Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/5Y7lehKmlnnXL5BF2MLxgLzpXf8.roa
File: 5Y7lehKmlnnXL5BF2MLxgLzpXf8.roa (raw, json)
Hash identifier: LYyY0TsBTtVRumKHHgU28OWYtvu91+HEx0oXRn0TY2s=
Subject key identifier: E5:8E:E5:7A:12:A6:96:79:D7:2F:90:45:D8:C2:F1:80:BC:E9:5D:FF
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 018F95420B30A234342909D9641ED60780F8
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/5Y7lehKmlnnXL5BF2MLxgLzpXf8.roa
Signing time: Mon 20 May 2024 09:08:04 +0000
ROA not before: Mon 20 May 2024 09:08:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47376
IP address blocks: 46.148.38.0/24 maxlen: 24
46.148.41.0/24 maxlen: 24
46.148.43.0/24 maxlen: 24
46.148.44.0/24 maxlen: 24
46.148.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:42:0b:30:a2:34:34:29:09:d9:64:1e:d6:07:80:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: May 20 09:08:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e58ee57a12a69679d72f9045d8c2f180bce95dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:24:0e:38:c4:56:46:8f:2c:29:b4:02:7a:80:
41:b0:b9:1f:6c:01:0d:89:09:31:e9:c2:0f:15:a6:
26:97:ae:9b:b5:c2:93:f3:0e:01:e8:fb:92:1a:c0:
90:0d:ec:a0:99:03:93:a6:d8:5c:fd:d0:32:c1:71:
aa:22:75:2c:60:30:d0:cc:51:1f:42:95:e5:a1:8f:
79:6b:6d:f4:8a:a6:00:27:b1:93:c5:06:db:31:b3:
9b:1b:11:c2:c7:55:ca:85:d5:ec:b1:11:24:f6:6b:
49:45:a6:5d:70:aa:a5:1f:9d:2a:fe:51:e6:2e:4b:
8a:85:d6:f9:bf:66:48:5d:83:04:70:c3:04:25:d2:
a2:8b:a3:56:05:64:bc:29:a6:70:89:d5:1f:8d:a2:
8d:80:b2:e2:02:7b:ee:dc:b7:92:d8:52:c4:60:32:
63:42:ba:f9:f7:d0:3c:78:aa:21:b1:38:06:37:0f:
9b:6c:f0:fc:b2:27:0f:4f:6c:8c:11:78:85:b3:b5:
6e:52:06:73:d1:a0:80:11:6b:7d:24:3b:e9:39:7d:
5d:56:b0:38:b7:b0:68:28:f3:19:6b:61:00:b2:64:
4c:82:fc:7e:c4:85:95:7c:b1:f5:f9:7a:b9:ae:48:
85:b2:a6:2a:f9:d0:5d:47:20:9c:4d:12:72:85:52:
76:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8E:E5:7A:12:A6:96:79:D7:2F:90:45:D8:C2:F1:80:BC:E9:5D:FF
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/5Y7lehKmlnnXL5BF2MLxgLzpXf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.38.0/24
46.148.41.0/24
46.148.43.0-46.148.44.255
46.148.46.0/24
Signature Algorithm: sha256WithRSAEncryption
62:50:d2:e1:0b:a1:14:4a:14:d8:1f:06:c8:19:89:53:69:70:
51:c7:a1:fd:a3:ca:2a:e8:cc:33:11:0a:2a:f9:a8:c6:17:0c:
b5:f9:37:a4:1d:d8:f1:4d:99:cd:f1:0a:9e:13:6c:ac:ac:88:
da:a4:cb:b8:5e:7a:8d:44:f3:19:3f:41:ae:c5:de:5c:32:5d:
9c:2b:61:86:38:c5:4b:16:bd:97:ac:38:83:16:c0:fb:0d:ce:
0d:78:29:a9:16:a3:0d:70:a5:ee:a3:fb:7a:a4:42:1f:9d:11:
89:e2:8c:17:c0:88:f3:55:f4:4e:b9:b7:d0:38:82:3d:65:ff:
11:0f:e8:e7:fd:82:a3:af:81:67:ae:cc:6e:74:9e:5c:e5:86:
69:3b:da:67:24:0e:52:f3:4e:f9:1c:c6:74:53:1a:05:58:66:
03:2e:e5:40:f2:87:8b:49:ca:f1:a5:7f:90:fb:34:6d:d7:7f:
8e:26:06:77:1e:bd:5f:e4:82:fe:66:54:5e:c8:1b:7b:c7:a7:
44:39:db:a8:10:02:81:54:aa:d7:03:80:e8:be:1a:a7:bf:e6:
54:71:65:dc:49:16:c6:ff:aa:61:a6:d7:32:34:44:d6:b5:6d:
3d:fc:10:d0:bd:1a:fd:33:ef:8f:56:2d:ba:77:01:6c:57:7f:
79:d4:57:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:59:33 2024 by rpki-client on console-fra.rpki-client.org