Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/1-_w5WwvNCKRAhcLuy-a85g8yLzI.roa
File: 1-_w5WwvNCKRAhcLuy-a85g8yLzI.roa (raw, json)
Hash identifier: 9hgeLHNaDV3NhlA9gMtct8ApKJRDDDY/zsHAJD8DaAc=
Subject key identifier: FB:FC:39:5B:0B:CD:08:A4:40:85:C2:EE:CB:E6:BC:E6:0F:32:2F:32
Certificate issuer: /CN=e2a2ab0a275a2d04f1e2635ab2c77eb3ae6038cc
Certificate serial: 018CC94E1BC57D30BD23332EA702ACAEC075
Authority key identifier: E2:A2:AB:0A:27:5A:2D:04:F1:E2:63:5A:B2:C7:7E:B3:AE:60:38:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qKrCidaLQTx4mNassd-s65gOMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/1-_w5WwvNCKRAhcLuy-a85g8yLzI.roa
Signing time: Tue 02 Jan 2024 08:33:08 +0000
ROA not before: Tue 02 Jan 2024 08:33:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207065
IP address blocks: 185.166.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/4qKrCidaLQTx4mNassd-s65gOMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/4qKrCidaLQTx4mNassd-s65gOMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qKrCidaLQTx4mNassd-s65gOMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 08:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:1b:c5:7d:30:bd:23:33:2e:a7:02:ac:ae:c0:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a2ab0a275a2d04f1e2635ab2c77eb3ae6038cc
Validity
Not Before: Jan 2 08:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbfc395b0bcd08a44085c2eecbe6bce60f322f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b5:54:60:ed:d4:95:0f:4a:e5:25:9d:4b:ea:
e7:53:25:a7:d8:5c:52:d9:4d:ef:f3:5d:96:d4:e6:
48:5d:80:c6:9b:50:29:dd:0b:9f:ae:66:05:42:72:
41:6a:c3:b1:d4:19:87:ca:4c:ef:cf:10:d0:0b:01:
a6:00:35:c8:38:8a:4b:86:5b:e3:15:33:fd:06:96:
8d:4b:d0:c5:b5:2e:24:1a:df:7e:cc:b2:a3:03:c6:
2d:d1:60:11:6b:54:c0:ef:c6:ff:7e:93:a7:a0:09:
a8:a6:19:ab:43:f0:3a:68:c6:20:63:75:33:85:50:
f0:3a:13:24:ad:37:83:61:40:c2:e2:65:9a:f0:12:
ac:4a:5e:6f:47:7a:13:17:53:0d:72:35:08:18:0f:
20:e0:8f:84:99:1b:9c:5e:0b:81:61:d0:1b:f6:53:
c6:17:d9:e3:b7:7c:34:97:a2:57:36:59:5f:f2:f4:
52:ad:62:b9:34:15:1c:b9:f6:7e:ca:28:3d:ab:89:
d6:15:ef:b4:79:4e:a7:de:7c:c2:69:56:b4:83:ad:
3d:45:5b:65:8d:9a:9f:5f:ff:03:7d:f5:10:be:bb:
9f:5e:6b:1d:84:69:63:6c:84:f1:f1:84:5c:e7:34:
b1:5a:02:97:f3:dc:3f:4f:c3:e6:3c:b3:67:53:16:
90:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FC:39:5B:0B:CD:08:A4:40:85:C2:EE:CB:E6:BC:E6:0F:32:2F:32
X509v3 Authority Key Identifier:
keyid:E2:A2:AB:0A:27:5A:2D:04:F1:E2:63:5A:B2:C7:7E:B3:AE:60:38:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qKrCidaLQTx4mNassd-s65gOMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/1-_w5WwvNCKRAhcLuy-a85g8yLzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/55d92c-d3e2-4da1-8d53-7e47da1ce406/1/4qKrCidaLQTx4mNassd-s65gOMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.184.0/22
Signature Algorithm: sha256WithRSAEncryption
47:2a:3c:72:fc:23:53:e9:70:79:bc:a5:69:e7:bf:44:8e:0d:
b6:b4:88:40:04:0d:51:26:39:94:c8:c8:ce:8e:80:94:e2:95:
d8:c8:f6:fe:99:48:3c:86:ba:7a:73:55:f7:e8:8e:c0:d1:64:
4a:ae:24:02:92:3f:ad:ee:53:e1:d9:7f:da:d9:fc:d5:8b:87:
03:d6:2c:be:f1:2b:d9:d9:47:f2:50:de:b4:bb:58:98:55:67:
6f:4e:e6:19:a1:aa:ef:d1:43:5e:a9:dd:17:5c:6d:e3:7f:0d:
32:80:18:96:0d:de:0a:06:94:34:fc:5f:d3:24:87:9a:54:25:
ad:1a:bf:04:6b:ae:62:17:62:d7:bc:2a:1f:75:e0:5c:2e:a1:
bb:89:51:5f:1d:a0:d9:6c:1e:02:d9:ad:39:49:e0:86:e7:b1:
c3:8c:43:16:a3:5a:9b:51:a4:85:51:0d:f8:95:0e:82:06:dd:
90:90:3d:7d:28:6d:aa:24:c1:3d:55:21:e1:b1:20:7a:2b:72:
f4:60:ab:68:27:87:fc:93:74:24:74:71:53:d6:85:a8:1b:5b:
34:54:a5:4f:d7:f0:68:35:81:39:06:1d:da:40:e9:f0:41:b5:
68:e0:b8:d1:f8:ed:e2:88:0d:79:fc:f8:cb:cd:fa:0c:54:a0:
05:01:db:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 16:49:15 2024 by rpki-client on console-ams.rpki-client.org