Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/FALqL0TNltqrmdlc4R5FLB4aFqs.roa
File: FALqL0TNltqrmdlc4R5FLB4aFqs.roa (raw, json)
Hash identifier: 1i90BvqjyobIq2pFJ0L8d+p0E0kKhHv78gOm8ayrbtM=
Subject key identifier: 14:02:EA:2F:44:CD:96:DA:AB:99:D9:5C:E1:1E:45:2C:1E:1A:16:AB
Certificate issuer: /CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Certificate serial: 018CC56EEFFF1EAFC18AB5C3829D2BEB0AFA
Authority key identifier: 31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/FALqL0TNltqrmdlc4R5FLB4aFqs.roa
Signing time: Mon 01 Jan 2024 14:30:31 +0000
ROA not before: Mon 01 Jan 2024 14:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204818
IP address blocks: 46.16.205.0/24 maxlen: 24
46.16.206.0/24 maxlen: 24
46.16.207.0/24 maxlen: 24
185.148.77.0/24 maxlen: 24
185.148.76.0/24 maxlen: 24
185.148.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:ef:ff:1e:af:c1:8a:b5:c3:82:9d:2b:eb:0a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Validity
Not Before: Jan 1 14:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1402ea2f44cd96daab99d95ce11e452c1e1a16ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f3:89:6c:a5:f1:8d:cc:45:4e:36:0f:89:62:
61:54:74:90:f0:ba:92:59:68:82:87:dc:24:4f:46:
a1:11:ea:c3:ec:8d:b3:a7:23:67:f3:b9:25:86:e4:
0c:7e:f9:82:8c:4f:5f:36:65:c7:1a:26:00:cc:dd:
56:eb:0a:c9:36:98:4c:5b:a6:38:d5:3b:3a:10:b5:
ca:23:84:20:ca:db:44:39:a0:ed:a2:be:2e:5b:fa:
11:e7:59:45:dd:83:21:27:5c:a0:1b:63:ca:5b:9c:
5f:a8:7e:71:c6:01:66:7e:46:45:f1:40:83:db:84:
10:7f:cc:86:75:13:58:07:1f:8c:8f:5b:9c:ef:7a:
58:90:79:de:08:92:ba:80:12:37:cb:fb:7e:4e:bc:
19:0f:44:a0:59:5d:0d:da:9e:fd:ba:50:a8:38:13:
ec:5e:59:a3:31:5b:f3:a5:a2:ce:49:09:84:b2:8d:
d4:13:d7:cc:9e:ea:5d:91:1c:55:82:fb:8d:f8:1d:
eb:0c:14:e4:01:16:4a:78:93:f9:f6:5b:8a:c6:07:
44:a5:dd:c1:cd:6a:e1:4c:3c:22:b5:8b:18:c6:ac:
83:b0:e4:70:01:41:a0:8e:fc:d3:2e:4b:1c:ff:2d:
8b:87:c1:ef:2f:a2:a8:7c:37:86:0c:6d:25:99:42:
73:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:02:EA:2F:44:CD:96:DA:AB:99:D9:5C:E1:1E:45:2C:1E:1A:16:AB
X509v3 Authority Key Identifier:
keyid:31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/FALqL0TNltqrmdlc4R5FLB4aFqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.205.0-46.16.207.255
185.148.76.0/23
185.148.79.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:98:ac:8e:98:ba:18:7a:fc:e8:6d:2f:64:af:f5:96:39:f8:
a5:41:be:aa:7d:5e:c8:8b:69:4f:7d:25:74:34:ff:56:6e:ec:
42:b7:21:29:6a:20:1c:c2:1f:13:1d:fc:e8:12:13:c2:3b:aa:
f1:13:12:0f:de:8b:9e:28:fe:0c:ea:05:f1:fd:f8:56:e6:87:
aa:34:a6:ec:72:3b:fc:38:03:94:e8:13:1e:77:46:26:a5:19:
e2:2b:09:9d:03:b1:c7:cc:88:ef:00:b5:bf:30:d8:7e:59:22:
f8:9b:68:40:07:cd:29:bd:54:79:1c:fb:69:2c:8b:fe:69:3b:
28:82:83:b0:8c:aa:d1:04:28:b4:ec:51:fe:9e:03:6d:b1:3d:
be:b4:c1:90:f9:f5:fb:4d:8a:de:94:25:49:44:d0:e6:d3:6c:
93:32:61:40:9e:ff:b3:8b:c2:50:fe:47:c9:d3:c6:90:20:31:
34:d4:9f:49:e9:07:7c:20:ce:d9:12:29:2c:c5:92:ee:ee:91:
41:3b:3d:c6:8c:44:05:17:3a:7a:c0:2e:d6:e9:e5:6b:70:a2:
73:33:68:ba:d9:01:bb:4f:d8:74:97:dd:1d:77:c4:d1:bf:2a:
15:3c:0a:08:a5:c7:f1:e7:7e:f1:e1:c2:0f:63:8c:16:8f:d2:
31:1a:72:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:58:09 2024 by rpki-client on console-fra.rpki-client.org