Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/hn0hvWt-gIZreD4oIYtCzTQbf84.roa
File: hn0hvWt-gIZreD4oIYtCzTQbf84.roa (raw, json)
Hash identifier: pyGyb1s1SVZF9du576NHrOjbl5nm9Rq5O90OtTzk6GI=
Subject key identifier: 86:7D:21:BD:6B:7E:80:86:6B:78:3E:28:21:8B:42:CD:34:1B:7F:CE
Certificate issuer: /CN=5f1768e26ff4f9a2a8a56da4dcb7e1ec0c2e4a93
Certificate serial: 018CC56F037308C44DC35B8BCAF529EEE85D
Authority key identifier: 5F:17:68:E2:6F:F4:F9:A2:A8:A5:6D:A4:DC:B7:E1:EC:0C:2E:4A:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/hn0hvWt-gIZreD4oIYtCzTQbf84.roa
Signing time: Mon 01 Jan 2024 14:30:36 +0000
ROA not before: Mon 01 Jan 2024 14:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197448
IP address blocks: 193.239.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6f:03:73:08:c4:4d:c3:5b:8b:ca:f5:29:ee:e8:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1768e26ff4f9a2a8a56da4dcb7e1ec0c2e4a93
Validity
Not Before: Jan 1 14:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=867d21bd6b7e80866b783e28218b42cd341b7fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1f:07:7b:a9:f8:b3:cf:63:9a:68:78:ac:41:
7e:b9:dc:11:d8:5d:33:bb:79:28:aa:89:18:91:f8:
7d:76:d9:c9:61:3f:e5:b0:4e:03:09:85:cb:85:84:
bf:d2:f9:5a:be:54:5b:3e:b6:43:94:40:60:b2:67:
88:f0:1b:1f:b4:07:07:54:0d:6f:8c:e0:9f:8d:a9:
25:d0:51:54:f7:39:36:bd:1f:b6:58:bc:8e:a8:9b:
41:6b:67:7d:66:84:ab:97:5b:c3:5b:29:93:c7:03:
f8:61:e3:19:32:0c:8f:d6:0c:8e:01:b3:3b:ca:1f:
98:15:67:1f:ee:7e:3b:40:97:5d:12:af:3f:18:65:
b6:1b:88:fe:c2:8d:32:22:e2:f1:69:30:14:2f:8c:
18:ca:3d:38:db:68:13:8f:3d:06:6c:f5:6a:9c:75:
a2:4c:8a:6b:3c:5a:7d:09:ea:38:05:29:ae:0e:08:
09:fb:37:0b:dc:e0:5a:c7:b6:30:a7:ce:ff:78:a5:
6a:4a:f9:cd:10:16:61:7e:b9:0b:a6:e5:05:29:27:
4a:68:41:3f:af:17:3b:1c:7d:8a:6d:15:50:77:c8:
af:0b:54:e5:c9:b0:4d:84:49:6d:92:2c:8d:5a:b9:
85:0d:84:f2:dc:09:34:15:d5:a1:60:0f:95:d0:72:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7D:21:BD:6B:7E:80:86:6B:78:3E:28:21:8B:42:CD:34:1B:7F:CE
X509v3 Authority Key Identifier:
keyid:5F:17:68:E2:6F:F4:F9:A2:A8:A5:6D:A4:DC:B7:E1:EC:0C:2E:4A:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/hn0hvWt-gIZreD4oIYtCzTQbf84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.205.0/24
Signature Algorithm: sha256WithRSAEncryption
67:54:5e:44:d9:cc:6a:58:5a:8b:1b:61:16:c2:fc:b1:72:03:
4b:45:70:58:40:5d:e9:8b:5d:18:02:a2:b2:39:8f:7f:aa:42:
a1:55:8c:df:4a:3e:ae:f4:28:47:4e:2d:ce:2f:0e:5c:9c:a1:
df:6b:98:6d:48:8d:f8:1c:d8:a9:4e:0e:83:7d:91:e7:48:5e:
9a:a9:31:82:44:d1:d1:e7:6a:4e:fe:99:d4:58:63:b8:18:f4:
95:57:f4:67:c1:92:5d:aa:e7:06:b9:fe:99:8b:d0:f8:7f:17:
6c:cb:54:d6:ca:dd:f3:20:98:9a:d8:73:37:12:2e:d0:17:75:
be:22:3d:dc:c6:14:3a:fe:95:0e:fc:e9:d3:58:89:99:28:a1:
2c:d9:dc:19:6d:f4:be:55:08:32:bf:a5:24:41:51:3d:30:cc:
a6:aa:2e:6b:99:90:3f:89:f4:49:84:d8:53:34:4e:6e:89:6e:
61:2d:6b:15:db:f9:19:f6:b3:bd:36:e4:75:8e:81:51:cc:2b:
e7:0c:04:b7:b4:1f:c9:55:d0:66:69:f0:ac:8a:14:63:6b:e0:
92:6d:28:53:9a:38:e0:ab:80:e7:31:ad:08:5e:f2:76:f7:2d:
b7:81:2b:87:7e:4f:a3:b4:35:34:08:18:5d:5f:35:f6:68:1a:
49:d0:1a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:02:28 2024 by rpki-client on console-ams.rpki-client.org