Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/icT21PngT0omIWF4bUpGtJEkORM.roa
File: icT21PngT0omIWF4bUpGtJEkORM.roa (raw, json)
Hash identifier: 6VCwuTbVvgiiH1j+SnNphmsTz+L4w15cIKdoALMdblM=
Subject key identifier: 89:C4:F6:D4:F9:E0:4F:4A:26:21:61:78:6D:4A:46:B4:91:24:39:13
Certificate issuer: /CN=acc50df6b01dff6f54eb8039b2497aa7f4ef12cd
Certificate serial: 019001E3E68553822ECE15500B4306BDCBF7
Authority key identifier: AC:C5:0D:F6:B0:1D:FF:6F:54:EB:80:39:B2:49:7A:A7:F4:EF:12:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMUN9rAd_29U64A5skl6p_TvEs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/icT21PngT0omIWF4bUpGtJEkORM.roa
Signing time: Mon 10 Jun 2024 11:23:51 +0000
ROA not before: Mon 10 Jun 2024 11:23:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60893
IP address blocks: 194.9.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/rMUN9rAd_29U64A5skl6p_TvEs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/rMUN9rAd_29U64A5skl6p_TvEs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rMUN9rAd_29U64A5skl6p_TvEs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:e3:e6:85:53:82:2e:ce:15:50:0b:43:06:bd:cb:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc50df6b01dff6f54eb8039b2497aa7f4ef12cd
Validity
Not Before: Jun 10 11:23:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89c4f6d4f9e04f4a262161786d4a46b491243913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ea:c8:70:59:c5:f1:9d:5f:12:c4:7f:71:e4:
b5:b4:cb:76:33:6f:98:d6:2e:03:4c:34:15:61:9e:
30:bd:4a:21:8d:86:40:b2:cb:c2:3a:8c:36:b6:52:
00:d5:43:39:55:99:55:71:37:9c:50:8f:66:08:e8:
b0:cd:e4:4b:32:28:b6:3c:b8:93:47:be:60:cc:f6:
da:6a:48:b5:ac:4d:94:92:b3:16:a8:39:25:5c:81:
38:4b:af:38:4d:fb:4f:f8:a1:dc:6c:d4:b6:de:03:
34:73:64:47:8d:b0:cb:cf:71:a8:3f:d4:cd:63:7d:
ea:1b:8d:1d:c7:b0:20:30:2e:24:29:c5:31:e4:1b:
3a:2f:f8:f5:98:63:eb:e7:b2:44:29:63:99:5b:68:
9a:c6:0d:f6:f8:91:31:f9:f3:1b:49:99:78:d1:07:
fd:a9:13:b6:b8:fb:ee:43:5c:70:ad:f5:02:32:5a:
48:00:41:58:94:ff:72:b9:a5:03:c7:fa:19:b5:78:
c7:c7:a9:c0:3d:6f:05:e1:fd:f4:0c:03:0e:c2:b0:
6d:7d:a5:cb:6e:bf:fd:02:74:bc:ff:9a:50:ed:6c:
40:fa:58:d4:5c:0c:66:42:fe:d6:a7:ec:16:03:31:
46:1a:3e:68:2c:93:73:55:1b:a4:62:98:7c:03:21:
e2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C4:F6:D4:F9:E0:4F:4A:26:21:61:78:6D:4A:46:B4:91:24:39:13
X509v3 Authority Key Identifier:
keyid:AC:C5:0D:F6:B0:1D:FF:6F:54:EB:80:39:B2:49:7A:A7:F4:EF:12:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMUN9rAd_29U64A5skl6p_TvEs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/icT21PngT0omIWF4bUpGtJEkORM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bf3528-a131-4f51-a59d-31c9313f9f66/1/rMUN9rAd_29U64A5skl6p_TvEs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.7.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:1f:3c:25:65:28:a8:13:2a:61:d9:c0:ec:a6:16:ae:74:90:
15:15:0a:ab:9c:6b:a4:4d:eb:6c:3f:02:04:3f:0c:75:87:20:
14:ac:03:09:a1:25:3c:71:62:ac:97:2a:8f:bf:6f:d4:72:6f:
b9:c0:42:cc:47:38:13:fe:34:7c:92:fd:d1:ad:6a:f1:38:9d:
d0:ac:f5:36:49:e7:69:16:26:4f:e5:f4:ee:bd:56:62:7d:fe:
f3:cb:76:19:77:51:eb:4c:3c:f3:4e:da:7a:fe:3c:c2:ca:40:
6c:47:a2:2d:69:db:db:35:f4:90:2f:4d:81:e4:a6:9b:62:68:
a4:2d:e4:7b:88:1b:e9:c9:63:3a:1f:a5:af:ff:7d:b0:6f:f9:
6e:19:6f:da:c5:b6:d1:88:5a:70:64:92:de:3e:ec:ae:51:57:
bf:57:19:00:45:62:af:17:ac:a6:e5:1d:98:0a:ad:d0:91:3c:
36:f6:d9:c1:ea:2c:9d:2c:cd:38:f3:40:ee:0d:6e:d7:7e:e4:
98:ca:f8:9a:ce:00:03:27:c1:7b:6e:d7:ef:85:de:aa:da:76:
96:8c:0f:89:78:f3:cb:28:c8:6e:b0:98:f3:93:f0:97:ec:db:
b6:04:dd:5d:79:d4:41:9f:e7:74:e2:34:4e:bf:1c:af:ff:be:
13:59:ae:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 09:31:56 2024 by rpki-client on console-fra.rpki-client.org