Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/lsqJ4RylP2_we7pYDu_LVQEn3fo.roa
File: lsqJ4RylP2_we7pYDu_LVQEn3fo.roa (raw, json)
Hash identifier: 3HO11e+JkgThZL8zLCt3O7jwGgwXIWjfAUzK3bJlE7M=
Subject key identifier: 96:CA:89:E1:1C:A5:3F:6F:F0:7B:BA:58:0E:EF:CB:55:01:27:DD:FA
Certificate issuer: /CN=744e133ca0cad9f1fd161580590b296db22308ce
Certificate serial: 018CC64B5E3F8EA7992671D196E907D3D66E
Authority key identifier: 74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/lsqJ4RylP2_we7pYDu_LVQEn3fo.roa
Signing time: Mon 01 Jan 2024 18:31:17 +0000
ROA not before: Mon 01 Jan 2024 18:31:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204858
IP address blocks: 185.227.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 07:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:5e:3f:8e:a7:99:26:71:d1:96:e9:07:d3:d6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744e133ca0cad9f1fd161580590b296db22308ce
Validity
Not Before: Jan 1 18:31:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96ca89e11ca53f6ff07bba580eefcb550127ddfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:06:62:ec:03:57:b1:77:35:6a:9f:c8:14:15:
f2:b9:3f:ba:f2:b1:53:77:08:59:db:5c:e5:b5:e0:
51:4a:4e:fc:c7:24:e9:e9:90:78:aa:3a:6c:2d:1b:
f2:65:df:c1:3d:d7:57:94:d1:da:90:84:23:72:bd:
33:60:ea:25:aa:7e:b1:a4:45:bf:d3:ec:33:67:06:
15:19:e6:7a:c6:f7:38:dd:d6:82:a3:08:85:cd:93:
30:60:17:96:24:ae:ad:73:9b:c6:45:83:4f:1b:db:
7a:c5:f9:e0:58:19:0b:92:a6:24:97:5c:8d:aa:99:
b2:10:c6:c7:67:3b:ed:50:c9:de:ee:bd:eb:b5:6b:
51:9d:85:dd:6c:9a:30:97:86:82:78:d1:72:09:04:
85:40:64:2e:e5:1c:14:db:c5:4a:55:be:7b:9c:1b:
85:fc:23:18:a1:dd:44:96:ee:11:4a:23:7f:58:b8:
9e:05:cb:be:3c:8d:99:5b:34:43:d0:82:e4:1d:d1:
63:61:79:85:b6:dc:cf:67:26:cb:a0:40:29:56:82:
81:66:e0:eb:b2:24:f7:92:c9:40:fe:2b:e9:9a:3e:
b2:20:ab:fd:ef:a3:21:6a:34:63:84:d9:ae:ea:95:
28:c5:01:53:7b:ee:88:c7:28:f2:96:3f:30:ad:75:
6b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:CA:89:E1:1C:A5:3F:6F:F0:7B:BA:58:0E:EF:CB:55:01:27:DD:FA
X509v3 Authority Key Identifier:
keyid:74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/lsqJ4RylP2_we7pYDu_LVQEn3fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.184.0/22
Signature Algorithm: sha256WithRSAEncryption
94:53:eb:be:8d:9c:ac:10:9f:37:d6:4c:e8:b5:b0:df:62:40:
0a:73:56:d9:19:2a:ee:00:12:36:9b:ff:56:aa:c5:00:79:ed:
36:3f:65:af:8d:ca:a7:28:07:7a:8a:58:5a:a4:d8:fe:99:65:
b4:34:41:41:99:22:91:f1:d4:89:08:19:15:77:d2:be:a2:62:
46:33:0e:89:f2:38:05:4b:44:13:53:68:91:1e:4f:92:9c:2f:
f1:4d:78:c4:36:55:e8:19:4c:da:a4:0b:b7:09:d8:13:a3:b9:
8f:f8:15:19:d4:5c:30:ca:60:65:bb:2c:f2:f8:2c:f7:ad:14:
45:e4:d8:42:e3:50:92:9a:10:01:e3:5d:e2:58:b1:f2:17:5c:
c9:71:63:a4:f1:0d:c6:44:42:47:d4:ce:6b:16:40:21:5f:5c:
9c:98:27:1f:cd:75:62:fd:28:52:6d:da:3c:3e:4f:c7:5e:31:
80:be:15:7d:09:86:84:d1:a9:66:db:c2:41:26:7d:a6:5b:12:
f4:85:5d:63:d6:13:75:d5:90:fd:98:e5:95:2e:8d:28:5b:56:
4b:84:f4:47:fc:e0:48:aa:a3:5f:60:25:88:59:47:fc:ac:a0:
2c:5f:9c:d9:4b:14:11:7b:e7:bb:fe:4a:3f:22:2c:1f:c2:b5:
4e:05:33:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 09:51:50 2024 by rpki-client on console-fra.rpki-client.org