Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/Xwc4k6py-0PW3W2jdjN83S8VU5E.roa
File: Xwc4k6py-0PW3W2jdjN83S8VU5E.roa (raw, json)
Hash identifier: QlasRYp/5whBQ3j5OklEhfI3rTfWRQU9zffbyRWRIuM=
Subject key identifier: 5F:07:38:93:AA:72:FB:43:D6:DD:6D:A3:76:33:7C:DD:2F:15:53:91
Certificate issuer: /CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Certificate serial: 018CC9BC41872D95E211B55E029453055D13
Authority key identifier: 8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/Xwc4k6py-0PW3W2jdjN83S8VU5E.roa
Signing time: Tue 02 Jan 2024 10:33:27 +0000
ROA not before: Tue 02 Jan 2024 10:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48951
IP address blocks: 185.225.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/j6mutCbCijSAh3b5Vok107nsngg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/j6mutCbCijSAh3b5Vok107nsngg.mft
rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 03:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:41:87:2d:95:e2:11:b5:5e:02:94:53:05:5d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Validity
Not Before: Jan 2 10:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f073893aa72fb43d6dd6da376337cdd2f155391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2b:49:64:cc:d8:c1:ad:c3:1d:0b:d3:fd:0f:
ff:14:54:d8:96:c2:b5:aa:19:6b:56:40:06:20:ec:
d6:47:49:53:10:b8:f5:91:12:09:70:5b:1e:e5:1f:
e5:15:77:77:8e:08:d0:e0:55:e7:89:f2:37:31:cd:
b0:ec:5c:57:e8:86:c6:9b:c2:6a:ec:81:0b:bf:3e:
9f:74:2d:92:4b:20:71:13:5c:67:3c:d1:fc:f6:b8:
74:e9:bb:84:c4:08:12:05:20:4a:8e:66:c1:e4:63:
a9:cb:f5:4c:79:07:b8:8e:90:6a:95:bb:f5:00:dd:
d9:c4:e5:a9:b1:68:a0:c7:94:94:6e:34:c4:b5:f3:
9b:4a:b4:47:9b:9d:20:28:2b:d3:7c:5b:79:47:50:
1f:3b:f4:b3:79:ed:65:b0:84:69:14:f8:70:85:3e:
81:f9:18:d0:99:83:2b:0a:eb:b1:bd:11:e6:b0:76:
63:27:f1:2b:f4:fd:00:f3:6a:4c:6c:d0:78:00:16:
5f:69:2d:68:df:14:a9:94:45:cc:42:66:3b:8c:05:
0c:07:12:76:fc:01:8f:d4:7c:dc:5f:dd:60:9d:bd:
b4:72:45:99:95:07:a0:96:70:78:16:87:eb:a5:f4:
86:f2:e2:4c:f5:bd:a3:09:d7:c0:e8:ff:3a:fe:2c:
58:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:07:38:93:AA:72:FB:43:D6:DD:6D:A3:76:33:7C:DD:2F:15:53:91
X509v3 Authority Key Identifier:
keyid:8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/Xwc4k6py-0PW3W2jdjN83S8VU5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/j6mutCbCijSAh3b5Vok107nsngg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:a8:c2:fc:e3:7e:6d:f9:42:d8:1e:8c:f2:58:03:b2:af:d4:
eb:cd:c8:e2:5e:f1:71:a5:6e:eb:0b:d3:68:04:93:eb:b4:bd:
09:91:5a:82:bc:7e:47:c4:04:61:fe:7c:68:4b:83:86:e9:50:
0c:6f:81:fc:32:f7:6b:db:d2:37:7f:23:11:01:d6:d6:d0:e8:
93:72:49:79:99:85:d5:31:5e:c8:36:e1:37:33:51:4e:fc:8d:
01:b4:83:87:c6:ed:f5:4d:b4:be:19:04:6c:2e:3f:f1:f6:ec:
2c:0a:2f:9d:0d:50:d9:52:d2:4a:1d:24:ab:60:02:2a:06:07:
fb:90:3e:a3:8e:a9:2f:32:19:05:25:1e:a0:60:c9:57:0f:7c:
b4:c8:85:d7:e0:aa:00:08:30:fd:7b:92:28:eb:d6:55:00:8b:
e5:13:9e:c9:a3:dc:a9:40:6b:02:91:68:6d:83:8b:7b:12:c0:
6a:2b:4b:33:18:da:ef:56:1b:9d:f4:07:00:e1:ca:4e:1c:19:
f3:dd:a0:79:f5:48:e4:a1:8b:74:ba:08:c0:ad:da:1b:49:56:
34:67:cf:66:da:2c:40:a8:4c:35:11:e9:e0:ec:09:09:e3:b7:
a8:9e:2f:79:b7:d8:c2:73:e8:54:da:14:a6:06:9f:83:cf:75:
f7:ed:81:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 09:03:14 2024 by rpki-client on console-ams.rpki-client.org