Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/ixj4-pMPaRWK_Z0sj09VSlGYNHg.roa
File: ixj4-pMPaRWK_Z0sj09VSlGYNHg.roa (raw, json)
Hash identifier: 4FyAHKTWZehEvQZugsRrb5Pes0FYL6HV/60K2yj42os=
Subject key identifier: 8B:18:F8:FA:93:0F:69:15:8A:FD:9D:2C:8F:4F:55:4A:51:98:34:78
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 018CC9BC8CDD843AFEE481E10BA89F42862E
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/ixj4-pMPaRWK_Z0sj09VSlGYNHg.roa
Signing time: Tue 02 Jan 2024 10:33:46 +0000
ROA not before: Tue 02 Jan 2024 10:33:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16019
IP address blocks: 193.84.128.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:8c:dd:84:3a:fe:e4:81:e1:0b:a8:9f:42:86:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Jan 2 10:33:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b18f8fa930f69158afd9d2c8f4f554a51983478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d1:c6:cc:83:e3:e2:91:99:e6:7a:c0:bf:bd:
7f:f6:1c:ac:9f:84:34:89:db:3b:d8:6e:11:28:b2:
0a:02:cd:ed:7f:b6:27:16:13:05:32:71:50:97:98:
22:b3:88:15:10:01:00:9e:83:66:fe:dd:6e:fd:f1:
7d:59:fa:7c:72:de:45:81:47:0c:b7:5b:72:5d:d7:
29:72:da:c0:fa:92:7d:aa:3c:94:ff:e3:b9:79:a3:
bf:ab:89:60:af:4c:40:ca:6d:74:90:69:b3:fc:40:
bb:c2:40:a6:e7:6f:41:3b:f5:8f:3b:aa:ab:73:9d:
21:fe:94:da:72:c0:65:0b:8b:66:62:95:06:e5:83:
df:d7:3d:9c:5c:75:19:6e:e7:9c:17:25:53:3d:e1:
c0:a5:ea:fc:83:34:22:6a:9d:7d:5c:48:29:96:ab:
73:62:ed:5c:e0:50:09:b4:b6:96:37:26:f5:e2:a5:
f7:16:35:38:ed:20:ff:ae:c1:41:17:a2:ef:e3:e1:
33:22:35:8f:3a:8a:e9:66:cf:c4:d2:9b:eb:1b:37:
91:51:09:54:0c:b0:30:e9:72:67:5d:69:f0:ee:36:
ff:46:38:08:76:3e:17:ad:cf:70:71:8f:e1:b1:59:
e7:56:43:70:20:3c:14:55:4c:75:9e:48:0b:c8:0a:
4d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:18:F8:FA:93:0F:69:15:8A:FD:9D:2C:8F:4F:55:4A:51:98:34:78
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/ixj4-pMPaRWK_Z0sj09VSlGYNHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.128.0/23
Signature Algorithm: sha256WithRSAEncryption
89:47:25:81:f3:37:07:08:43:54:2f:cf:e6:88:07:ca:e9:c2:
ac:22:22:44:87:53:87:4b:8f:c9:ce:34:61:67:f7:6a:5f:19:
f4:62:82:d0:b5:b3:73:6c:ec:de:2e:67:b1:b6:e5:64:20:1f:
86:f4:69:af:6c:72:0d:5a:86:f4:d2:26:07:d9:57:3a:9e:c4:
5a:b0:b5:60:9b:80:f0:cd:df:b2:de:87:ed:50:8d:e1:bd:7b:
6b:ed:60:3c:a6:e1:36:97:16:34:32:39:b7:c3:2f:78:c5:c7:
23:4c:d5:2a:c1:83:3c:cd:10:4f:3a:73:dc:8f:00:17:66:f6:
c5:69:66:76:bb:32:a2:43:9c:db:5d:08:85:4d:28:59:65:d1:
64:5d:34:6a:fa:37:c8:e9:5b:b7:53:8e:af:bb:1f:79:85:a3:
83:a4:39:f5:43:80:04:f6:a7:fe:49:73:74:91:77:24:98:7e:
19:5e:2c:4b:76:a5:93:eb:37:b1:0a:ee:d9:4b:64:ff:05:43:
e0:70:90:08:0c:7e:84:11:cf:f7:2e:41:b9:3e:a2:d0:15:b5:
d4:a2:58:54:76:81:38:1f:30:1d:9d:4b:52:dc:e1:ca:f6:25:
dc:a0:5d:39:b7:85:16:cb:28:c9:f2:6e:f3:7e:47:4e:54:c8:
50:d5:b2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 16:42:52 2024 by rpki-client on console-fra.rpki-client.org