Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/ARrRG4LJ8faj4TtQIh21BhaeKJY.roa
File: ARrRG4LJ8faj4TtQIh21BhaeKJY.roa (raw, json)
Hash identifier: +qi9mfi3w1Io59p4hcQ8tlwbKo2bosIsijeTd+n6yJI=
Subject key identifier: 01:1A:D1:1B:82:C9:F1:F6:A3:E1:3B:50:22:1D:B5:06:16:9E:28:96
Certificate issuer: /CN=75af4e2c34780f3d9f51e80a53bac3be6f325943
Certificate serial: 018CC794EC827C7CAA37D6582BA0EF42125B
Authority key identifier: 75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/ARrRG4LJ8faj4TtQIh21BhaeKJY.roa
Signing time: Tue 02 Jan 2024 00:31:14 +0000
ROA not before: Tue 02 Jan 2024 00:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210553
IP address blocks: 193.3.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.mft
rsync://rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 19:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:ec:82:7c:7c:aa:37:d6:58:2b:a0:ef:42:12:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75af4e2c34780f3d9f51e80a53bac3be6f325943
Validity
Not Before: Jan 2 00:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=011ad11b82c9f1f6a3e13b50221db506169e2896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:f9:a8:09:e2:c4:c2:80:45:ee:4f:5e:dc:
0f:70:79:62:f7:0b:01:a6:8c:52:89:fc:58:9e:6f:
22:51:d0:32:6e:b0:3f:f2:14:09:0a:a9:c9:76:fd:
6f:59:8c:ed:41:a5:c7:18:aa:dc:06:a3:dc:86:bd:
ce:d6:d8:4c:8c:05:4d:4f:01:ec:f3:96:06:7e:54:
11:4b:d4:9c:bd:35:49:4c:f8:b6:e6:cc:33:64:d8:
b9:d2:bc:ff:e6:b9:19:fe:b2:29:e2:93:5f:4d:6f:
12:62:1c:bd:83:7f:5f:9d:7b:03:57:eb:3c:3b:3d:
0c:12:da:62:cb:6d:9b:ae:7c:97:33:0b:6a:fa:4b:
17:42:a1:4c:ef:9e:bf:24:64:0d:9c:62:95:9a:d1:
03:01:86:50:38:f0:ea:30:6e:70:ea:65:2c:4e:a6:
20:87:25:6f:2b:0d:45:d9:6d:95:d1:40:6a:02:f0:
21:26:4a:8f:b8:d3:b8:d5:9c:35:73:f9:41:0f:1c:
64:d2:ec:be:43:fe:47:45:ff:ba:a8:61:6c:a1:10:
f3:71:f6:11:0d:c1:cc:37:81:6e:04:7b:37:24:84:
03:0a:45:6f:f4:55:da:c1:ea:20:5c:4d:12:0f:5b:
eb:c2:21:e6:27:52:0b:96:0b:8b:98:dd:76:c1:a5:
10:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1A:D1:1B:82:C9:F1:F6:A3:E1:3B:50:22:1D:B5:06:16:9E:28:96
X509v3 Authority Key Identifier:
keyid:75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/ARrRG4LJ8faj4TtQIh21BhaeKJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.185.0/24
Signature Algorithm: sha256WithRSAEncryption
72:20:37:e1:b2:ba:8a:09:62:e5:49:93:bd:5e:0c:90:04:fb:
22:e9:ac:09:45:9e:26:f7:89:90:ae:55:19:76:69:3e:57:b9:
a6:3e:09:58:3b:e8:46:98:cf:58:f5:6f:89:d1:fb:ff:70:59:
dd:2d:54:fc:6d:dc:33:f4:4b:fa:55:6f:ca:b7:b8:a1:f1:d3:
0d:fd:61:bd:33:ed:89:9d:46:37:96:ae:95:e6:7e:0b:4a:7c:
d5:e3:dc:87:e2:8c:d4:34:1b:6b:68:6d:4a:68:f1:ea:c5:47:
32:16:15:db:55:ee:04:a6:b7:a7:3a:97:d7:75:25:23:8d:7c:
b2:23:23:6a:38:1a:3e:69:53:27:d3:cc:d8:b7:0f:9e:1a:ae:
16:89:68:a7:59:4a:fc:3f:10:27:ae:95:6f:13:cb:65:84:f2:
cf:97:04:18:0e:6b:89:5c:85:d5:d7:41:a3:39:2d:64:66:5b:
0a:1c:6d:3d:96:e1:f4:88:90:f9:15:b3:f0:63:b2:48:87:8e:
14:81:cb:ea:81:69:39:c1:0d:a6:1f:c4:ee:3c:80:63:c7:93:
b6:16:6b:12:7f:08:f6:78:97:4e:51:2b:2c:3e:d0:cb:03:01:
25:bf:23:46:36:2b:30:0a:34:f4:16:d2:c7:9f:ef:ea:35:ef:
b7:66:d6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 01:56:05 2024 by rpki-client on console-ams.rpki-client.org