Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/au1DMSkp-H-TOqKVx24ZUSQ5gq4.roa
File: au1DMSkp-H-TOqKVx24ZUSQ5gq4.roa (raw, json)
Hash identifier: MxWoVk4HEv9QUxtjhttulDJ/YdvQRPF+XTVAY8SDZz8=
Subject key identifier: 6A:ED:43:31:29:29:F8:7F:93:3A:A2:95:C7:6E:19:51:24:39:82:AE
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190349E664FC11AF01C16996F06EEB2785F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/au1DMSkp-H-TOqKVx24ZUSQ5gq4.roa
Signing time: Thu 20 Jun 2024 07:48:34 +0000
ROA not before: Thu 20 Jun 2024 07:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214678
IP address blocks: 45.67.244.0/22 maxlen: 22
77.247.120.0/22 maxlen: 22
89.42.112.0/23 maxlen: 23
185.226.192.0/23 maxlen: 23
185.227.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:9e:66:4f:c1:1a:f0:1c:16:99:6f:06:ee:b2:78:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 20 07:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6aed43312929f87f933aa295c76e1951243982ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:26:fc:fa:29:02:67:9d:80:82:ec:91:93:10:
5b:97:12:ab:f1:70:7d:97:9a:ae:c7:e9:31:7c:4a:
a1:dc:0a:1b:2d:8e:12:00:03:03:60:ce:91:c8:41:
64:bf:0b:67:e2:48:e6:17:23:3f:d1:8e:69:4b:6b:
e8:6a:be:aa:8a:f7:1d:72:f2:32:88:0e:8d:2e:4f:
4a:86:d0:eb:ab:21:e7:ae:db:b6:e0:26:0e:6d:f6:
b5:ca:eb:cf:bc:c1:4d:0d:dd:43:ae:9c:ab:0c:47:
10:f7:62:dc:c2:d8:c5:59:af:59:56:29:2d:e9:f5:
29:69:5a:48:68:a7:a4:ea:a2:a0:9a:f9:e6:ab:81:
c2:95:8f:30:6e:f6:64:35:1d:86:6d:b8:6b:50:f9:
a1:f0:89:4c:69:e8:28:70:bc:f1:c9:a7:f6:83:a4:
bc:12:56:73:6e:8c:f0:b8:cb:40:07:a9:16:5f:7f:
84:18:d8:be:74:fd:7e:28:2d:d3:3f:a0:39:b5:45:
a9:ab:1b:e6:94:57:6a:93:8b:44:dc:d9:27:c4:ca:
21:e6:52:eb:0f:7c:91:66:ba:81:ff:33:c5:26:56:
c6:7e:b4:02:08:cf:86:bb:c7:30:ce:a6:94:47:92:
31:34:46:90:d5:63:13:25:3c:64:7d:bf:cd:03:15:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:ED:43:31:29:29:F8:7F:93:3A:A2:95:C7:6E:19:51:24:39:82:AE
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/au1DMSkp-H-TOqKVx24ZUSQ5gq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.244.0/22
77.247.120.0/22
89.42.112.0/23
185.226.192.0/23
185.227.103.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:76:5f:77:b1:44:5e:9c:40:79:03:95:58:2e:f5:54:14:42:
20:77:67:d1:a5:fd:32:49:16:22:12:95:93:df:52:df:49:53:
75:a9:14:51:d6:b8:af:6f:c7:f5:c0:19:50:56:e5:8f:86:ae:
f4:75:e1:38:59:59:53:1c:f7:51:0c:b8:39:62:87:1f:07:ac:
85:17:35:55:e4:65:d9:63:97:8e:7f:46:9c:da:cd:74:c9:b8:
34:0f:3d:dc:05:10:66:9d:cc:a3:5b:eb:96:bc:32:b3:18:12:
0e:4f:f0:0b:97:0c:79:7c:7d:c9:29:e9:db:96:b6:b6:72:b9:
4f:f7:c9:e1:3f:71:b6:4a:49:59:b2:8b:e2:1d:13:cd:12:38:
88:8c:d6:6c:bc:52:4c:61:63:d1:9b:ce:6c:21:0f:a7:6b:11:
3f:87:37:a2:41:23:32:1c:b1:49:88:90:16:d2:58:4e:ca:dc:
05:10:10:11:9a:cc:ec:0a:fa:cf:0b:c2:9b:d9:65:a2:22:ac:
64:4a:a0:d3:c4:32:df:81:27:1c:82:e3:9d:0e:c9:66:b1:5d:
e2:72:a4:93:17:3e:48:34:ba:e7:93:74:fe:57:06:e5:91:23:
c4:56:23:5d:73:5a:75:06:e7:77:d2:6f:09:52:30:74:a7:9c:
3f:a5:03:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 14:13:31 2024 by rpki-client on console-fra.rpki-client.org