Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/VIsV4j9maEwSg2OxP_ep_CJneVQ.roa
File: VIsV4j9maEwSg2OxP_ep_CJneVQ.roa (raw, json)
Hash identifier: nsOgksi6EfOZuK8kO1Uol6DXY4Xe/yiU8RVjh6pbs/w=
Subject key identifier: 54:8B:15:E2:3F:66:68:4C:12:83:63:B1:3F:F7:A9:FC:22:67:79:54
Certificate issuer: /CN=7b3175988373e56b6ffe0b15a1fc75d4693ae2c0
Certificate serial: 018CC5010092538669710D6DEA68210ABC8B
Authority key identifier: 7B:31:75:98:83:73:E5:6B:6F:FE:0B:15:A1:FC:75:D4:69:3A:E2:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ezF1mINz5Wtv_gsVofx11Gk64sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/VIsV4j9maEwSg2OxP_ep_CJneVQ.roa
Signing time: Mon 01 Jan 2024 12:30:26 +0000
ROA not before: Mon 01 Jan 2024 12:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47544
IP address blocks: 46.248.160.0/19 maxlen: 19
185.110.50.0/24 maxlen: 24
193.106.104.0/22 maxlen: 22
185.110.49.0/24 maxlen: 24
185.110.51.0/24 maxlen: 24
86.111.240.0/21 maxlen: 21
2a01:7400::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/ezF1mINz5Wtv_gsVofx11Gk64sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/ezF1mINz5Wtv_gsVofx11Gk64sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ezF1mINz5Wtv_gsVofx11Gk64sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:00:92:53:86:69:71:0d:6d:ea:68:21:0a:bc:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b3175988373e56b6ffe0b15a1fc75d4693ae2c0
Validity
Not Before: Jan 1 12:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=548b15e23f66684c128363b13ff7a9fc22677954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:93:fe:b4:a5:4c:2a:d8:9f:9b:fe:34:39:d7:
d6:52:3e:85:b9:fb:86:a7:47:7f:5e:c0:df:ea:c5:
8b:46:45:c8:6a:fd:f8:41:9f:a5:bd:b7:62:32:ce:
8a:b1:d5:6f:04:14:78:64:f8:09:f4:36:ec:f4:14:
34:4f:88:89:57:e0:74:bc:46:b6:5f:89:ed:14:7c:
ec:57:80:4d:17:99:6a:1d:27:82:47:b6:a0:09:6c:
9f:4e:0f:1b:87:2c:e7:7f:eb:29:74:48:1f:fc:be:
f9:13:ad:7c:7c:ff:52:0d:c2:ff:ac:46:37:e3:b8:
39:c4:78:9c:42:dd:c4:b3:d8:bd:e9:c6:7c:cd:39:
b5:58:fb:7b:2e:0c:99:bb:1f:71:f8:37:36:a2:5c:
da:8c:84:9d:74:46:a7:9a:68:01:5a:be:d4:db:b8:
3c:49:69:76:2c:02:3f:76:87:69:7e:b3:91:54:e4:
7c:b6:a8:2d:b8:56:d8:93:7b:25:5e:a6:8b:9e:7f:
b4:81:72:c5:44:cf:18:03:5e:04:47:6f:e5:59:1d:
ff:02:02:c5:f9:d1:5b:de:2a:fc:6a:4e:1b:59:8c:
b7:3f:06:b7:a9:84:0f:6a:43:8b:46:de:8d:2e:1c:
b3:4e:d4:4a:5b:6a:68:14:cd:15:91:30:c2:69:ed:
70:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8B:15:E2:3F:66:68:4C:12:83:63:B1:3F:F7:A9:FC:22:67:79:54
X509v3 Authority Key Identifier:
keyid:7B:31:75:98:83:73:E5:6B:6F:FE:0B:15:A1:FC:75:D4:69:3A:E2:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezF1mINz5Wtv_gsVofx11Gk64sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/VIsV4j9maEwSg2OxP_ep_CJneVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/850134-bb21-4bad-9eea-dfd51b06dd99/1/ezF1mINz5Wtv_gsVofx11Gk64sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.248.160.0/19
86.111.240.0/21
185.110.49.0-185.110.51.255
193.106.104.0/22
IPv6:
2a01:7400::/32
Signature Algorithm: sha256WithRSAEncryption
37:30:26:df:1b:37:1a:2d:a9:a1:a7:b7:0c:3b:09:07:42:b2:
2a:60:9b:75:7d:f7:cf:03:99:80:89:75:5f:a8:09:61:d5:f7:
72:99:6a:72:c6:4e:fa:d9:e2:93:ff:aa:ac:0d:ee:88:ef:20:
26:1f:1d:95:1d:5a:5d:18:13:09:6f:3f:39:ab:47:b4:ff:14:
e5:a6:7e:6b:35:5e:69:1c:8f:b2:e6:09:0e:92:6d:24:ad:59:
cb:e0:38:75:50:0a:cb:2a:d1:99:a2:c1:dd:e1:61:9c:fb:aa:
b0:2f:b7:e7:17:a1:57:3c:3f:94:a1:36:5d:af:29:d4:a7:e5:
00:18:2c:29:6a:3a:d5:02:8e:53:3c:36:0f:75:e4:9d:37:7b:
f2:7b:b1:95:8a:1a:aa:c9:74:9c:8d:f2:ef:20:f6:72:33:03:
32:db:60:55:1c:13:ce:0f:09:fe:0a:1c:31:f6:37:c4:65:dc:
5b:aa:3b:5b:16:7f:23:55:ec:b3:dd:9e:ba:5e:e5:1d:c0:d1:
e0:94:5f:d9:e8:4f:77:21:73:ed:a8:33:1d:20:ed:cd:58:e1:
90:71:57:ab:2d:64:38:49:81:c3:00:94:ee:26:d9:5a:75:da:
37:8d:f7:04:97:69:fc:09:52:8e:f4:14:69:e3:9f:9e:69:a9:
7a:6f:38:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 09:17:33 2024 by rpki-client on console-fra.rpki-client.org