Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/Omubk_Atwdrkux0ODpT1kR4GcX8.roa
File: Omubk_Atwdrkux0ODpT1kR4GcX8.roa (raw, json)
Hash identifier: hCxiRHgrE8e9qdZuSF5qqnSfB2sO3Mg9IiKFX7iT8eg=
Subject key identifier: 3A:6B:9B:93:F0:2D:C1:DA:E4:BB:1D:0E:0E:94:F5:91:1E:06:71:7F
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 018CC56EF1BEF8306C1B966F93AD6B3A3D04
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/Omubk_Atwdrkux0ODpT1kR4GcX8.roa
Signing time: Mon 01 Jan 2024 14:30:31 +0000
ROA not before: Mon 01 Jan 2024 14:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41280
IP address blocks: 83.222.165.0/24 maxlen: 24
83.222.164.0/24 maxlen: 24
83.222.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 23:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:f1:be:f8:30:6c:1b:96:6f:93:ad:6b:3a:3d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Jan 1 14:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a6b9b93f02dc1dae4bb1d0e0e94f5911e06717f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4f:16:c0:4c:0d:77:02:52:a5:db:6d:65:e6:
b4:8d:55:49:75:4d:11:cd:4f:15:64:43:22:9d:26:
b8:6d:40:7f:a0:cc:a7:cb:a2:de:f6:58:9b:bf:87:
76:9b:9e:c4:d0:61:85:d6:ac:a1:77:29:e4:dd:33:
5d:6f:dc:15:56:91:7b:74:d9:09:ca:da:8e:d6:06:
e5:18:c5:64:d2:da:f3:40:52:88:7e:02:0c:68:0f:
e5:97:05:c6:a4:ad:78:67:e1:28:80:80:70:7b:7e:
42:48:cc:57:ac:4b:0f:ea:f9:3f:23:f7:04:01:f8:
1e:96:d9:0b:11:32:71:2f:43:6a:9e:61:f7:a6:35:
1d:76:26:f5:37:dc:30:0a:e8:eb:9d:3a:8b:e8:c4:
eb:b5:2b:ca:41:74:34:b0:7f:38:5e:c8:f2:1f:5e:
69:bb:e2:76:09:af:f5:c8:32:06:14:b9:f2:69:18:
ff:73:89:40:14:5e:03:fa:84:aa:79:e3:2e:97:06:
f4:8c:87:2b:97:eb:3e:85:04:2a:7c:52:0a:29:77:
6d:89:28:4b:34:7c:e2:f0:6d:dc:a5:7a:99:3c:bd:
62:5d:da:b8:84:ec:fd:3c:1f:c1:4a:ec:4e:14:7e:
13:51:45:26:57:d8:4c:90:03:c5:c7:90:08:7b:ad:
1d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:6B:9B:93:F0:2D:C1:DA:E4:BB:1D:0E:0E:94:F5:91:1E:06:71:7F
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/Omubk_Atwdrkux0ODpT1kR4GcX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.222.163.0-83.222.165.255
Signature Algorithm: sha256WithRSAEncryption
4f:93:c0:3d:43:f7:30:d7:18:a0:03:0f:47:68:9d:bc:27:a7:
90:2f:5c:9a:32:f9:6c:cf:72:19:d5:36:c9:5c:a7:8b:f8:17:
be:99:11:1b:a8:fb:08:ec:03:4f:a7:fb:6a:87:83:0d:08:70:
5f:22:80:06:77:b7:2f:93:3c:2e:2d:e2:14:47:f4:cf:e7:ef:
56:7b:78:94:95:d2:f2:61:90:e6:dd:c1:74:82:91:69:26:4b:
1a:9e:13:d9:2c:ab:c7:ee:35:e7:47:b4:b9:c0:92:5e:eb:fe:
15:66:66:ba:79:c7:4a:c0:69:09:0d:6d:3e:d8:91:df:db:5f:
34:74:a0:08:18:4e:1e:cf:16:f7:9d:46:44:e3:ae:8b:5e:d9:
03:da:57:4b:38:65:39:31:72:79:a0:25:d1:89:7a:b0:c7:2c:
32:c3:e2:3f:14:78:d3:7e:68:df:54:04:1c:de:ad:95:97:01:
6c:be:dc:00:9a:e0:43:1a:b0:7b:46:51:2e:f0:24:dc:29:76:
87:11:3b:b9:05:fc:55:5a:1e:dd:c6:0b:c0:17:68:bb:b2:a6:
1e:5c:b9:ba:d9:45:90:93:91:f3:23:58:0d:a5:ef:a9:80:25:
93:86:2c:1c:db:4c:dc:bf:63:3d:df:9b:9e:10:d6:b1:97:32:
c4:6c:f7:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 06:35:53 2024 by rpki-client on console-fra.rpki-client.org