Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/bvgI8G9i3HXtVAwm5m1ymXkD_-M.roa
File: bvgI8G9i3HXtVAwm5m1ymXkD_-M.roa (raw, json)
Hash identifier: ol0byAFCLIIxbuR74XY9oArvjUC5MFJefyeYIFMfAS0=
Subject key identifier: 6E:F8:08:F0:6F:62:DC:75:ED:54:0C:26:E6:6D:72:99:79:03:FF:E3
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018DC75C203B60532150BE5B512318014FFA
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/bvgI8G9i3HXtVAwm5m1ymXkD_-M.roa
Signing time: Tue 20 Feb 2024 16:31:59 +0000
ROA not before: Tue 20 Feb 2024 16:31:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22781
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:5c:20:3b:60:53:21:50:be:5b:51:23:18:01:4f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Feb 20 16:31:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ef808f06f62dc75ed540c26e66d72997903ffe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8b:d0:d9:fd:27:9c:18:53:04:14:78:81:c6:
d7:51:9e:95:1d:1a:8a:39:fb:3b:24:79:78:13:56:
ea:b6:30:e1:41:ee:b9:f0:8b:6f:0e:6b:c5:c8:77:
08:19:74:89:e7:76:47:0d:7a:fb:89:25:58:8a:e4:
f7:e2:39:37:01:9e:2e:22:6e:32:93:9f:ee:7a:5e:
26:b9:69:1a:99:28:a8:77:68:a2:8a:fe:d7:56:f2:
c7:95:78:63:40:97:48:71:54:c9:f5:e9:e0:fc:ac:
80:2a:94:18:e9:95:f6:02:dd:03:65:e5:f7:f2:d7:
66:20:03:16:35:e5:c6:bd:f6:03:c4:8f:39:1a:78:
a3:58:26:5c:bb:6c:b4:bd:fd:64:7b:41:8c:3b:98:
ef:f9:38:e8:4e:ae:6a:89:4f:c6:7f:42:2b:59:92:
6e:10:fa:68:36:c1:e9:60:00:92:54:c7:4a:79:1a:
35:79:84:33:3c:f8:57:04:ef:54:40:eb:b3:cf:54:
8c:e8:4d:6d:4c:3e:0a:d8:88:3b:5f:c8:4c:f7:e8:
3e:1c:db:1b:bc:95:16:4b:9c:f5:b9:97:56:63:80:
5b:d8:f6:b9:58:85:cf:02:3a:84:44:51:3c:22:48:
cf:2b:ad:ae:0c:09:67:1e:e0:0a:c2:f2:31:c0:61:
8b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F8:08:F0:6F:62:DC:75:ED:54:0C:26:E6:6D:72:99:79:03:FF:E3
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/bvgI8G9i3HXtVAwm5m1ymXkD_-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c1:85:5f:76:4d:90:b1:5d:24:f1:75:84:9d:ab:f5:ff:bd:
be:d1:94:2e:6f:8e:f6:b1:3c:c2:3c:0b:77:29:c6:71:d5:24:
9d:2e:92:e5:76:92:19:39:d9:c3:f5:44:f9:9b:b3:2b:6b:fc:
69:ae:ca:10:17:3d:d3:4d:ac:33:b4:4f:78:15:88:a0:b9:ee:
3a:c1:88:5a:e1:06:80:6b:8b:9d:06:99:e4:df:39:5d:5c:e7:
d5:79:10:2f:87:b1:41:ed:d9:82:1c:bf:0c:f4:5d:3d:bd:0d:
a1:ee:85:db:00:ad:f1:a1:aa:1c:8e:62:8b:5a:e2:d1:43:55:
9f:f1:58:ad:64:d3:40:9b:21:e0:69:cc:31:6d:ec:6f:cb:c3:
fd:0c:9b:f5:ef:65:b7:3a:7b:f1:2c:7f:82:c0:dc:79:c8:c8:
b1:f7:b9:01:72:61:82:57:ea:0c:34:e0:01:18:9a:aa:6a:7b:
d0:73:61:dd:be:f3:b7:41:e1:37:a6:2b:7f:81:5e:14:c6:24:
4a:fa:2c:52:e9:a3:71:d1:e6:41:3f:ed:00:b5:02:8a:52:59:
8e:a6:af:63:d8:4d:36:a2:aa:ad:32:1c:46:09:89:5f:6d:d2:
b7:7b:8b:e7:4c:ee:a4:2a:51:97:7d:64:03:64:b4:b6:eb:47:
49:8c:31:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 18:16:57 2024 by rpki-client on console-fra.rpki-client.org