Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/1-SVp7viNz518h18zQ5awZb_MKew.roa
File: 1-SVp7viNz518h18zQ5awZb_MKew.roa (raw, json)
Hash identifier: YihMlOZZZAzgaJW2YMkieLKVE7objoXrs6EYqQ0IczI=
Subject key identifier: F9:25:69:EE:F8:8D:CF:9D:7C:87:5F:33:43:96:B0:65:BF:CC:29:EC
Certificate issuer: /CN=522f9879ccfadee5d04a9a9973f5b27952971bfb
Certificate serial: 018CC2DABEB932B3A0A17F1DFA2AF3385339
Authority key identifier: 52:2F:98:79:CC:FA:DE:E5:D0:4A:9A:99:73:F5:B2:79:52:97:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/1-SVp7viNz518h18zQ5awZb_MKew.roa
Signing time: Mon 01 Jan 2024 02:29:24 +0000
ROA not before: Mon 01 Jan 2024 02:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31726
IP address blocks: 185.90.180.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:be:b9:32:b3:a0:a1:7f:1d:fa:2a:f3:38:53:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522f9879ccfadee5d04a9a9973f5b27952971bfb
Validity
Not Before: Jan 1 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f92569eef88dcf9d7c875f334396b065bfcc29ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:12:96:b5:f1:56:71:cb:a0:ab:4f:b0:66:3a:
4d:77:ae:89:46:56:4e:a7:89:05:e3:72:fb:5c:43:
cb:d2:a4:d5:d4:91:9e:78:06:49:56:56:58:42:bc:
e0:c8:15:ef:ca:37:df:e9:74:88:b7:a2:7a:fe:3c:
b3:40:5c:b5:fe:42:7b:1d:d7:bd:94:08:6b:de:05:
b5:05:bc:29:56:c5:04:9a:b6:3d:db:f9:f0:dc:21:
09:fb:03:b0:5f:80:ef:b4:ed:44:f2:04:5d:bd:03:
54:09:0f:bd:a8:1d:5a:fd:05:90:07:6f:2e:77:73:
50:08:42:55:5b:9a:88:a6:a8:01:4e:60:f4:4d:47:
04:6c:ed:30:1c:fc:0c:2d:4e:94:f0:77:36:69:3b:
2b:3c:25:86:a1:70:c8:46:e0:74:25:dc:d9:42:f7:
4b:d3:78:52:e1:c7:69:b6:10:81:49:9b:43:e8:07:
62:34:85:b1:77:01:fb:ca:07:b3:7f:3b:e9:98:40:
80:08:2f:cf:62:b2:3d:d7:5e:e9:29:2c:39:9f:25:
e3:4a:16:39:6a:67:1d:25:2f:b1:0c:4b:05:98:ae:
35:26:d4:8b:0a:ba:02:8d:85:7e:60:67:e6:63:7d:
f1:dd:f5:c7:56:30:19:e5:f6:47:22:c9:a9:f7:0a:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:25:69:EE:F8:8D:CF:9D:7C:87:5F:33:43:96:B0:65:BF:CC:29:EC
X509v3 Authority Key Identifier:
keyid:52:2F:98:79:CC:FA:DE:E5:D0:4A:9A:99:73:F5:B2:79:52:97:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ui-Yecz63uXQSpqZc_WyeVKXG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/1-SVp7viNz518h18zQ5awZb_MKew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/fad4f1-91f0-47e1-b370-ee509fbd80e1/1/Ui-Yecz63uXQSpqZc_WyeVKXG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.180.0/22
Signature Algorithm: sha256WithRSAEncryption
09:9a:97:bd:c2:c6:84:d0:7e:ff:54:fc:d7:43:c7:84:71:45:
c1:da:8d:ab:7b:70:b3:e3:b8:42:10:54:ae:8f:26:86:69:31:
95:61:4c:b2:f8:5c:2d:59:1b:0a:11:ae:18:83:6f:e6:ef:7b:
9c:a1:2a:2b:60:e6:1a:08:37:2a:0d:8a:ad:e0:de:24:67:4a:
a0:21:1d:38:0f:e8:7e:9f:e5:bb:40:79:dd:bd:82:db:86:76:
fb:8a:dd:b2:1a:0e:b5:96:f7:a7:a4:3e:a6:6e:87:01:f1:6e:
ad:d5:9a:cc:37:c8:08:29:cb:26:75:c2:73:4d:2c:4e:46:cb:
a0:2b:12:a8:79:ec:66:62:5a:66:35:ff:a1:da:8c:20:c7:b6:
58:44:0d:0b:dd:6a:59:c4:e7:4f:a3:bc:3b:f7:ef:17:a1:60:
54:41:42:0b:9b:15:eb:58:c1:04:8b:95:9f:d8:b5:72:e1:88:
1a:78:51:be:3e:96:14:2a:33:87:5f:36:97:5e:d3:84:10:b3:
34:5c:ea:77:64:93:72:dd:12:0c:4f:d5:2e:fd:99:63:12:a7:
bf:1b:a1:fb:17:20:4f:cb:ac:85:7c:37:85:6d:5d:ac:e6:48:
f2:24:45:99:fb:8e:5f:32:41:5b:8f:59:a2:35:5c:80:35:47:
cf:68:26:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:36:03 2024 by rpki-client on console-ams.rpki-client.org