Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1nGonb3x25pUSng410lW6mXbhwo.roa
File: 1nGonb3x25pUSng410lW6mXbhwo.roa (raw, json)
Hash identifier: aPwfw51ugncGi4wxwqlhtVhwPa5FVOkxSnbeGApp4xU=
Subject key identifier: D6:71:A8:9D:BD:F1:DB:9A:54:4A:78:38:D7:49:56:EA:65:DB:87:0A
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018EEC557109175E9CACF919DB924753CC50
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1nGonb3x25pUSng410lW6mXbhwo.roa
Signing time: Wed 17 Apr 2024 13:53:26 +0000
ROA not before: Wed 17 Apr 2024 13:53:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 92.53.160.0/22 maxlen: 24
92.53.164.0/22 maxlen: 24
92.53.172.0/22 maxlen: 24
92.53.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.mft
rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ec:55:71:09:17:5e:9c:ac:f9:19:db:92:47:53:cc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Apr 17 13:53:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d671a89dbdf1db9a544a7838d74956ea65db870a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:31:f7:25:64:d7:5b:70:c0:53:d8:0b:f5:d0:
29:a2:ef:80:21:4d:39:e1:3d:fb:cc:65:20:95:a3:
a8:c9:93:4f:0a:a7:15:9b:71:28:56:4d:2b:9d:2c:
ad:e2:bf:b9:22:bd:1e:3f:57:b3:28:1e:dd:26:ef:
5c:7b:65:7f:a0:94:a8:28:b6:5f:b4:f1:95:e7:a4:
96:e3:21:4a:26:c2:fd:c9:23:fa:0d:61:d0:2a:08:
02:2b:83:e0:72:9c:69:69:dd:6a:7b:20:3d:cb:95:
99:83:5b:54:e8:57:cc:c7:0f:d1:7d:d1:f2:19:d3:
e5:38:0f:f7:9a:40:25:1a:36:d0:85:9b:50:79:17:
17:c7:2d:58:8b:7f:cd:13:1c:f7:36:e7:88:62:bc:
dc:9f:cb:a9:e2:4a:37:41:b2:a4:c5:fd:76:0a:51:
24:84:68:e5:69:83:c4:78:18:45:b1:b3:9b:a3:d4:
ac:2c:fc:e9:62:03:2e:c7:57:d8:77:67:69:93:39:
91:91:df:59:b0:74:34:5d:d6:95:c6:38:f9:c7:02:
57:a4:93:f8:36:36:76:19:77:a9:c9:8b:00:8f:ab:
1c:41:2b:16:20:5d:c5:e1:9d:6e:30:80:0f:f2:54:
b0:84:93:01:b8:e5:f0:26:d5:a1:5c:63:1f:2e:26:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:71:A8:9D:BD:F1:DB:9A:54:4A:78:38:D7:49:56:EA:65:DB:87:0A
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/1nGonb3x25pUSng410lW6mXbhwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.160.0/21
92.53.172.0/22
92.53.184.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:05:ad:6f:29:0d:a3:c0:dc:16:02:9b:92:38:ec:14:99:d0:
f7:12:11:40:a2:bd:2f:06:98:c2:af:bf:c0:27:ca:8f:27:8a:
9c:b2:25:bc:a0:d2:33:f7:25:c8:b4:6c:41:fa:47:e0:26:48:
b8:50:d8:c5:55:aa:01:4d:77:f1:84:06:5e:a9:12:29:25:38:
0e:8e:a0:2f:04:d0:58:67:3c:9b:0b:8e:b3:cd:45:bb:b4:07:
8c:b8:66:d6:82:84:df:87:9e:5d:e7:88:5a:e7:41:55:38:fd:
5c:8d:87:ac:2a:b9:c9:d0:7f:cf:43:a4:bd:7f:e2:96:e1:03:
d2:37:f6:44:8a:05:11:91:1c:8a:da:d6:0d:e8:7a:4c:75:68:
47:2a:e4:35:a2:d1:ac:9b:03:bf:8d:e9:e5:87:a7:3d:bf:62:
2c:cb:c3:8e:ec:f0:b4:11:11:e7:20:00:ee:30:aa:24:bf:a1:
4f:7e:39:7f:ed:57:79:42:e2:6c:bf:29:84:43:91:35:5f:1d:
e6:ae:d0:90:1d:09:99:ad:96:9a:a8:cb:8d:2a:e2:2c:e4:ee:
ea:d2:05:33:02:12:e9:29:7a:c5:9e:9e:0d:00:44:4a:40:e5:
af:bf:6d:be:65:bb:ef:9e:17:15:dd:32:8f:4c:95:0a:63:6c:
26:4f:4a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 05:14:50 2024 by rpki-client on console-ams.rpki-client.org