Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/lAh6dTOl6hK4NmKInZdTw4Fj6pM.roa
File: lAh6dTOl6hK4NmKInZdTw4Fj6pM.roa (raw, json)
Hash identifier: 92Sapu5C3PW5WM6kwVh1AonYBdKtonqeTFNAU2tqLGY=
Subject key identifier: 94:08:7A:75:33:A5:EA:12:B8:36:62:88:9D:97:53:C3:81:63:EA:93
Certificate issuer: /CN=49c403d43b5f38fca2119cd1409a92763edefe71
Certificate serial: 0191E59E1786CA8F03DA584C8147DDCA1D4F
Authority key identifier: 49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/lAh6dTOl6hK4NmKInZdTw4Fj6pM.roa
Signing time: Thu 12 Sep 2024 09:43:48 +0000
ROA not before: Thu 12 Sep 2024 09:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 265530
IP address blocks: 176.57.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:9e:17:86:ca:8f:03:da:58:4c:81:47:dd:ca:1d:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49c403d43b5f38fca2119cd1409a92763edefe71
Validity
Not Before: Sep 12 09:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94087a7533a5ea12b83662889d9753c38163ea93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:a8:3a:22:2c:f3:50:2d:28:e4:ee:f9:51:
a1:de:79:49:bf:c9:33:c1:3b:98:a5:ec:c8:64:00:
88:53:37:aa:16:34:b9:4a:7c:c9:85:2a:1f:f7:16:
79:ea:f6:d2:8d:22:e8:0c:96:fd:f9:a0:fb:44:d0:
19:e3:3f:05:bd:a5:a1:12:a4:dd:17:ab:b0:e1:e8:
0b:aa:f3:22:2d:3f:8b:33:09:40:0a:d7:10:82:75:
e2:8b:e8:ba:47:2e:70:35:61:ca:0d:42:3c:aa:74:
71:21:47:10:1e:fa:34:d8:a6:8b:b8:30:b5:d9:f1:
54:5f:6e:05:d8:bb:71:e8:32:ed:a5:ac:d7:63:a0:
72:b3:43:17:f6:14:2a:a6:e0:65:12:ee:ab:5a:38:
10:ac:e8:57:f8:24:ed:fa:46:f0:fe:67:74:94:7c:
c4:68:ca:37:93:57:d8:d3:5c:26:10:84:92:18:c5:
ad:f3:0a:78:66:6a:48:28:20:44:cb:15:f7:74:88:
2a:1b:1a:b0:c1:f4:52:2c:5e:a8:14:bb:2e:45:f0:
ac:cb:6a:07:85:96:70:62:73:ab:41:14:fc:79:ed:
ce:43:79:64:bd:d1:69:27:5a:77:21:13:60:76:27:
2e:26:96:b0:5a:12:89:cc:18:cb:76:bb:ab:26:ad:
c9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:08:7A:75:33:A5:EA:12:B8:36:62:88:9D:97:53:C3:81:63:EA:93
X509v3 Authority Key Identifier:
keyid:49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/lAh6dTOl6hK4NmKInZdTw4Fj6pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.201.0/24
Signature Algorithm: sha256WithRSAEncryption
30:42:f9:e8:f4:dc:14:5f:03:5e:c4:9b:6a:a5:58:8f:69:54:
7d:bf:ef:02:30:b9:8f:61:47:93:8b:b9:49:8e:37:ca:2d:a0:
a2:5f:0a:61:1a:52:54:3f:42:98:7a:46:88:b5:26:f8:e1:50:
6f:6f:53:b6:90:5d:9a:ea:39:cc:8f:9c:27:e5:3a:c7:a7:8b:
5d:8b:f2:96:e8:a9:c9:7b:3d:08:ee:5a:97:a6:ee:79:13:83:
be:03:f0:08:25:25:e4:02:23:9b:00:54:2b:88:90:cf:4b:59:
dd:1d:da:fb:7b:0c:2f:e9:b2:20:3c:89:6f:42:fa:da:f1:f8:
12:57:b5:0c:4a:7d:93:01:1e:93:8b:77:c3:c9:ea:56:c8:95:
e6:0b:a5:60:e7:28:04:1d:9c:53:a2:1b:c7:68:17:96:42:47:
a3:bf:1d:35:62:34:22:20:7d:68:23:a4:38:db:76:72:ea:00:
2e:43:60:51:1a:21:d6:ed:43:34:00:32:cd:b8:69:83:65:92:
5c:1a:56:13:37:ef:41:26:ee:1f:8c:89:01:fb:f8:f8:2d:61:
f7:70:db:aa:fe:b9:48:df:c8:66:ce:b1:5f:96:78:73:e1:a7:
20:35:6d:0b:60:27:f0:de:57:0f:7f:90:e4:c3:d9:85:bc:34:
ee:4c:2e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:42:42 2024 by rpki-client on console-ams.rpki-client.org