Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/SjUZi8eqRLPVERyoMRsDIhXBXQw.roa
File: SjUZi8eqRLPVERyoMRsDIhXBXQw.roa (raw, json)
Hash identifier: 2jfdFnVuTd/1AyJsUKWkbEyRk3TGsBqlTHFt02QHokk=
Subject key identifier: 4A:35:19:8B:C7:AA:44:B3:D5:11:1C:A8:31:1B:03:22:15:C1:5D:0C
Certificate issuer: /CN=59b594b107abfe32a46c4d1dbe07bbb4e6bb163a
Certificate serial: 018CC4244B924E4DED491F39C7CE62F9871D
Authority key identifier: 59:B5:94:B1:07:AB:FE:32:A4:6C:4D:1D:BE:07:BB:B4:E6:BB:16:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WbWUsQer_jKkbE0dvge7tOa7Fjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/SjUZi8eqRLPVERyoMRsDIhXBXQw.roa
Signing time: Mon 01 Jan 2024 08:29:22 +0000
ROA not before: Mon 01 Jan 2024 08:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50811
IP address blocks: 91.230.41.0/24 maxlen: 24
46.18.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/WbWUsQer_jKkbE0dvge7tOa7Fjo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/WbWUsQer_jKkbE0dvge7tOa7Fjo.mft
rsync://rpki.ripe.net/repository/DEFAULT/WbWUsQer_jKkbE0dvge7tOa7Fjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 16:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:4b:92:4e:4d:ed:49:1f:39:c7:ce:62:f9:87:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59b594b107abfe32a46c4d1dbe07bbb4e6bb163a
Validity
Not Before: Jan 1 08:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a35198bc7aa44b3d5111ca8311b032215c15d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:26:b4:72:03:13:21:8f:be:34:84:53:01:
65:a4:7f:0d:74:6f:59:f6:92:db:0c:b6:4b:ce:95:
25:8d:fa:37:1d:c3:1d:05:97:e5:0b:ac:7b:70:d2:
46:6a:7e:7f:7d:84:8e:3f:f7:d0:a6:c7:fe:0f:d6:
cb:30:11:0d:74:b2:28:7a:14:07:b4:c5:c5:21:db:
4d:9c:2c:b6:e8:a3:06:1e:8a:9a:19:51:d7:15:98:
dd:ee:36:d0:fc:c6:91:35:1e:b9:c0:a8:66:f0:5c:
b1:29:be:0f:11:a8:dc:dd:ab:2d:87:9d:28:43:94:
a8:54:01:a2:3d:e2:e1:0c:b7:eb:49:ba:00:1c:7e:
06:be:31:e9:55:ea:60:d5:f6:cf:a4:53:a9:68:6a:
d6:7b:0c:58:5a:85:fd:0b:eb:6f:08:40:2e:22:10:
70:ff:c6:ec:ad:26:7f:2c:e0:fb:4b:11:e7:3d:20:
d5:3e:9e:20:51:0e:b5:53:3f:fe:69:c2:cd:7d:b2:
62:02:5a:0b:33:1e:5d:e1:ac:84:7e:13:0d:10:82:
7a:11:01:01:19:d1:d4:45:e1:4b:89:1b:d7:46:8d:
1e:c4:46:25:1d:a5:ee:ec:54:27:b0:c5:04:e2:00:
a3:33:91:d4:c2:68:d6:6b:be:7d:17:85:b9:03:96:
d0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:35:19:8B:C7:AA:44:B3:D5:11:1C:A8:31:1B:03:22:15:C1:5D:0C
X509v3 Authority Key Identifier:
keyid:59:B5:94:B1:07:AB:FE:32:A4:6C:4D:1D:BE:07:BB:B4:E6:BB:16:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WbWUsQer_jKkbE0dvge7tOa7Fjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/SjUZi8eqRLPVERyoMRsDIhXBXQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/WbWUsQer_jKkbE0dvge7tOa7Fjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.104.0/24
91.230.41.0/24
Signature Algorithm: sha256WithRSAEncryption
35:36:e2:ee:e8:33:2c:8a:92:1d:a6:e0:0b:f1:ac:2c:80:00:
70:28:9a:0f:0f:e1:a9:d4:d2:19:58:7d:ac:36:fd:15:2c:15:
d6:51:6c:dc:05:e0:51:54:d7:33:4c:da:25:1a:55:04:b0:f9:
c7:14:db:eb:27:7d:56:15:62:2d:8b:b3:cf:a0:6f:be:b4:53:
f7:59:ce:7e:7d:25:74:74:57:bd:16:ac:74:99:4d:7a:0b:21:
0d:a5:71:59:d5:5b:3f:4d:9c:30:7a:e2:f3:43:ea:c9:3e:55:
0e:dc:8c:bc:2d:0b:ff:67:a6:bc:27:28:07:7a:7e:d6:b9:6c:
bd:8c:f5:e2:ad:94:ee:6c:f5:a2:7e:b0:dd:67:0f:20:94:1d:
71:78:5b:df:d5:a7:08:6f:6a:a9:e4:96:ab:50:92:e9:f3:24:
af:41:83:f0:5c:ba:37:78:2f:0c:bb:9d:35:ba:39:a7:25:e6:
25:84:a8:bb:40:7d:1a:76:2a:03:34:0e:af:7e:17:dc:12:da:
13:d0:11:b0:91:4e:2e:30:ea:c5:8a:4f:6e:6e:73:ec:fa:ed:
0f:63:94:b1:03:eb:44:0e:11:cf:83:d3:4d:b6:18:8c:50:8e:
21:89:46:22:06:c1:db:8d:85:15:2f:aa:c8:eb:66:8f:bd:94:
21:e6:00:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:47:37 2024 by rpki-client on console-fra.rpki-client.org