Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/OBpKn6ejUBcNkXvi7MTpql-jTgs.roa
File: OBpKn6ejUBcNkXvi7MTpql-jTgs.roa (raw, json)
Hash identifier: vND0duUDXoLD01DrxFRvL8753q+YDe0HRDxL6Lj2JxQ=
Subject key identifier: 38:1A:4A:9F:A7:A3:50:17:0D:91:7B:E2:EC:C4:E9:AA:5F:A3:4E:0B
Certificate issuer: /CN=6cedf4158ade98f1457cec858955626f161d2aef
Certificate serial: 018D9C41829F1505E3063D0ADCBD46F741CB
Authority key identifier: 6C:ED:F4:15:8A:DE:98:F1:45:7C:EC:85:89:55:62:6F:16:1D:2A:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bO30FYremPFFfOyFiVVibxYdKu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/OBpKn6ejUBcNkXvi7MTpql-jTgs.roa
Signing time: Mon 12 Feb 2024 07:39:15 +0000
ROA not before: Mon 12 Feb 2024 07:39:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43317
IP address blocks: 94.242.0.0/19 maxlen: 19
94.242.0.0/23 maxlen: 23
94.242.32.0/20 maxlen: 20
2a00:1838::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/bO30FYremPFFfOyFiVVibxYdKu8.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/bO30FYremPFFfOyFiVVibxYdKu8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bO30FYremPFFfOyFiVVibxYdKu8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9c:41:82:9f:15:05:e3:06:3d:0a:dc:bd:46:f7:41:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cedf4158ade98f1457cec858955626f161d2aef
Validity
Not Before: Feb 12 07:39:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=381a4a9fa7a350170d917be2ecc4e9aa5fa34e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c3:88:0f:37:31:dd:af:28:a0:c7:0b:5a:1a:
cd:dd:4a:60:77:a3:f1:87:7d:0d:1d:75:5d:85:05:
80:1f:00:5d:43:96:5c:12:5f:7c:d2:f6:e9:bc:54:
01:c4:7c:d5:7b:bf:2e:38:18:2d:41:67:bd:de:a2:
e7:8c:78:00:b8:18:d0:99:62:56:7a:06:5d:31:26:
b2:da:51:0a:30:97:aa:4c:cb:fb:26:0c:67:b1:97:
f9:7c:3a:3b:1d:57:9d:f1:50:45:0a:91:ee:0f:ee:
f7:e7:f4:0e:f8:46:e3:b7:e1:de:45:03:97:63:4f:
3e:03:06:f0:c7:2b:23:bf:e0:2e:6b:72:d7:eb:39:
5d:3a:01:6c:02:a1:1c:00:c6:a9:8c:22:e6:f8:59:
44:6c:bc:70:83:bc:6a:8a:6e:d9:45:44:d8:a3:e4:
d6:92:af:c1:0c:14:bb:8e:fc:85:62:c6:f3:30:15:
40:ed:92:64:a5:7c:e8:4b:e1:7d:3f:ab:27:26:78:
8d:ed:83:24:2e:2b:24:78:13:f6:ac:06:73:d6:9a:
d3:6a:37:45:5c:bf:df:c2:d3:fe:fb:d6:ef:8d:a7:
a5:41:78:6d:78:6c:5f:75:f7:99:01:4e:04:ba:9f:
1a:4e:c0:bb:db:1d:f4:b1:0c:ff:39:16:93:5b:c8:
db:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1A:4A:9F:A7:A3:50:17:0D:91:7B:E2:EC:C4:E9:AA:5F:A3:4E:0B
X509v3 Authority Key Identifier:
keyid:6C:ED:F4:15:8A:DE:98:F1:45:7C:EC:85:89:55:62:6F:16:1D:2A:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bO30FYremPFFfOyFiVVibxYdKu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/OBpKn6ejUBcNkXvi7MTpql-jTgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c4213d-0de0-4db4-a508-822d9f855984/1/bO30FYremPFFfOyFiVVibxYdKu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.242.0.0-94.242.47.255
IPv6:
2a00:1838::/32
Signature Algorithm: sha256WithRSAEncryption
5c:af:bf:65:ec:0c:de:32:a8:94:81:3e:31:bc:3c:fb:a7:c3:
e8:1a:ae:15:81:5c:60:04:6f:2f:24:f7:5a:c3:76:58:55:e8:
58:01:d5:1e:cf:08:eb:f9:fb:01:14:66:11:dc:62:f7:b2:cf:
d6:52:08:e2:9a:19:01:09:02:02:97:bf:96:55:58:68:5f:e5:
59:9c:fd:42:2f:ec:f7:e4:d3:2b:8d:74:11:9a:3b:82:df:7a:
6c:f5:86:4a:eb:c0:a9:90:f2:cf:6c:dc:6d:ce:26:d5:e8:90:
6b:6d:68:67:a7:5d:67:84:b4:c5:a9:36:f8:98:40:3f:a2:31:
d6:d7:97:49:fb:71:37:42:e2:52:16:ed:5f:99:fb:72:68:11:
08:7c:01:b2:3d:4d:e7:1e:bd:75:58:05:4e:0e:68:b7:d7:30:
e7:9f:4f:1c:ea:f0:0d:07:45:cd:3e:05:83:d5:4e:57:72:9f:
92:ec:2d:53:ad:41:c4:13:3f:9b:f5:cd:8c:64:c7:09:44:4c:
fe:99:f3:64:63:0e:62:4e:d0:f4:10:7c:4e:78:40:d4:5a:03:
90:fa:53:e2:e2:ad:31:df:82:28:96:00:e6:19:bc:41:4d:37:
5b:37:3b:df:65:31:88:69:97:64:d7:b9:b8:06:70:0d:8e:a0:
95:79:a6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:15:10 2024 by rpki-client on console-fra.rpki-client.org