Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/hjr_d5o0wcV_Ft-Wgr87VWJZNKk.roa
File: hjr_d5o0wcV_Ft-Wgr87VWJZNKk.roa (raw, json)
Hash identifier: XQxri/dPIrK9ySLfZUjvc+0PJILKkSOx9cPNEeeys14=
Subject key identifier: 86:3A:FF:77:9A:34:C1:C5:7F:16:DF:96:82:BF:3B:55:62:59:34:A9
Certificate issuer: /CN=9e933f2ce57c74cbf9ffa509685d6acbd8c53998
Certificate serial: 018CC793DC4DEEFF4F2F4225CDDF5344E7E2
Authority key identifier: 9E:93:3F:2C:E5:7C:74:CB:F9:FF:A5:09:68:5D:6A:CB:D8:C5:39:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npM_LOV8dMv5_6UJaF1qy9jFOZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/hjr_d5o0wcV_Ft-Wgr87VWJZNKk.roa
Signing time: Tue 02 Jan 2024 00:30:05 +0000
ROA not before: Tue 02 Jan 2024 00:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212374
IP address blocks: 185.209.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/npM_LOV8dMv5_6UJaF1qy9jFOZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/npM_LOV8dMv5_6UJaF1qy9jFOZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npM_LOV8dMv5_6UJaF1qy9jFOZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:dc:4d:ee:ff:4f:2f:42:25:cd:df:53:44:e7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e933f2ce57c74cbf9ffa509685d6acbd8c53998
Validity
Not Before: Jan 2 00:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=863aff779a34c1c57f16df9682bf3b55625934a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2d:ca:9b:2f:9e:b5:15:b4:8b:35:cf:0f:45:
0b:27:42:3c:c0:c5:64:87:6b:62:4f:d8:e0:46:e6:
9b:d7:b2:d3:96:97:ef:58:19:e9:79:19:55:67:79:
87:21:c7:1c:9a:a1:3d:4c:e6:66:60:10:9e:b2:be:
b8:ec:1c:a1:79:f0:82:b1:22:3c:73:9b:ea:c8:e3:
43:06:a4:46:a7:48:3f:a3:46:b0:31:e8:7b:1b:ce:
78:14:5e:73:9f:e6:7f:ba:15:38:4a:d2:8d:1c:2a:
8d:ef:ca:e3:ac:65:da:d1:07:9b:6e:cb:31:3a:0e:
ee:63:7f:c2:41:7c:99:27:b7:49:93:34:a9:6e:21:
3e:e0:9e:a3:fd:d4:7f:c9:ed:29:4e:c4:2e:08:e7:
41:63:0d:10:6c:b0:52:0b:0e:eb:e4:46:eb:08:c4:
9e:b8:ef:fa:2c:dd:12:f3:23:3f:ae:ae:88:3e:dc:
30:1d:98:cb:a1:3d:8b:9c:99:9e:8d:f0:fb:61:15:
cd:24:00:34:aa:65:45:ad:8b:14:ad:e7:82:df:39:
b0:a7:81:b9:35:93:d4:5f:10:65:86:06:4e:80:ed:
2a:44:d7:57:b8:3e:5d:49:50:04:d8:d0:43:17:12:
51:77:bc:70:2f:c6:96:d3:57:81:e6:fb:e5:54:03:
17:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3A:FF:77:9A:34:C1:C5:7F:16:DF:96:82:BF:3B:55:62:59:34:A9
X509v3 Authority Key Identifier:
keyid:9E:93:3F:2C:E5:7C:74:CB:F9:FF:A5:09:68:5D:6A:CB:D8:C5:39:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npM_LOV8dMv5_6UJaF1qy9jFOZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/hjr_d5o0wcV_Ft-Wgr87VWJZNKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f2e48-feba-4273-8e49-8259805c644c/1/npM_LOV8dMv5_6UJaF1qy9jFOZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.82.0/24
Signature Algorithm: sha256WithRSAEncryption
86:73:86:a0:40:41:83:e5:d9:28:83:dc:20:5b:f3:e0:14:50:
76:a5:0b:ae:21:b0:36:54:52:f5:02:17:97:9e:0c:61:ec:76:
78:82:09:cc:e6:a7:70:09:2d:a2:c6:75:a6:01:4f:e6:fc:66:
35:35:8a:8a:87:64:6c:6c:52:ef:9a:6d:af:1a:c9:46:c1:f6:
eb:f3:2d:e4:71:a4:e1:5d:9b:40:ef:f5:9f:26:b5:5c:a6:f5:
e7:82:7d:21:88:de:23:23:a5:d5:c4:76:f8:e7:05:69:b9:86:
78:1e:a0:e4:81:f0:1d:b4:3d:8a:de:18:2d:e4:09:32:d1:de:
8e:fe:05:85:3b:0b:50:2b:0c:46:77:c7:62:9f:20:6a:a7:c3:
56:27:1d:9c:bf:53:42:15:b2:37:92:c2:67:2f:bb:e2:bd:ff:
d2:54:86:90:da:9f:a1:02:11:90:d2:6c:5a:8a:b5:35:bd:c0:
2a:69:71:aa:bf:fd:85:45:05:66:f3:cd:b1:71:67:22:89:30:
23:e4:66:41:94:29:eb:ba:09:35:b9:0f:c2:e3:c5:0f:ac:92:
16:4b:16:49:69:25:f8:75:54:8a:5c:dc:53:2f:dd:5e:26:ac:
b9:29:30:8c:e6:9e:af:55:08:e9:fb:24:78:0d:95:d1:7c:59:
75:ad:6e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:05 2024 by rpki-client on console-fra.rpki-client.org