Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DkEDV3XUGWeE5HlONqR5guJPVW4.roa
File: DkEDV3XUGWeE5HlONqR5guJPVW4.roa (raw, json)
Hash identifier: TS6tF7S5KAXErD70hLyo7pR8Zh7v9SAgF5fIS6HKrII=
Subject key identifier: 0E:41:03:57:75:D4:19:67:84:E4:79:4E:36:A4:79:82:E2:4F:55:6E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FB5C1FF2D1943FF7C7D74C44832D9
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DkEDV3XUGWeE5HlONqR5guJPVW4.roa
Signing time: Tue 02 Jan 2024 04:30:13 +0000
ROA not before: Tue 02 Jan 2024 04:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211043
IP address blocks: 185.227.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:b5:c1:ff:2d:19:43:ff:7c:7d:74:c4:48:32:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e41035775d4196784e4794e36a47982e24f556e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:00:aa:55:7e:b3:63:05:e5:69:c8:89:c8:45:
56:ce:2f:02:f4:85:c1:92:b7:d0:dd:cd:9d:9b:99:
6f:7b:bc:02:6c:22:1d:fa:eb:a5:14:08:f7:e9:87:
be:cd:96:44:ba:b3:1a:78:07:01:25:df:07:ac:80:
38:f1:3f:08:24:96:9d:9a:43:6f:00:0a:56:7a:61:
51:86:39:12:0a:65:d8:2d:06:bd:e4:e3:57:8d:fa:
53:3b:29:2a:b0:49:1d:8c:37:61:2a:83:3e:95:bf:
e6:96:2c:1b:05:ae:13:4c:c2:d9:87:aa:11:dd:87:
ce:52:47:90:cb:83:a2:36:d8:a2:c1:74:bd:11:c5:
cc:51:d3:e9:61:c7:80:e0:e4:a1:53:b0:c6:e4:45:
48:c5:2a:5c:e7:88:a7:57:34:f1:a5:00:88:45:1d:
fd:99:a0:b5:63:11:48:a8:4e:48:5d:59:c1:fb:23:
07:fb:5c:c8:71:dc:86:43:b6:d3:3f:96:1b:85:a3:
46:6d:9b:23:4d:20:a9:a3:1d:70:9d:9a:97:07:71:
1b:f1:22:f3:c9:65:34:b0:4c:6e:13:2d:08:c2:77:
a3:af:47:9f:88:72:6b:ed:0f:f9:3e:ee:57:8b:b0:
7a:06:71:05:2c:18:85:50:ed:c7:d5:2f:af:77:11:
d5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:41:03:57:75:D4:19:67:84:E4:79:4E:36:A4:79:82:E2:4F:55:6E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DkEDV3XUGWeE5HlONqR5guJPVW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:67:66:4a:be:b4:d7:03:f3:71:2e:65:79:66:e2:d7:d7:82:
0d:7f:74:59:29:ad:20:5d:04:57:3a:57:ce:df:e4:62:3a:72:
a8:72:e8:20:74:8e:ea:b8:9c:40:36:0a:31:52:f8:2d:e8:c6:
1a:f4:32:b2:1f:fb:30:8c:c2:42:89:7c:d1:80:62:74:67:16:
47:eb:83:76:5d:09:69:12:01:a1:78:58:51:c3:c8:cc:29:df:
87:c5:26:76:25:cc:d9:52:7d:7f:fd:da:b8:1b:19:0a:fe:62:
a7:8a:fe:6a:7c:bb:2e:54:29:f2:30:51:c8:f8:e6:48:1a:69:
6e:e9:33:bb:30:3f:ca:29:3b:b9:15:d4:a4:f8:a3:04:68:7d:
62:42:e6:0f:b7:9a:c2:fc:20:13:fe:f2:6c:1c:c9:85:89:7c:
2c:6e:ad:54:12:11:9d:62:4e:1c:c7:78:fc:a4:44:11:15:f3:
61:7f:10:75:15:98:be:f2:60:30:f8:67:fb:f2:97:07:a2:c5:
8c:c1:10:eb:ef:62:6f:88:c7:8c:16:a7:19:a2:cc:b5:77:b3:
1a:fc:1b:1b:62:d7:5d:22:f2:bf:27:b3:6f:63:06:1f:64:e3:
cb:88:32:a6:52:2a:38:b2:dd:1a:03:19:c8:f8:7e:4d:88:3a:
8d:06:8c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:04:19 2024 by rpki-client on console-fra.rpki-client.org