Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/X-Ieyj2RaaZP05A5UI3Qddpt6LQ.roa
File: X-Ieyj2RaaZP05A5UI3Qddpt6LQ.roa (raw, json)
Hash identifier: slzeUckGP6Le2EzwyrEjMqJByKlrffMYk2xl3jme/fM=
Subject key identifier: 5F:E2:1E:CA:3D:91:69:A6:4F:D3:90:39:50:8D:D0:75:DA:6D:E8:B4
Certificate issuer: /CN=80615315dc750c03e60fc36a750c5e3ff66eac94
Certificate serial: 018CC492EDD69A81898E6A0C99EEBD8CAA9C
Authority key identifier: 80:61:53:15:DC:75:0C:03:E6:0F:C3:6A:75:0C:5E:3F:F6:6E:AC:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/X-Ieyj2RaaZP05A5UI3Qddpt6LQ.roa
Signing time: Mon 01 Jan 2024 10:30:12 +0000
ROA not before: Mon 01 Jan 2024 10:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25446
IP address blocks: 93.183.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:ed:d6:9a:81:89:8e:6a:0c:99:ee:bd:8c:aa:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80615315dc750c03e60fc36a750c5e3ff66eac94
Validity
Not Before: Jan 1 10:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fe21eca3d9169a64fd39039508dd075da6de8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:df:70:04:4d:d5:f1:75:a4:c4:f2:bf:7d:8b:
ee:02:d2:3d:e4:c7:bc:c4:7b:56:a4:de:34:e9:c3:
93:e4:63:18:dc:60:2d:fd:b6:45:4b:24:87:81:96:
cb:9c:78:90:00:fd:6f:bc:4c:82:d4:00:ec:3c:05:
db:6d:7b:81:8c:0e:be:1e:c4:c1:3e:76:f1:b1:a3:
20:bf:e0:0b:4d:37:1b:e4:ec:3b:d1:8c:33:8e:70:
fa:99:68:85:f6:e8:aa:27:2b:ab:76:0e:f9:46:e5:
8d:59:91:4b:2c:9e:71:7a:4d:8c:56:f5:b1:1e:ad:
07:5c:25:08:a9:58:63:2d:79:6e:88:03:39:09:05:
9b:5d:df:33:88:9f:1c:28:6b:bf:eb:1b:16:a4:17:
ab:00:11:7e:bd:21:75:2a:3f:10:7f:b4:fd:93:7e:
16:c6:76:d5:1c:92:9c:93:25:73:64:16:72:8d:87:
ee:0c:1e:12:88:02:34:21:20:25:f9:24:0d:05:f7:
f6:c8:2b:a1:29:29:d6:30:4f:54:20:59:54:ea:17:
62:f5:06:8c:38:0d:2b:09:0b:9e:c3:4f:df:9b:66:
16:b9:7f:bc:59:0c:9b:ed:c5:28:4c:a8:20:a0:35:
96:61:77:c3:91:e4:83:36:df:b8:f0:78:ff:20:d0:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E2:1E:CA:3D:91:69:A6:4F:D3:90:39:50:8D:D0:75:DA:6D:E8:B4
X509v3 Authority Key Identifier:
keyid:80:61:53:15:DC:75:0C:03:E6:0F:C3:6A:75:0C:5E:3F:F6:6E:AC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/X-Ieyj2RaaZP05A5UI3Qddpt6LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.183.104.0/24
Signature Algorithm: sha256WithRSAEncryption
47:87:dd:a2:97:97:fa:66:ed:79:20:34:88:5d:a7:62:c0:60:
2f:69:a1:db:c7:d8:e5:83:b2:4e:ca:91:3a:c9:78:76:07:c4:
b3:03:d2:20:23:51:75:20:ff:55:2a:9f:75:42:0d:42:fc:c5:
6e:30:0d:6b:d9:fb:4f:68:bb:45:89:3e:93:a0:5d:7b:8a:d3:
ce:2e:ec:18:29:bb:49:c8:1e:ed:b7:b5:31:92:04:71:6d:40:
d1:81:eb:f2:5d:f8:fb:d1:e6:0e:84:47:0e:1f:ff:fb:7d:28:
9b:7b:b9:b8:7f:f5:d1:20:87:7a:d7:80:b4:7f:ad:69:b3:27:
b4:7c:8a:5f:1d:38:b5:a2:cf:16:15:fc:c9:35:bd:4d:2b:4e:
d4:55:6d:e6:42:47:0d:df:ec:b5:e0:71:e5:cf:5b:15:bf:2e:
a9:9b:b7:d0:56:27:ae:95:95:7d:50:ac:15:90:29:c0:f6:3a:
89:28:51:22:5d:ec:19:41:d7:55:a1:eb:ce:c9:29:89:ae:2e:
84:f0:ff:e3:43:10:9f:a0:de:17:9c:b9:e5:ab:cd:00:33:56:
69:66:f6:e8:30:f7:38:b4:ed:49:df:a7:e3:71:9c:ab:2c:10:
c9:9b:9e:7e:0f:52:e0:6b:b1:02:2b:a3:f4:cd:05:37:44:3a:
bf:6d:2e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 14:03:36 2024 by rpki-client on console-ams.rpki-client.org