Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/DNVxfpDGSUNqKv-bobTqAYY1GM4.roa
File: DNVxfpDGSUNqKv-bobTqAYY1GM4.roa (raw, json)
Hash identifier: x9YGFHRkG43RP4BW49ozQGkYJsq4ebX61fFE9z2j/U4=
Subject key identifier: 0C:D5:71:7E:90:C6:49:43:6A:2A:FF:9B:A1:B4:EA:01:86:35:18:CE
Certificate issuer: /CN=ce3847667510f4f2e59bb1b394ae27e8dad0dc97
Certificate serial: 0190727F86A974315AE17EB797F0118AD344
Authority key identifier: CE:38:47:66:75:10:F4:F2:E5:9B:B1:B3:94:AE:27:E8:DA:D0:DC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/DNVxfpDGSUNqKv-bobTqAYY1GM4.roa
Signing time: Tue 02 Jul 2024 08:11:18 +0000
ROA not before: Tue 02 Jul 2024 08:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34309
IP address blocks: 193.141.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:7f:86:a9:74:31:5a:e1:7e:b7:97:f0:11:8a:d3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce3847667510f4f2e59bb1b394ae27e8dad0dc97
Validity
Not Before: Jul 2 08:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0cd5717e90c649436a2aff9ba1b4ea01863518ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4f:5e:d6:83:92:45:15:d1:f1:fc:e1:6c:c5:
49:86:db:f3:93:f2:60:a2:08:5d:93:d6:9e:26:1e:
aa:17:f2:60:bd:d6:67:5d:3c:b9:06:b2:64:b1:80:
64:a0:24:47:fb:6a:c8:83:ce:05:8b:c4:d1:6e:9d:
1e:ac:bd:57:55:b1:37:6d:08:06:78:a1:5c:5d:5f:
66:a1:64:ec:01:9a:ef:70:bb:ff:5b:ac:fb:5f:15:
08:4b:55:5b:30:6f:fa:b9:5c:0e:30:6f:cd:a2:0d:
97:23:00:67:e4:7b:e8:22:48:5a:26:9c:9e:6b:a0:
fb:4a:cb:0c:69:e2:80:9d:ce:af:73:32:31:11:23:
aa:a3:f4:32:14:20:3c:7b:5a:b5:b8:55:d5:68:ab:
99:ac:60:58:fa:65:45:ec:ae:7c:86:4a:50:ec:e5:
00:14:b3:11:d5:17:dc:91:14:d2:48:2b:73:dc:40:
99:a5:27:2e:8e:8b:e5:e2:65:24:2d:b4:0d:4e:a4:
cf:25:ad:8d:8d:be:5e:ec:32:66:18:bb:bf:ee:54:
26:b2:80:ab:c4:30:21:ba:e8:5f:08:64:12:ca:97:
da:fe:79:11:72:a7:ac:78:0f:4b:6e:2e:4c:fe:9d:
4c:ef:60:0f:71:86:63:31:e0:9d:9f:be:98:15:b9:
91:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D5:71:7E:90:C6:49:43:6A:2A:FF:9B:A1:B4:EA:01:86:35:18:CE
X509v3 Authority Key Identifier:
keyid:CE:38:47:66:75:10:F4:F2:E5:9B:B1:B3:94:AE:27:E8:DA:D0:DC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/DNVxfpDGSUNqKv-bobTqAYY1GM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/14f2a8-d3b7-443d-ac3b-4ba44377bd86/1/zjhHZnUQ9PLlm7GzlK4n6NrQ3Jc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.96.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c7:01:2d:22:eb:71:d4:48:b8:48:46:2e:58:2d:1b:a1:f8:
a2:35:31:29:03:fe:e3:dd:00:06:96:38:d7:0b:b0:68:89:6c:
3a:25:a6:0a:f5:0a:c5:a2:88:ba:8c:c6:bf:f6:9a:68:0b:47:
c0:13:8a:53:5b:1d:f2:3c:df:e9:9e:26:15:b4:a0:ad:36:23:
eb:a7:8b:d4:50:3d:92:af:29:74:f1:63:a2:b0:23:5c:ba:ed:
e8:d2:87:46:9d:2a:6a:eb:a8:97:92:4d:9f:05:b4:19:9f:09:
99:12:05:26:aa:00:fa:eb:04:6c:07:e7:35:8e:d8:51:28:63:
9c:aa:44:f0:ec:b4:9d:6a:1e:c8:68:48:26:56:9f:f0:5b:f8:
b1:b5:08:39:82:9a:a2:99:85:f9:8a:99:8d:6f:0a:fe:c6:00:
7d:78:9b:bd:b7:b5:e8:bb:20:9f:6e:44:f3:56:de:49:57:e3:
30:62:2c:7e:a3:ca:c1:7b:98:96:e7:77:c4:7d:7f:c3:d3:6b:
3a:8b:12:3a:ba:bb:be:a4:f3:a7:bf:79:3a:77:be:1f:b5:6c:
84:ed:c6:4b:0c:4c:d3:eb:f7:36:9d:25:e9:2d:62:6b:c2:f7:
76:a6:7e:d4:fe:50:a5:dc:c4:84:59:f0:c5:e0:85:4e:9a:2c:
77:4c:5c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:27:12 2024 by rpki-client on console-fra.rpki-client.org