Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/6s4jArV6fK-1SsJRE9tJRfFzQp0.roa
File: 6s4jArV6fK-1SsJRE9tJRfFzQp0.roa (raw, json)
Hash identifier: i7hbLnwN8NzcbzRoFxxTyuE+/6sLqQLTvMPVuNXt06s=
Subject key identifier: EA:CE:23:02:B5:7A:7C:AF:B5:4A:C2:51:13:DB:49:45:F1:73:42:9D
Certificate issuer: /CN=b7c558c42c43ad59406ea446c9eefed42a491eec
Certificate serial: 018CC9BCC2AB6401C7878EAECA24D9DEC15A
Authority key identifier: B7:C5:58:C4:2C:43:AD:59:40:6E:A4:46:C9:EE:FE:D4:2A:49:1E:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8VYxCxDrVlAbqRGye7-1CpJHuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/6s4jArV6fK-1SsJRE9tJRfFzQp0.roa
Signing time: Tue 02 Jan 2024 10:34:00 +0000
ROA not before: Tue 02 Jan 2024 10:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43464
IP address blocks: 91.195.4.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/t8VYxCxDrVlAbqRGye7-1CpJHuw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/t8VYxCxDrVlAbqRGye7-1CpJHuw.mft
rsync://rpki.ripe.net/repository/DEFAULT/t8VYxCxDrVlAbqRGye7-1CpJHuw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:c2:ab:64:01:c7:87:8e:ae:ca:24:d9:de:c1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c558c42c43ad59406ea446c9eefed42a491eec
Validity
Not Before: Jan 2 10:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eace2302b57a7cafb54ac25113db4945f173429d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b3:42:5a:ee:fe:b7:c7:1f:ed:52:55:22:a0:
13:d2:be:43:c5:24:fd:f0:05:2b:cf:4a:bc:bc:65:
f8:96:a4:83:6c:07:fb:5e:6e:0b:91:d8:75:50:e1:
55:b7:ab:2e:2a:5f:0d:60:66:7d:e3:85:68:f2:02:
46:7b:5c:f8:c3:23:8c:1b:c4:4d:03:3b:d3:f2:a2:
ed:90:73:d5:f7:11:ac:42:78:ce:ce:62:09:6c:50:
58:3f:b3:15:d0:30:00:40:f8:68:d9:c3:2e:71:e3:
98:5b:4b:ea:59:44:2a:86:7c:e0:62:c3:87:f8:6f:
43:22:c9:0f:aa:90:34:40:19:68:b8:b7:77:18:d5:
85:e3:18:84:e7:cd:fc:bf:44:0b:a9:14:e8:8f:56:
b9:71:d9:6f:8a:21:22:97:86:18:f8:a3:32:ca:90:
88:e6:75:2a:34:6e:0b:30:80:b4:95:65:94:fd:86:
f3:dc:fa:76:5c:af:4b:0d:9b:7a:6c:de:87:44:7e:
d1:16:fe:cb:1c:d2:43:13:6d:a9:28:c9:bd:b9:f9:
3c:be:92:9d:fd:5d:a9:7d:c5:78:4e:02:63:33:e3:
77:4f:24:81:52:29:17:f2:a1:af:82:30:e7:83:cb:
59:85:c9:8f:5e:22:5f:bb:62:ed:dc:3f:0c:75:ca:
b3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:CE:23:02:B5:7A:7C:AF:B5:4A:C2:51:13:DB:49:45:F1:73:42:9D
X509v3 Authority Key Identifier:
keyid:B7:C5:58:C4:2C:43:AD:59:40:6E:A4:46:C9:EE:FE:D4:2A:49:1E:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8VYxCxDrVlAbqRGye7-1CpJHuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/6s4jArV6fK-1SsJRE9tJRfFzQp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/t8VYxCxDrVlAbqRGye7-1CpJHuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.4.0/23
Signature Algorithm: sha256WithRSAEncryption
94:1f:e2:a7:8e:2c:b2:10:f2:6e:ea:78:f2:4c:12:02:9c:ba:
a4:00:11:f6:69:a2:2c:8f:bf:77:af:a5:0d:19:62:74:dc:86:
03:49:c7:17:44:f7:cf:27:41:cf:40:5c:43:41:85:27:82:2d:
ab:f6:c7:e7:47:f8:2f:43:91:c5:63:a1:54:15:69:af:fb:48:
aa:5c:86:e0:ec:f0:90:99:a1:81:29:8a:2b:56:01:b0:a5:3d:
e7:f6:10:a2:8b:60:76:ac:f3:4f:d5:90:33:23:07:44:a2:1a:
87:6d:38:54:7e:d6:27:6c:4b:b6:d3:61:54:37:e6:12:5d:40:
7a:c3:f6:6d:8f:45:03:c2:e5:e0:5e:f8:b4:39:a9:24:95:72:
ce:99:93:77:3d:f7:7e:38:8b:9b:59:6b:d3:7e:18:3c:8b:7b:
ab:c2:ea:59:57:61:cb:e5:c1:4d:b0:9a:dd:40:99:84:d6:a8:
98:8a:8a:a7:f9:ea:68:45:cc:30:be:ba:d5:06:e8:70:a8:1f:
7c:6d:96:50:26:76:90:41:1d:f2:87:32:0d:d1:76:a4:2c:48:
a0:0d:82:f7:87:f3:33:b0:67:21:ae:fb:2b:55:b3:39:9d:c8:
62:80:6b:88:6a:ed:39:88:33:48:29:d6:32:b9:07:44:54:12:
36:05:58:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:39 2024 by rpki-client on console-fra.rpki-client.org