Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/15kvv9YvEgNMwpzm-i6zmXoxZ7o.roa
File: 15kvv9YvEgNMwpzm-i6zmXoxZ7o.roa (raw, json)
Hash identifier: MKJ+czfAiLHSM+m66l4im7/TISDuHUtBeI//OhhzVrc=
Subject key identifier: D7:99:2F:BF:D6:2F:12:03:4C:C2:9C:E6:FA:2E:B3:99:7A:31:67:BA
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018FC5BE6DD73F95D1912619DF44AA6F554A
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/15kvv9YvEgNMwpzm-i6zmXoxZ7o.roa
Signing time: Wed 29 May 2024 19:05:42 +0000
ROA not before: Wed 29 May 2024 19:05:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.246.226.0/24 maxlen: 24
80.246.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Jun 2024 07:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:be:6d:d7:3f:95:d1:91:26:19:df:44:aa:6f:55:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: May 29 19:05:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7992fbfd62f12034cc29ce6fa2eb3997a3167ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c9:ef:ec:1a:f6:1c:af:fa:88:91:41:4f:45:
ba:99:43:af:bb:05:e6:fa:d3:7c:f2:7f:75:06:72:
11:5a:15:89:00:63:85:d3:5f:dc:f1:c0:37:3e:dc:
ef:71:c4:4e:22:05:54:67:da:ba:c5:49:31:5b:78:
3f:f5:4b:99:ef:34:ec:9e:e7:6b:5d:9d:a5:13:b0:
57:bf:60:c7:4d:79:8d:59:8d:86:73:ff:9e:05:83:
51:15:65:8f:60:90:c3:ca:2e:85:c7:31:2f:2d:fe:
d0:30:c9:6e:80:fc:08:bc:b5:9b:12:fc:1f:03:34:
f6:c2:2b:b5:34:69:f5:d9:f6:8d:47:cc:2f:c9:07:
cc:1a:ef:6f:48:97:bc:b0:4d:7e:6e:9f:af:71:ca:
38:67:bb:04:79:6a:e5:8c:c9:63:37:5e:2f:4a:3a:
67:67:ba:65:2b:dc:18:97:93:0d:18:6d:8c:a3:60:
94:21:f3:09:22:19:75:19:3d:c9:38:92:27:8e:98:
64:67:c3:f5:3d:b1:45:73:7b:a7:5b:28:18:99:44:
33:cd:ca:a0:b2:07:86:d0:03:58:03:28:51:cd:da:
bc:b5:03:fc:14:8a:19:71:61:46:95:6b:17:17:b9:
13:0d:cf:bf:f7:74:5f:59:1d:5a:d3:b5:83:10:97:
6d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:99:2F:BF:D6:2F:12:03:4C:C2:9C:E6:FA:2E:B3:99:7A:31:67:BA
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/15kvv9YvEgNMwpzm-i6zmXoxZ7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.226.0/24
80.246.230.0/24
Signature Algorithm: sha256WithRSAEncryption
44:8e:c5:ef:17:ca:4a:a7:94:75:12:c3:10:24:f7:04:c3:f1:
7e:8c:bd:71:98:b9:74:ae:6b:11:91:d9:83:75:9c:a1:f7:52:
d1:04:44:fd:6c:e4:1c:54:7d:84:f6:73:6e:e2:84:3b:b4:10:
03:71:74:c0:ed:f6:7f:94:e3:9f:df:25:fe:06:ba:ae:fe:fb:
a2:6b:6f:a8:a5:b4:a7:e8:fd:a6:49:3a:76:e2:4c:a5:92:5b:
fd:82:94:0d:ba:b1:75:c5:aa:e0:6b:0c:3d:02:27:4a:76:48:
d5:2b:90:fb:a9:ec:b0:69:2e:44:65:4f:f9:2f:f8:2b:3f:e3:
3b:fc:03:03:0e:8f:4d:52:a3:05:76:92:9f:88:9d:8d:25:c2:
8d:d9:ef:f1:b2:92:aa:e9:8a:6a:ff:65:a3:0d:bd:32:1b:32:
0e:b0:5d:05:24:55:a1:e8:13:3a:3b:ed:b1:f4:2a:f8:b4:e4:
ff:6f:b6:b0:7f:d0:c6:8c:1d:88:f2:8a:3d:4a:bd:20:40:e4:
c0:25:95:23:19:92:71:fa:ac:70:01:ff:93:be:2f:02:8d:3b:
c5:a1:5f:36:e7:ed:77:0c:53:91:8d:46:d9:77:9d:4e:47:67:
03:ea:65:f4:e4:f9:a0:1e:4e:c5:cf:60:47:c5:05:1f:96:40:
e7:78:9a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 12:28:54 2024 by rpki-client on console-ams.rpki-client.org