Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/RneM9uwF1mqQKBCSPEdNCYp_jAg.roa
File: RneM9uwF1mqQKBCSPEdNCYp_jAg.roa (raw, json)
Hash identifier: z2mVJguxt3e3lfQ0hJcwxJmfMrFtYiTxpkSlqgMac5Q=
Subject key identifier: 46:77:8C:F6:EC:05:D6:6A:90:28:10:92:3C:47:4D:09:8A:7F:8C:08
Certificate issuer: /CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Certificate serial: 018CC6B7A8D6C5F68BC6EB077E9835AF0F5E
Authority key identifier: 2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/RneM9uwF1mqQKBCSPEdNCYp_jAg.roa
Signing time: Mon 01 Jan 2024 20:29:34 +0000
ROA not before: Mon 01 Jan 2024 20:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56860
IP address blocks: 37.235.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:03:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:a8:d6:c5:f6:8b:c6:eb:07:7e:98:35:af:0f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Validity
Not Before: Jan 1 20:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46778cf6ec05d66a902810923c474d098a7f8c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f0:66:29:ad:0b:e1:be:15:d4:be:a1:16:72:
d9:c0:05:c5:f3:79:b7:7e:a8:c2:4c:cb:68:9d:3c:
1a:cf:89:c4:a2:8b:0d:4a:d3:3c:56:d6:10:dc:bb:
9f:4e:a6:80:ce:d5:02:21:89:44:8d:5d:26:69:bb:
59:30:06:7a:3e:df:56:6c:75:42:7b:ec:f2:6a:11:
9c:39:64:cc:8d:82:eb:f3:cc:14:50:df:f9:20:c9:
d1:b1:29:37:ea:2a:b1:89:d2:3a:d3:82:6b:3d:7a:
a8:8f:8e:f5:31:cd:a5:89:dc:a1:56:99:e2:7d:6f:
d2:c3:d9:1b:00:c0:91:a4:c5:fc:12:87:10:19:42:
7e:2f:de:e8:f2:13:19:51:30:9f:0b:b8:06:b5:6e:
3c:42:f6:54:5a:fa:13:a5:c2:c9:99:ac:f3:7d:25:
1f:2f:25:dc:09:63:79:ca:03:32:22:14:de:28:33:
78:49:88:be:69:88:d7:e7:a7:1b:0f:c6:d8:f4:51:
fd:81:ad:9a:f4:76:d8:58:9a:b1:cc:4e:30:3e:5f:
b1:9d:d6:57:f1:bf:41:99:16:08:fb:6f:ff:5b:3c:
40:26:9f:7b:40:a2:27:15:b6:27:62:7b:f4:2a:66:
18:fe:d6:6d:a1:48:c6:e1:8f:da:63:10:f3:af:4d:
3e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:77:8C:F6:EC:05:D6:6A:90:28:10:92:3C:47:4D:09:8A:7F:8C:08
X509v3 Authority Key Identifier:
keyid:2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/RneM9uwF1mqQKBCSPEdNCYp_jAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.76.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ad:87:19:28:f3:ca:fb:db:f0:c5:96:a0:0c:3c:96:a7:5f:
fa:96:76:e7:2a:bb:de:41:a0:a3:25:8a:73:6e:e1:ea:54:ab:
01:e7:89:e3:08:5e:7f:ed:58:01:9e:ae:17:9f:bc:79:86:fb:
e0:7c:5b:5f:e1:0b:46:c1:97:40:a4:5d:0b:3d:d8:50:f6:24:
5e:b2:93:25:92:8c:a3:4e:22:55:09:14:da:5f:c1:2f:c9:96:
d2:c6:4e:96:27:e8:83:68:01:19:58:b4:dc:02:a8:01:f2:66:
64:a0:c4:1f:a2:d6:39:73:79:36:e0:da:c6:5a:24:71:d1:44:
ad:09:50:24:fb:a3:93:6a:04:9d:54:3d:d0:2c:c5:78:62:38:
82:af:f0:7b:17:c6:b4:bb:44:db:1e:e3:85:e4:85:90:c9:95:
c9:2b:ec:37:4d:3e:0a:48:1d:ce:9e:8a:29:f2:dc:2a:e1:aa:
3e:c4:75:ef:8f:44:6a:7f:de:ab:d8:09:02:c7:77:78:ac:8f:
4d:64:92:c7:a4:ab:c5:3c:1b:0c:79:68:52:cc:aa:d2:d2:14:
93:4a:98:8b:39:de:f8:93:af:40:02:12:f0:dc:0c:0e:c8:ba:
30:a7:f6:ba:f4:7e:b9:1e:e7:07:83:e9:fe:c6:e6:71:b7:1c:
68:7a:6d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:44:34 2024 by rpki-client on console-fra.rpki-client.org