Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/PEtxBR62L54KIL3SSqptwLAww_U.roa
File: PEtxBR62L54KIL3SSqptwLAww_U.roa (raw, json)
Hash identifier: 78U9VRZ5+CaNiiZpzFYGZ/o6MFmeKNHlrJPxLwZB4Lg=
Subject key identifier: 3C:4B:71:05:1E:B6:2F:9E:0A:20:BD:D2:4A:AA:6D:C0:B0:30:C3:F5
Certificate issuer: /CN=fcde8ca3e2ce52bbcce53c4a2926d3c9c410c04b
Certificate serial: 01902B5033168D556539EAF6A636F14AFDFE
Authority key identifier: FC:DE:8C:A3:E2:CE:52:BB:CC:E5:3C:4A:29:26:D3:C9:C4:10:C0:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_N6Mo-LOUrvM5TxKKSbTycQQwEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/PEtxBR62L54KIL3SSqptwLAww_U.roa
Signing time: Tue 18 Jun 2024 12:26:34 +0000
ROA not before: Tue 18 Jun 2024 12:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206782
IP address blocks: 185.176.148.0/22 maxlen: 22
185.176.151.0/24 maxlen: 24
2a0a:1980::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/_N6Mo-LOUrvM5TxKKSbTycQQwEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/_N6Mo-LOUrvM5TxKKSbTycQQwEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_N6Mo-LOUrvM5TxKKSbTycQQwEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 12:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:50:33:16:8d:55:65:39:ea:f6:a6:36:f1:4a:fd:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcde8ca3e2ce52bbcce53c4a2926d3c9c410c04b
Validity
Not Before: Jun 18 12:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c4b71051eb62f9e0a20bdd24aaa6dc0b030c3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e0:0b:f4:a7:ae:28:78:2c:80:32:42:d8:08:
56:18:f7:75:e2:b1:c1:d9:6d:73:25:f3:c8:12:60:
29:15:b4:fc:fc:98:45:88:b8:06:63:76:6d:59:c1:
c1:bd:9a:c7:28:94:f6:58:c0:25:25:42:fe:85:e6:
7b:8c:79:85:59:e9:76:c6:b1:bc:13:45:e7:0b:aa:
70:8c:90:f8:f3:12:a0:f6:8b:2a:52:34:3d:b1:c6:
7b:dc:d1:48:8a:5b:3c:44:91:0d:38:03:fb:59:79:
ca:08:fe:a2:3f:ca:b7:58:e4:be:28:43:44:e5:c9:
69:0d:35:bb:ae:7b:2b:5c:a4:74:51:cd:1d:79:c3:
07:8a:de:21:61:66:d3:22:e6:91:2e:89:c9:1a:37:
8c:52:26:14:bf:56:69:1f:29:93:a1:80:c1:c8:ff:
f6:97:55:5e:54:13:29:74:00:fb:8e:f3:6f:0d:f3:
ac:84:e8:5e:71:47:8f:83:18:86:5e:33:b4:5a:3d:
83:a0:7c:94:0f:03:2f:58:55:f3:eb:66:6b:d5:a2:
1a:53:69:21:1c:18:7a:15:33:26:89:44:c4:ef:b7:
b7:bb:02:ea:3f:6c:e4:c9:8d:95:1c:68:e2:b3:9a:
37:4f:58:83:28:f1:1b:b5:83:bc:8d:ed:6f:9b:0c:
45:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:4B:71:05:1E:B6:2F:9E:0A:20:BD:D2:4A:AA:6D:C0:B0:30:C3:F5
X509v3 Authority Key Identifier:
keyid:FC:DE:8C:A3:E2:CE:52:BB:CC:E5:3C:4A:29:26:D3:C9:C4:10:C0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_N6Mo-LOUrvM5TxKKSbTycQQwEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/PEtxBR62L54KIL3SSqptwLAww_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/84c76e-a15c-454f-a686-000922a5cf19/1/_N6Mo-LOUrvM5TxKKSbTycQQwEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.148.0/22
IPv6:
2a0a:1980::/29
Signature Algorithm: sha256WithRSAEncryption
2c:f7:50:a6:c8:0f:ff:2a:8a:cb:ca:53:e5:ef:85:08:70:0f:
7f:10:a6:51:33:40:42:96:89:38:c9:fb:31:dc:bc:a5:07:be:
92:e6:cc:cf:e6:85:95:02:19:43:aa:be:57:2f:ed:02:ec:8f:
a7:6d:e6:da:a5:e1:51:d8:0c:1f:0d:28:fe:bf:d1:e9:5f:30:
06:5d:86:f9:05:af:66:ce:14:e6:5a:36:28:4a:7b:b5:ec:88:
6f:dc:be:e3:ae:5a:78:cf:ea:f6:ec:e3:ae:9f:d9:2d:a0:3d:
a0:1b:9d:7a:95:b4:17:d8:78:f4:2b:b3:95:49:0a:64:5a:00:
6d:e4:fc:f2:9c:7b:3f:11:f2:7f:05:df:9f:92:2a:cd:3f:50:
fc:b9:fe:3b:11:bf:19:e6:88:8c:b3:a4:f3:ee:e7:ad:49:31:
49:3c:71:d1:c7:d0:f1:3b:59:d2:04:1a:8b:f7:64:8a:5d:21:
e9:9e:d7:0c:95:4d:ce:cf:7a:05:b3:21:7f:11:9d:4a:ec:88:
9d:00:b8:77:86:6b:7d:46:e4:5f:f9:ea:f4:cb:92:3c:33:78:
8c:49:46:73:4a:f0:a6:25:29:dd:6a:56:63:2d:90:d0:09:68:
f5:1f:86:a5:bb:3e:72:5a:e2:9f:2a:e3:b9:87:8f:df:b2:2f:
04:ff:e2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 15:55:54 2024 by rpki-client on console-fra.rpki-client.org