Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Pbs48PiseYpM1Rm3Wb3mz0zyzuY.roa
File: Pbs48PiseYpM1Rm3Wb3mz0zyzuY.roa (raw, json)
Hash identifier: CZgbp1ybs7H07deEr4q6FASBffJOukOUIxbk33RUF5o=
Subject key identifier: 3D:BB:38:F0:F8:AC:79:8A:4C:D5:19:B7:59:BD:E6:CF:4C:F2:CE:E6
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018E1CBF45DE1FF1B8E4EB568F4159FA15F3
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Pbs48PiseYpM1Rm3Wb3mz0zyzuY.roa
Signing time: Fri 08 Mar 2024 06:28:01 +0000
ROA not before: Fri 08 Mar 2024 06:28:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 81.29.148.0/24 maxlen: 24
81.29.153.0/24 maxlen: 24
81.29.155.0/24 maxlen: 24
81.29.157.0/24 maxlen: 24
81.29.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1c:bf:45:de:1f:f1:b8:e4:eb:56:8f:41:59:fa:15:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Mar 8 06:28:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dbb38f0f8ac798a4cd519b759bde6cf4cf2cee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c0:52:1e:04:4f:85:c8:d1:62:c7:89:eb:ac:
e8:39:cd:36:59:00:84:e0:e4:6b:0a:35:3f:c3:c8:
eb:c2:5d:e1:39:a9:aa:a9:cc:12:ba:6f:8a:5c:11:
2b:7c:8e:7a:54:99:19:8d:9e:cc:cd:c8:c3:9d:d1:
02:4d:8e:a1:c0:3d:a3:1e:fe:36:4b:31:3d:cc:6a:
74:9a:fb:2b:22:0e:e6:db:a4:ea:f8:ec:51:d5:b2:
a2:59:70:19:4d:42:66:63:c8:25:e5:d7:72:f9:b3:
4f:da:79:15:65:46:fb:9e:00:6f:3b:cd:3f:33:09:
57:03:0e:fa:9d:d6:4d:1f:12:ff:28:15:74:e9:5d:
69:84:81:38:62:60:f4:cb:d9:3a:34:0f:fe:06:61:
42:0b:dc:68:02:3f:1e:6b:a1:8c:a7:22:f6:d3:06:
20:95:f1:9f:0e:11:95:56:b0:6b:12:fc:d9:85:14:
28:b5:13:a5:6f:6d:5b:2b:71:54:9b:1e:a9:58:3a:
ab:fa:7e:7c:7a:68:e2:ea:18:cc:fc:1b:d6:9a:b1:
74:f0:6d:cc:29:ed:76:50:e2:c5:c2:cd:cc:5f:7a:
7e:db:fb:15:8c:80:19:eb:30:2b:d4:8b:62:9b:ef:
57:92:c9:9e:34:82:11:91:c3:6e:f3:9d:61:3d:d6:
c2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BB:38:F0:F8:AC:79:8A:4C:D5:19:B7:59:BD:E6:CF:4C:F2:CE:E6
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Pbs48PiseYpM1Rm3Wb3mz0zyzuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.148.0/24
81.29.153.0/24
81.29.155.0/24
81.29.157.0/24
81.29.159.0/24
Signature Algorithm: sha256WithRSAEncryption
12:52:33:03:29:b3:73:b9:ed:65:2f:7a:69:85:4f:20:e5:72:
1a:c0:6a:b1:20:92:c8:f0:20:5c:9d:bf:e3:4c:74:4e:d3:dd:
10:be:d5:09:ab:ea:94:59:0a:cc:6a:b9:d7:d1:bf:08:dc:6e:
53:8e:8f:5c:f4:4d:a4:0f:c7:a4:25:10:ec:7f:63:1d:75:25:
c1:4d:91:1c:2b:ab:94:f8:15:b5:a3:80:9d:7c:b5:c6:44:17:
48:51:2f:9f:41:a6:63:b9:fb:00:d9:94:24:d8:6c:d8:f9:ba:
ff:d9:a0:ac:dd:3e:88:f1:93:d0:89:21:a8:8c:5f:6e:ff:0b:
68:b0:21:b8:91:50:c5:8b:94:f3:fe:c4:56:c2:d4:a8:c7:dc:
a4:7a:ba:ee:04:2d:c9:5c:0e:a9:9b:72:2c:3e:39:24:e9:0f:
e0:e4:2f:75:3e:4c:4b:c6:a7:16:26:fc:35:3a:dc:68:dd:5f:
9f:d5:8b:cf:ec:dc:9b:35:fd:77:78:d2:a5:3b:59:0b:3b:a4:
72:c4:0a:4e:6f:11:e8:b9:38:07:c3:e4:d1:a0:52:fc:28:0a:
15:85:81:57:a4:d4:31:78:7b:9a:f9:29:d1:3a:29:53:f5:df:
d1:5d:fa:ec:8a:d1:64:7a:89:eb:49:ca:b6:fd:19:2f:8e:e6:
ff:48:c9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 17:27:05 2024 by rpki-client on console-ams.rpki-client.org