Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/Ha8OPqVA5PoOrwHfKe36rAqtuXs.roa
File: Ha8OPqVA5PoOrwHfKe36rAqtuXs.roa (raw, json)
Hash identifier: HxnN6Ddq02DLvCxxnCwyX1yONvuI0DsZFaISawAA+Q0=
Subject key identifier: 1D:AF:0E:3E:A5:40:E4:FA:0E:AF:01:DF:29:ED:FA:AC:0A:AD:B9:7B
Certificate issuer: /CN=6cf2fb0fa52de13c336689cf3f4829d63506750f
Certificate serial: 018CC56EC485521FD01F02708BDBF404D124
Authority key identifier: 6C:F2:FB:0F:A5:2D:E1:3C:33:66:89:CF:3F:48:29:D6:35:06:75:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/Ha8OPqVA5PoOrwHfKe36rAqtuXs.roa
Signing time: Mon 01 Jan 2024 14:30:19 +0000
ROA not before: Mon 01 Jan 2024 14:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 93.191.217.0/24 maxlen: 24
93.191.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 02:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c4:85:52:1f:d0:1f:02:70:8b:db:f4:04:d1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf2fb0fa52de13c336689cf3f4829d63506750f
Validity
Not Before: Jan 1 14:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1daf0e3ea540e4fa0eaf01df29edfaac0aadb97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:50:05:32:1e:32:64:ed:91:d3:e6:88:3b:19:
95:00:33:a4:da:78:af:ca:4f:11:3f:df:d4:15:f4:
18:bf:fc:76:c6:01:a1:be:60:98:fd:7c:d0:66:bc:
d0:db:5e:96:5b:c5:95:b1:2e:1a:1d:22:71:4d:f2:
0a:d0:e1:02:25:82:6f:0a:4b:ce:eb:ee:08:a5:97:
ed:40:23:05:0c:3f:e8:d6:90:db:53:c6:33:49:42:
ba:be:09:a4:ac:18:7d:77:e3:91:70:72:16:34:b1:
07:60:56:37:f4:f1:b5:8b:87:5d:56:32:ca:93:98:
91:cd:11:f6:16:ce:75:a1:63:8c:b0:33:06:5e:15:
a3:f9:15:08:67:29:79:fe:42:59:52:9f:67:f6:99:
e9:15:c6:29:0d:e4:17:84:c4:95:37:70:53:a1:d8:
a6:d6:a3:e5:dc:fa:c9:f1:92:74:d6:7a:23:90:77:
73:2b:e8:7b:c5:f4:d0:c9:20:5d:27:02:e5:c4:c3:
f5:31:5c:97:20:05:06:8d:66:24:84:8c:f2:3b:05:
e4:de:27:28:75:19:15:43:72:3e:ab:29:9b:b7:80:
50:3e:54:59:8f:70:d2:2d:83:66:2a:5f:b1:52:e6:
13:4d:a2:7b:5b:62:63:73:97:0b:24:6b:fc:d0:4f:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AF:0E:3E:A5:40:E4:FA:0E:AF:01:DF:29:ED:FA:AC:0A:AD:B9:7B
X509v3 Authority Key Identifier:
keyid:6C:F2:FB:0F:A5:2D:E1:3C:33:66:89:CF:3F:48:29:D6:35:06:75:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/Ha8OPqVA5PoOrwHfKe36rAqtuXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cf0715-b993-4348-97e9-6ec982951cf7/1/bPL7D6Ut4TwzZonPP0gp1jUGdQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.217.0/24
93.191.219.0/24
Signature Algorithm: sha256WithRSAEncryption
39:10:06:8d:49:94:25:91:92:d6:01:e9:ba:6d:7d:53:23:b4:
b0:08:38:00:1c:6e:5d:6a:79:5f:34:60:55:74:79:e4:e1:4c:
27:3c:ed:a2:24:8d:41:f5:52:13:22:c2:d0:d6:df:be:a4:c9:
80:2f:2b:c1:57:8b:0d:df:51:27:9a:93:a9:21:71:cb:96:73:
05:07:cb:0f:f0:07:04:73:d8:21:5b:72:09:43:bd:45:51:59:
c7:21:84:bb:9e:53:d3:d3:98:77:88:1b:7b:81:4c:c9:78:20:
ba:94:ef:8c:0c:0e:08:55:12:b5:6a:69:f1:10:be:36:4d:24:
93:77:9e:fb:55:59:c4:8b:b8:04:60:3a:0b:29:43:6d:b2:d1:
cc:e4:f1:4d:51:55:c6:d9:13:9a:5f:4a:92:fa:d0:09:d1:ae:
ae:4d:71:7c:03:e4:e7:f1:f7:f9:f8:9a:1c:2e:b5:85:8c:4a:
5d:21:49:04:aa:3e:7c:9f:e1:0d:e8:84:28:79:97:48:4f:55:
70:b3:49:e0:2a:07:86:c4:84:1a:9b:92:d3:ad:29:a0:ec:06:
61:12:73:f5:78:96:70:33:7f:89:f6:79:b3:e1:b8:2a:37:91:
14:34:d9:56:14:45:d8:a6:1b:f0:a3:cf:b1:15:5b:ab:67:5e:
d0:fb:be:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 10:30:43 2024 by rpki-client on console-fra.rpki-client.org