Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/qjkHS-s3nU4ZN0sKuKL6ZestKY4.roa
File: qjkHS-s3nU4ZN0sKuKL6ZestKY4.roa (raw, json)
Hash identifier: lL2Vi4lhIR2rozQy7htpWiU1bABM0H4oqXpNY8JAna8=
Subject key identifier: AA:39:07:4B:EB:37:9D:4E:19:37:4B:0A:B8:A2:FA:65:EB:2D:29:8E
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018FED132D4CBD793595D923AC4ECF4A44F1
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/qjkHS-s3nU4ZN0sKuKL6ZestKY4.roa
Signing time: Thu 06 Jun 2024 10:23:27 +0000
ROA not before: Thu 06 Jun 2024 10:23:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35793
IP address blocks: 93.127.161.0/24 maxlen: 24
93.127.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:13:2d:4c:bd:79:35:95:d9:23:ac:4e:cf:4a:44:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jun 6 10:23:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa39074beb379d4e19374b0ab8a2fa65eb2d298e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:bb:4e:18:74:52:60:37:fe:48:54:14:38:
0d:1d:9c:6b:de:cc:e5:19:b4:da:9d:e1:23:45:2d:
ac:33:28:d9:30:8d:54:10:03:80:13:fd:e3:ba:cf:
9f:b1:e6:bb:92:32:af:2f:be:15:92:6b:9e:8b:0d:
09:7b:c4:cd:2e:f8:5f:3f:a8:bb:d9:0c:60:4c:c1:
da:16:33:6e:a1:ef:3f:d8:ef:39:41:25:35:00:ef:
29:b0:13:bd:9a:ba:41:6b:9c:27:c3:23:74:70:3c:
39:aa:4a:67:54:eb:88:ff:fb:99:18:ae:8a:b2:c0:
ff:11:64:8f:5f:40:8b:11:20:3b:85:ea:a5:f9:f1:
4f:80:f4:5c:b5:78:ca:ea:2f:43:73:7b:60:dd:99:
76:4c:02:ba:eb:6b:33:97:db:0b:6b:be:ed:36:9e:
86:de:70:e7:7e:1e:9a:a3:8f:b3:0f:11:9e:19:b2:
2e:f8:bc:04:74:c5:86:b7:ff:bf:77:68:24:73:74:
1a:d3:7a:22:8d:4e:80:07:7e:ef:af:f6:ed:fd:b0:
f8:ab:3e:79:43:92:98:e2:89:16:b6:ff:47:a3:2e:
f2:9d:6a:dc:da:66:53:f4:54:9e:ea:87:06:0c:bb:
78:b4:c6:40:79:99:b5:8f:d9:36:ff:52:af:49:06:
4b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:39:07:4B:EB:37:9D:4E:19:37:4B:0A:B8:A2:FA:65:EB:2D:29:8E
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/qjkHS-s3nU4ZN0sKuKL6ZestKY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.161.0/24
93.127.164.0/24
Signature Algorithm: sha256WithRSAEncryption
69:83:1c:8e:d1:84:8b:8b:ae:65:f3:31:7b:6f:99:1e:92:88:
6e:6a:37:3d:ce:50:ba:30:62:ec:28:7e:14:9e:38:26:b6:55:
5a:40:13:09:5a:36:8c:d1:aa:04:29:b7:80:95:17:68:95:ef:
cf:37:5f:70:b9:27:63:5c:42:36:e1:b9:f5:e7:66:92:55:a0:
d2:ce:ae:48:14:e2:c6:18:ec:00:a5:46:5d:42:9a:b2:2a:93:
ad:f0:a4:f7:d7:23:2b:e2:cd:71:41:02:d8:24:f8:8a:ce:fe:
07:ef:3e:6b:7d:8a:40:a9:3c:ef:16:af:01:b0:74:56:ea:d4:
d3:c3:f2:e3:df:66:c1:69:79:96:cc:37:13:4b:13:2b:01:69:
6a:eb:3e:ee:96:67:8f:05:a4:33:24:5c:6f:d0:52:bc:a6:03:
26:30:8e:8e:a2:c7:0b:fc:88:b3:9d:bb:ef:c2:d6:44:09:be:
9a:19:f6:57:d1:0a:7c:ba:2d:04:29:52:bf:af:e8:19:18:e8:
11:6d:f9:42:4d:8f:d6:e9:b6:4a:80:46:0e:fb:6b:3b:06:8c:
df:bd:34:69:c1:c4:4f:8a:40:de:2b:68:86:d4:b4:e9:5a:ac:
cd:e7:29:e6:9f:85:d5:a3:8e:b1:85:b4:d0:23:6f:bc:fe:50:
1e:d2:93:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:02:44 2024 by rpki-client on console-ams.rpki-client.org