Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/AloB4XUiynBv8BXrBr34mNJedxw.roa
File: AloB4XUiynBv8BXrBr34mNJedxw.roa (raw, json)
Hash identifier: tkMQV75z0tkW/viAr5uxzonKNBDDi4TveEueFzVEGkk=
Subject key identifier: 02:5A:01:E1:75:22:CA:70:6F:F0:15:EB:06:BD:F8:98:D2:5E:77:1C
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 018CC9BC2CD3690091ECF043123FD8F13B33
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/AloB4XUiynBv8BXrBr34mNJedxw.roa
Signing time: Tue 02 Jan 2024 10:33:21 +0000
ROA not before: Tue 02 Jan 2024 10:33:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206280
IP address blocks: 185.190.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 14:51:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:2c:d3:69:00:91:ec:f0:43:12:3f:d8:f1:3b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jan 2 10:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=025a01e17522ca706ff015eb06bdf898d25e771c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:31:5c:3d:ef:26:00:26:bd:de:0a:06:ff:
51:e9:63:49:1d:6d:e3:5e:0e:b9:6d:cf:55:89:a4:
8d:93:4e:82:b3:4c:29:5e:3b:d3:23:8d:1c:18:24:
15:bb:87:0e:18:c6:a6:dd:82:c6:a4:c3:44:f9:ce:
bf:3f:c4:04:f9:98:6c:5e:66:e2:a0:43:82:35:95:
86:55:a4:1f:01:b6:73:85:d6:cb:15:02:4d:91:4f:
19:6d:5b:4d:4b:91:d2:b1:21:b5:ea:30:af:5d:20:
b4:8e:59:77:9c:49:fb:15:d0:71:d3:cc:22:85:6a:
bc:e0:6d:c4:e4:02:11:bd:f9:4b:b4:d8:25:b2:39:
4b:7f:0d:9f:95:64:71:d3:34:7d:78:f8:6e:d1:5e:
77:d4:3d:bb:15:79:e7:b7:3b:6b:5d:d4:ef:86:6d:
03:85:69:3b:6f:6d:9c:2b:9e:05:8b:de:68:8b:11:
ec:4f:bc:62:69:0c:ad:e6:f2:ae:29:2f:bb:fa:0f:
c8:d6:ba:76:76:d3:75:09:87:90:64:8e:6e:3d:38:
2b:11:1f:dc:c8:8d:28:30:fb:95:28:e9:25:4c:cd:
80:75:84:fa:6b:cd:f3:8f:76:b2:a6:a3:f7:91:49:
11:88:26:75:03:73:49:04:fb:d2:55:21:f7:41:9c:
39:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5A:01:E1:75:22:CA:70:6F:F0:15:EB:06:BD:F8:98:D2:5E:77:1C
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/AloB4XUiynBv8BXrBr34mNJedxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.252.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:dd:66:b6:0e:82:17:9c:22:fb:cd:aa:51:4b:ec:4f:63:45:
04:ef:43:89:7b:18:f8:57:fe:48:f9:ec:76:33:b0:a9:c9:43:
63:f5:b3:49:08:02:ab:3b:50:0f:c9:9d:ca:d8:f2:06:3a:db:
13:73:2c:98:ff:85:cb:b2:f8:a6:e7:c8:43:2a:18:f7:90:01:
32:31:21:93:3f:9c:48:68:b2:27:40:97:54:e6:75:34:ed:2f:
21:64:bc:f2:23:09:d4:b5:a9:50:cb:83:17:fb:dc:9b:53:31:
48:93:eb:67:7a:65:b9:d0:91:7f:1d:47:39:17:54:7d:71:5f:
b2:9b:39:9e:2f:22:4f:ff:26:f2:cc:14:e1:89:22:0b:de:c4:
0a:6f:7f:ae:47:dc:55:8b:b7:44:da:c5:45:40:68:60:1e:b8:
ba:1c:ea:52:75:9c:ae:b2:f1:a7:a5:83:fd:00:64:0b:ac:06:
11:c7:af:91:38:08:e3:02:66:44:b2:78:d1:0e:f2:0f:43:33:
37:4a:d4:c4:f2:da:0c:6c:9d:ea:43:d6:ed:93:b9:14:9b:d9:
8d:f7:e2:60:f5:c6:a0:d1:22:e2:8a:76:a3:f1:56:fd:2f:cf:
ea:d1:a5:be:d9:c2:84:23:73:66:86:27:8c:7d:b2:ea:d4:ab:
2e:d8:e9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 19:29:39 2024 by rpki-client on console-ams.rpki-client.org