Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/lGXK0wHs8RVYLoLjj8Z5ijVYlPA.roa
File: lGXK0wHs8RVYLoLjj8Z5ijVYlPA.roa (raw, json)
Hash identifier: 54iiSzmNzzy9x12PzjxJ6aJmW+QmPBlHuS/IVdT/oRI=
Subject key identifier: 94:65:CA:D3:01:EC:F1:15:58:2E:82:E3:8F:C6:79:8A:35:58:94:F0
Certificate issuer: /CN=c3abdcc49f7d9033b52904679f3c9b783d8c1358
Certificate serial: 0190352D38E75F512AB4CB9DA529C777071B
Authority key identifier: C3:AB:DC:C4:9F:7D:90:33:B5:29:04:67:9F:3C:9B:78:3D:8C:13:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6vcxJ99kDO1KQRnnzybeD2ME1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/lGXK0wHs8RVYLoLjj8Z5ijVYlPA.roa
Signing time: Thu 20 Jun 2024 10:24:34 +0000
ROA not before: Thu 20 Jun 2024 10:24:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 185.109.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/w6vcxJ99kDO1KQRnnzybeD2ME1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/w6vcxJ99kDO1KQRnnzybeD2ME1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/w6vcxJ99kDO1KQRnnzybeD2ME1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 28 Jun 2024 20:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:35:2d:38:e7:5f:51:2a:b4:cb:9d:a5:29:c7:77:07:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3abdcc49f7d9033b52904679f3c9b783d8c1358
Validity
Not Before: Jun 20 10:24:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9465cad301ecf115582e82e38fc6798a355894f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:09:ef:46:12:f2:f2:47:d1:94:56:8f:c8:3c:
9a:bb:54:41:88:90:a9:20:1f:46:c0:9e:58:5c:70:
19:db:5a:52:02:32:b0:b8:99:7b:39:a9:d5:ae:05:
98:5d:67:a5:78:f3:4f:3d:cc:67:70:c0:18:64:3b:
01:36:5f:47:cb:ba:71:93:94:fb:8f:3a:23:c2:76:
1b:77:bb:92:0f:dc:b8:cf:4e:f9:2c:70:ae:96:4e:
44:a9:8c:8f:9b:9f:81:5b:16:32:e0:c1:f5:42:f4:
ac:4c:d0:37:2e:cf:19:63:25:79:cb:25:76:c4:b9:
ef:76:8e:48:6a:f4:c4:8e:58:d9:d6:b5:4a:66:10:
d8:ec:af:38:cf:64:b8:1a:ed:63:88:e5:d5:e2:97:
c2:fc:ba:8b:e3:82:ec:4b:08:e3:c0:58:f4:ba:f7:
d9:a2:31:8a:39:ea:00:c8:31:05:86:46:c7:30:ce:
4c:9c:d1:ee:5b:61:ea:92:97:87:51:ed:dc:3a:99:
fc:17:d3:d4:e2:a3:b1:52:31:4a:73:52:ed:55:a7:
0d:cf:db:7f:09:f0:0c:80:39:46:d2:9d:d7:4b:9c:
5d:45:0f:69:0d:33:9e:98:4a:85:b0:06:be:d9:3c:
a0:cf:d2:3e:40:19:bc:96:02:68:1b:13:9f:13:10:
9f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:65:CA:D3:01:EC:F1:15:58:2E:82:E3:8F:C6:79:8A:35:58:94:F0
X509v3 Authority Key Identifier:
keyid:C3:AB:DC:C4:9F:7D:90:33:B5:29:04:67:9F:3C:9B:78:3D:8C:13:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6vcxJ99kDO1KQRnnzybeD2ME1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/lGXK0wHs8RVYLoLjj8Z5ijVYlPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/672883-feb4-414f-9d00-4d9127fba3ad/1/w6vcxJ99kDO1KQRnnzybeD2ME1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.237.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ff:2f:4b:a7:85:0a:22:b9:91:3d:7b:9f:f4:57:bf:7a:79:
8f:7c:67:ba:cd:c5:15:ab:da:39:8b:82:52:dd:78:19:6b:79:
0b:76:ad:ec:f2:d5:d4:0e:6f:cc:e7:6b:78:3f:0b:0e:7f:fd:
8a:d8:30:2c:91:86:ac:36:f1:6f:26:13:81:7c:62:3c:4c:26:
e4:e5:b8:eb:bb:aa:a7:8b:95:53:1f:d7:b8:0a:0f:b7:ea:b1:
11:79:71:0a:28:af:7b:a8:28:f6:e0:80:84:f9:44:30:ed:fe:
a8:71:a5:56:53:d9:49:45:ef:d0:df:68:7b:5a:43:65:86:b6:
1d:e6:56:f3:d3:88:11:09:b6:c2:95:cd:47:e1:3e:52:47:21:
0c:94:76:b7:97:f6:e0:8b:b2:c5:6c:25:b8:cd:98:d8:33:5f:
92:7a:46:d4:c5:2a:bf:ab:b1:9f:65:4f:89:98:89:30:87:79:
9e:d4:9a:51:9f:86:66:bd:38:35:11:0b:91:93:9a:61:70:87:
ba:45:cf:3d:51:ff:cc:11:20:a1:09:61:96:00:8c:a2:36:d2:
c2:ff:f3:65:37:99:0e:40:9d:75:8c:25:25:a5:70:64:5d:b5:
aa:98:af:1f:d5:ae:28:29:17:20:24:29:25:c9:d7:1b:ee:e8:
86:3b:6a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 01:55:06 2024 by rpki-client on console-ams.rpki-client.org