Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/anpEspPmzUdaUW8kgWaqlA3yM6w.roa
File: anpEspPmzUdaUW8kgWaqlA3yM6w.roa (raw, json)
Hash identifier: ZmiXrlwtqI238ce8VgPcSbKppM+T9EDcz3H+VB1wsrc=
Subject key identifier: 6A:7A:44:B2:93:E6:CD:47:5A:51:6F:24:81:66:AA:94:0D:F2:33:AC
Certificate issuer: /CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Certificate serial: 018CC26D1F537FCDCCB447C4EDE589818F32
Authority key identifier: FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/anpEspPmzUdaUW8kgWaqlA3yM6w.roa
Signing time: Mon 01 Jan 2024 00:29:40 +0000
ROA not before: Mon 01 Jan 2024 00:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204568
IP address blocks: 185.209.70.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 04:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:1f:53:7f:cd:cc:b4:47:c4:ed:e5:89:81:8f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Validity
Not Before: Jan 1 00:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a7a44b293e6cd475a516f248166aa940df233ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8b:be:34:f5:f8:e0:10:4d:76:2d:70:16:8b:
34:7f:e0:20:56:b0:b3:c9:94:56:c5:03:2b:37:80:
21:1f:4c:db:06:9c:d4:8b:d2:76:fe:ca:35:b7:d5:
b6:00:5b:67:27:5c:ba:ec:8f:49:ac:aa:06:dc:1c:
af:a5:90:6c:fd:07:48:78:ff:e8:30:c7:b0:35:a6:
19:6a:3e:8e:c4:00:69:aa:a5:48:62:2e:39:8c:22:
b0:a4:88:76:e5:52:95:bd:9d:67:b2:44:1d:8d:0a:
41:21:ed:76:e8:b1:aa:77:b4:d3:05:9e:ab:3c:21:
b0:7a:3d:c6:10:6e:a5:d9:1a:96:7a:0a:50:13:2e:
2a:b9:ef:fa:24:b0:1a:41:76:3a:2d:3c:26:08:65:
5b:eb:c6:c9:ff:02:55:0d:0d:11:fc:fb:43:7b:70:
0f:4a:65:10:e4:d4:af:34:81:9e:b1:42:1b:9c:29:
17:3f:4d:09:c9:9a:f1:74:c2:06:42:93:ae:5a:8b:
d4:37:3e:3e:13:bf:b7:99:7b:35:bd:3a:ef:21:ef:
ba:3a:3e:aa:cd:7f:fe:f8:46:ea:31:51:b6:53:f6:
cb:01:22:8d:28:47:26:b9:2c:37:67:b9:57:b8:19:
24:8b:d7:69:f9:03:9f:2e:bc:30:40:ad:ed:06:9d:
50:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7A:44:B2:93:E6:CD:47:5A:51:6F:24:81:66:AA:94:0D:F2:33:AC
X509v3 Authority Key Identifier:
keyid:FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/anpEspPmzUdaUW8kgWaqlA3yM6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.70.0/23
Signature Algorithm: sha256WithRSAEncryption
43:e1:7e:88:e5:69:21:80:66:01:c0:1f:8b:18:c2:f0:ff:c3:
33:5f:75:58:fc:dc:bb:ac:45:8b:9f:ef:e3:0f:4b:48:79:c3:
19:9a:ef:58:86:9d:dd:69:ca:14:7d:37:4a:65:07:d4:03:29:
09:65:b2:ff:fc:02:5d:98:e1:7f:24:c2:f7:54:19:1b:d4:03:
1b:29:d0:0d:bf:a5:56:0b:b0:21:11:ec:ff:08:bd:16:dd:4f:
72:40:7f:73:3f:be:b5:96:68:7f:26:83:40:e3:f1:ef:ff:d0:
df:69:4e:8a:05:09:bd:5e:f3:ef:92:00:96:8c:52:5d:1b:40:
59:72:06:14:66:3b:94:55:93:8b:46:68:1f:b9:4b:c2:4a:da:
00:c7:3f:4f:1d:3d:d4:54:48:53:4f:d7:52:98:75:97:c0:a0:
0b:22:e9:08:74:24:ae:87:a8:b9:d5:07:dc:a0:bf:14:4e:4b:
9d:3d:13:43:a1:38:3d:d8:af:5e:ae:82:7b:d9:8c:d5:32:a9:
9f:d5:5a:18:d0:16:80:4e:a6:24:93:32:27:f7:2a:56:81:c9:
e1:2d:5d:6b:80:63:71:84:ff:12:ef:49:d9:6a:c2:33:a2:d4:
9a:70:03:7c:f6:63:66:82:fc:58:73:71:3f:48:30:9f:1b:e4:
3c:94:8e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 08:09:10 2024 by rpki-client on console-fra.rpki-client.org