Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/z1_jYPFcqariSg6Gd9OboTRDg24.roa
File: z1_jYPFcqariSg6Gd9OboTRDg24.roa (raw, json)
Hash identifier: 0elZVwO3poTNBly8Gq71qKLLZz4tnJ4CJ8IM5qgz2co=
Subject key identifier: CF:5F:E3:60:F1:5C:A9:AA:E2:4A:0E:86:77:D3:9B:A1:34:43:83:6E
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EA888BD716E74AC6401409C1A732A95C4
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/z1_jYPFcqariSg6Gd9OboTRDg24.roa
Signing time: Thu 04 Apr 2024 09:55:17 +0000
ROA not before: Thu 04 Apr 2024 09:55:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61166
IP address blocks: 178.34.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a8:88:bd:71:6e:74:ac:64:01:40:9c:1a:73:2a:95:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 4 09:55:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf5fe360f15ca9aae24a0e8677d39ba13443836e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:01:d0:b8:d6:af:22:a9:54:c8:61:16:4a:70:
44:58:69:c0:3e:02:a7:58:4d:ff:15:91:fc:f2:05:
44:30:97:b4:e7:84:a3:75:b6:94:1e:69:ea:9e:b6:
36:2d:1d:83:2a:10:c2:12:6f:87:65:e2:24:45:2a:
dc:8d:fd:d5:41:01:57:69:44:03:cb:6b:36:0e:f0:
ff:1f:5b:d0:6c:4e:63:17:8a:28:9c:91:80:09:5a:
e5:de:02:95:0f:fb:99:34:b5:3b:bf:94:57:8c:30:
21:ad:d2:1a:9f:44:5d:47:a1:4e:60:4b:80:04:87:
40:35:d2:f7:1e:2a:83:c3:b9:69:c3:50:ab:e1:e1:
d8:e3:7d:ae:cf:24:f2:66:95:b1:6e:53:b3:22:89:
d3:23:7b:e7:b4:45:f3:89:50:f6:50:d8:40:16:1d:
24:78:58:5a:fc:d4:5c:4f:93:7c:28:54:60:5a:43:
68:20:59:2b:64:60:89:98:3d:98:b0:39:67:c3:7d:
22:bb:f8:79:51:af:7d:6b:a4:27:5b:07:e4:7b:c6:
ca:54:cb:e3:66:1f:d7:f2:76:ba:fa:12:83:fa:2a:
1c:75:67:8e:cc:22:66:92:b7:56:28:24:1d:02:99:
8e:79:65:5a:31:e6:b3:15:f6:ee:12:7a:e4:78:8e:
0c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5F:E3:60:F1:5C:A9:AA:E2:4A:0E:86:77:D3:9B:A1:34:43:83:6E
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/z1_jYPFcqariSg6Gd9OboTRDg24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.34.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5f:6a:76:42:a2:90:c8:5e:a2:49:38:9b:d6:1b:3d:17:44:
88:e4:ce:c8:b4:c7:fd:00:01:15:fd:80:0a:32:55:2d:b3:47:
9c:06:39:f0:16:28:e1:a1:e8:a6:36:93:40:34:7d:0f:2f:b1:
c9:20:c4:3f:a2:03:08:fd:90:12:08:ce:0a:9b:a5:c7:d3:d9:
74:4e:b8:f7:c0:15:66:3f:5e:85:55:5e:2f:d8:de:89:07:83:
3c:ee:b8:15:54:9f:0f:d8:03:17:37:ba:7a:7b:80:48:4e:c8:
93:08:3d:5f:a6:bb:c1:c2:77:28:e3:91:b6:b3:cb:f9:f2:70:
75:cf:58:75:7f:da:68:4c:29:d9:fc:87:94:f1:2f:ab:21:84:
b9:34:fc:dd:ce:7a:5c:67:d9:4e:5b:de:22:e4:cf:32:e3:3f:
96:13:1e:2e:0c:6b:37:1c:25:53:89:d0:8d:bb:57:48:9e:c9:
a0:1a:c5:e9:0f:d7:a8:07:08:9a:21:2c:ea:1a:01:fa:20:fe:
2b:bf:e8:95:ab:3d:46:5c:09:58:f1:8d:ea:c0:59:a9:ba:52:
ec:1d:68:39:ab:8e:21:57:ed:26:59:50:69:22:37:fe:04:83:
d7:88:f2:c9:72:6b:ca:73:9a:a9:15:be:fc:b2:3a:c5:d3:0a:
c7:fb:66:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:43:27 2024 by rpki-client on console-fra.rpki-client.org