Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/S_vBoRiU2kf9MSgsQQROU64MHys.roa
File: S_vBoRiU2kf9MSgsQQROU64MHys.roa (raw, json)
Hash identifier: st0mpxivd0tBELz8Udm+PA8h4HjM5p+OCPf4ulBN8HM=
Subject key identifier: 4B:FB:C1:A1:18:94:DA:47:FD:31:28:2C:41:04:4E:53:AE:0C:1F:2B
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0192D8854B65A9505E5A3F70002DE2F2D43E
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/S_vBoRiU2kf9MSgsQQROU64MHys.roa
Signing time: Tue 29 Oct 2024 13:44:27 +0000
ROA not before: Tue 29 Oct 2024 13:44:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/24 maxlen: 24
46.34.40.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.mft
rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:85:4b:65:a9:50:5e:5a:3f:70:00:2d:e2:f2:d4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Oct 29 13:44:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bfbc1a11894da47fd31282c41044e53ae0c1f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:e4:dd:dc:96:15:91:d0:ef:b2:b5:90:27:
88:45:5b:2b:95:12:4f:6a:51:29:bf:05:dc:31:3f:
48:df:bf:03:56:ee:e4:ea:2c:bf:5c:6e:d4:d7:2a:
bb:b5:ed:2d:fc:72:85:09:17:55:25:ec:2c:61:08:
74:05:12:9c:1b:e5:67:66:f2:d1:31:1a:b9:af:5e:
1a:f2:8d:22:30:e5:bd:f1:c1:01:c7:e3:bc:91:ec:
b4:ae:75:57:25:5b:0b:2f:75:b2:f6:fc:8c:1b:10:
15:b4:31:a7:03:cf:5b:e1:51:27:69:d4:a9:ff:97:
0b:d6:98:fa:ca:fa:d5:35:8b:23:ed:84:5e:fb:c7:
01:e4:da:32:9a:f7:3c:ca:ee:49:22:61:5c:b1:7a:
e3:cd:87:3d:e1:10:27:5d:57:9a:9c:80:03:73:36:
af:99:c1:72:c1:0b:90:52:66:fd:4a:18:59:01:c0:
4e:9d:52:49:be:6e:8e:b8:6a:a2:74:60:40:15:b5:
71:aa:2f:0a:f1:8c:6e:31:21:23:86:08:f9:2b:58:
a4:52:7f:1a:a2:1d:81:ca:4f:03:b8:59:14:17:94:
3d:ae:31:d1:b9:1d:48:e1:b6:65:7b:06:37:96:26:
e8:76:2c:a4:c7:1a:fc:5a:dd:15:58:b8:b9:19:59:
ac:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FB:C1:A1:18:94:DA:47:FD:31:28:2C:41:04:4E:53:AE:0C:1F:2B
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/S_vBoRiU2kf9MSgsQQROU64MHys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.40.0/24
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:12:4d:c3:78:c6:9f:4f:6c:e1:51:af:78:d3:c4:0e:3b:91:
40:b3:8f:bb:a0:18:c8:91:97:0b:bb:40:60:c8:10:72:78:ff:
52:10:90:f5:e0:d3:12:84:b9:18:7e:57:62:c1:30:4f:3b:f2:
dd:a2:4d:47:6b:4a:ff:50:41:18:40:42:da:c4:4e:14:7a:68:
18:e2:2b:26:de:5c:24:0a:b5:e2:03:3c:10:6a:32:dd:26:e3:
96:5a:34:22:5c:b6:20:1f:ff:2b:b9:19:30:d1:3b:5f:ff:95:
48:7c:7d:f8:cb:bc:10:48:36:e0:a7:21:ad:b4:25:c6:52:f1:
5c:d2:45:99:c1:ca:35:ac:02:66:84:4c:ea:00:31:bd:4d:a9:
27:bc:ba:d2:00:ac:1c:7a:27:99:00:06:a7:e0:15:44:d9:e3:
0c:8b:9a:e9:60:de:c1:c4:00:42:47:37:15:6e:44:b8:2d:95:
65:71:f5:4b:b2:d7:c3:d4:ad:19:06:76:cc:3c:69:54:07:d7:
8c:5a:9f:cb:d0:27:13:d4:95:9a:36:0f:5f:64:49:e9:08:03:
c6:49:f2:93:9d:62:eb:db:ab:a4:e6:40:03:5f:f0:ec:a8:a2:
8f:75:e8:37:d6:c9:2f:9f:33:26:37:91:2e:d9:50:92:c0:e1:
ab:7c:d5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:06:28 2024 by rpki-client on console-fra.rpki-client.org