Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/O6GfPM42_U0G4BcjI1JystZyj-c.roa
File: O6GfPM42_U0G4BcjI1JystZyj-c.roa (raw, json)
Hash identifier: aQ3LpXwpcm21Dx1GpbOO4T7cqKP6eqQR1lvA09Oeg+U=
Subject key identifier: 3B:A1:9F:3C:CE:36:FD:4D:06:E0:17:23:23:52:72:B2:D6:72:8F:E7
Certificate issuer: /CN=82e472a2b87ff1682d362f0dde418e9311ac0464
Certificate serial: 018CC2DB0DE28AEFEF586AF5FE9875155AF5
Authority key identifier: 82:E4:72:A2:B8:7F:F1:68:2D:36:2F:0D:DE:41:8E:93:11:AC:04:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guRyorh_8WgtNi8N3kGOkxGsBGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/O6GfPM42_U0G4BcjI1JystZyj-c.roa
Signing time: Mon 01 Jan 2024 02:29:44 +0000
ROA not before: Mon 01 Jan 2024 02:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35588
IP address blocks: 193.169.146.0/23 maxlen: 23
194.213.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/guRyorh_8WgtNi8N3kGOkxGsBGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/guRyorh_8WgtNi8N3kGOkxGsBGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/guRyorh_8WgtNi8N3kGOkxGsBGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:0d:e2:8a:ef:ef:58:6a:f5:fe:98:75:15:5a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e472a2b87ff1682d362f0dde418e9311ac0464
Validity
Not Before: Jan 1 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ba19f3cce36fd4d06e01723235272b2d6728fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:2d:6d:36:af:b5:fd:56:9b:ff:91:e5:03:
fb:92:3e:5f:77:25:d3:db:39:3f:8c:52:84:e8:a7:
bb:c4:35:70:a8:67:60:69:95:2f:0a:5e:37:ab:8c:
68:4e:da:c8:7f:e0:52:63:35:ad:22:eb:f6:72:ae:
19:82:76:c7:6d:4f:62:0b:43:bd:cb:01:93:28:5d:
cd:63:32:bb:43:7b:2a:55:20:83:89:0b:0e:aa:b9:
86:7e:13:68:e5:71:a3:52:ba:ea:b9:1d:df:a8:82:
4b:50:af:af:43:e9:55:95:ea:14:98:cb:a0:94:68:
c6:9a:37:2d:40:aa:b7:03:44:2c:46:3d:6f:ff:f7:
cd:27:30:c7:cb:7c:bb:0a:da:36:d2:41:c6:af:68:
73:32:50:34:66:f2:84:aa:0c:e5:02:25:cf:e8:a2:
97:0d:ec:11:ff:e9:b2:61:75:d1:c7:83:08:23:86:
e3:d9:62:81:ea:75:96:51:8f:a4:f2:db:8b:ff:df:
7a:98:fe:4a:50:8e:4e:14:8b:eb:b5:aa:35:d8:da:
45:bd:79:5d:15:4c:5e:19:d2:d2:ea:4f:ee:ea:c7:
5c:87:15:97:e5:b7:b6:29:8d:bf:e1:61:e5:73:21:
42:78:f9:26:53:e6:7e:d6:ae:49:a8:01:f2:46:1f:
8c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A1:9F:3C:CE:36:FD:4D:06:E0:17:23:23:52:72:B2:D6:72:8F:E7
X509v3 Authority Key Identifier:
keyid:82:E4:72:A2:B8:7F:F1:68:2D:36:2F:0D:DE:41:8E:93:11:AC:04:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guRyorh_8WgtNi8N3kGOkxGsBGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/O6GfPM42_U0G4BcjI1JystZyj-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/guRyorh_8WgtNi8N3kGOkxGsBGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.146.0/23
194.213.23.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d3:2e:7f:ce:7e:f0:b3:95:38:e8:ea:d9:d8:a2:74:82:16:
c6:d5:b9:4c:87:75:a6:1c:99:f9:d4:1b:5a:cb:10:92:c4:d4:
f2:28:bc:13:45:b2:3c:06:81:bf:2e:83:23:fd:aa:cc:9a:d6:
bf:26:dc:38:e6:f1:07:f9:03:7c:bc:c5:ae:c0:39:bc:db:61:
56:31:1d:8f:f0:5a:72:38:6a:ca:5d:55:f2:65:fc:87:63:6a:
31:dc:75:a7:a0:5f:07:43:93:f7:8f:39:65:89:41:ed:a4:d2:
c5:87:79:54:2a:89:4e:da:b0:7f:85:3a:44:91:6f:d8:27:e8:
b1:41:4b:d0:f0:c3:96:73:9b:59:b5:b8:03:cd:23:8e:4e:18:
a7:f9:12:9c:6a:38:c3:13:83:bb:e3:9f:18:66:a6:83:b4:d0:
11:fa:d0:e1:f8:48:5b:ef:5f:66:fb:4c:4b:92:f3:f5:68:14:
59:ae:5a:3c:86:5f:19:84:4b:6c:e2:64:48:58:3e:5f:13:1a:
a5:a3:c1:23:c0:ae:c1:17:04:09:fb:a6:9f:9a:4e:e0:27:66:
de:57:92:b3:e4:c2:2e:39:58:7d:e4:04:cf:8d:b1:b7:d6:25:
fa:6f:e5:31:94:2e:b3:cf:d5:d7:40:86:1b:b4:dd:c3:30:b6:
66:2c:79:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:54 2024 by rpki-client on console-fra.rpki-client.org