:f5:c7:10:8c:37:f0:98:2e:58:06:44:d5:4c:d6:
b4:ab:6a:df:b4:ac:97:3c:46:d1:49:92:2d:e5:8c:
9e:9f:7d:59:c7:ce:14:a7:cb:cd:5d:61:ae:29:d0:
30:32:d6:d4:4c:96:58:b0:df:e6:2a:ab:f3:4e:ab:
2f:a0:fd:02:68:1a:e9:c7:9b:78:cb:e6:62:dd:9a:
d2:9c:1c:96:7d:47:93:82:85:ee:5b:43:2c:2d:30:
d8:91:5e:0b:06:e1:24:b5:07:d9:ab:ba:0c:4f:55:
a9:10:f6:84:8c:4b:4b:e8:5f:86:48:02:d8:73:90:
8f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8C:EE:C1:1E:39:F3:A9:E5:F6:9F:94:57:C0:CE:4D:E4:B6:F0:13
X509v3 Authority Key Identifier:
keyid:EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/rYzuwR4586nl9p-UV8DOTeS28BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.146.0/24
Signature Algorithm: sha256WithRSAEncryption
44:87:59:58:69:0d:7e:7f:fe:94:fd:f8:4c:2e:43:77:c3:d7:
b8:94:4a:43:52:14:ca:c6:80:14:b7:3d:c3:32:d2:51:6f:45:
21:46:9c:56:9a:77:8e:6f:82:e6:ab:2e:11:9f:c0:66:58:59:
e8:ef:39:8d:32:76:6f:09:b0:b8:9e:41:71:3c:eb:38:2a:e5:
8f:b7:b0:85:6a:82:73:31:36:ed:4f:ad:a0:a9:db:d0:7a:e8:
ac:cd:4c:3b:dd:5c:b0:4c:1f:9a:9f:24:11:c9:40:e6:92:8b:
09:7a:f4:33:30:81:d3:ac:c9:e4:6e:77:dc:ff:82:4c:82:0b:
f2:bb:ce:28:eb:6c:bc:ff:15:05:57:0a:02:b8:fb:21:e2:29:
9a:74:72:90:d5:07:c3:b5:36:d1:86:a9:1a:1b:5a:b8:1d:df:
fb:69:f8:ba:a7:a1:88:77:4d:3b:57:71:1e:9a:d6:cf:67:50:
4e:b4:ed:f9:0b:bb:17:08:d1:7d:91:07:69:44:7e:f0:5c:db:
3d:45:35:41:c8:ab:b3:f7:13:3c:34:a6:0e:82:38:39:89:83:
15:54:dc:78:1c:26:e5:90:ef:4f:eb:b6:e9:d2:5d:e2:b6:50:
2d:ee:1f:95:f8:6e:f2:2f:1d:6a:41:f0:21:ae:8c:07:f6:86:
8e:1c:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:29:06 2024 by rpki-client on console-ams.rpki-client.org