Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/xFgx3oZiRSyuiOs9sPtPe6MLF9A.roa
File: xFgx3oZiRSyuiOs9sPtPe6MLF9A.roa (raw, json)
Hash identifier: jFx8fQuesfKhyiqlc/5GY0J1vv2b3z/2252vKXOBSZM=
Subject key identifier: C4:58:31:DE:86:62:45:2C:AE:88:EB:3D:B0:FB:4F:7B:A3:0B:17:D0
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018E202AA818DD947350A9449BE05D279A68
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/xFgx3oZiRSyuiOs9sPtPe6MLF9A.roa
Signing time: Fri 08 Mar 2024 22:24:10 +0000
ROA not before: Fri 08 Mar 2024 22:24:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210574
IP address blocks: 185.148.241.0/24 maxlen: 24
185.148.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Jun 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:20:2a:a8:18:dd:94:73:50:a9:44:9b:e0:5d:27:9a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Mar 8 22:24:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c45831de8662452cae88eb3db0fb4f7ba30b17d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d7:7f:80:5a:fb:5a:5f:b4:0b:e1:d1:92:f0:
7e:ef:42:6a:88:de:8f:8b:05:14:34:0d:c5:f6:03:
e4:e1:88:80:c3:77:6d:5a:40:6b:5b:b5:5b:7b:d9:
c9:32:5f:45:a3:84:bf:aa:c8:65:7f:ee:ec:d9:35:
20:54:ad:d4:b9:90:d5:65:f8:8c:e9:cd:92:67:ec:
cd:53:95:c0:a5:e9:2f:bb:09:1c:5b:64:0e:a9:43:
c7:dc:ff:8f:08:a3:7b:94:56:42:be:11:19:fb:16:
34:cf:f5:61:ee:a4:c2:6c:dc:14:a5:4b:e9:aa:9d:
ce:63:5e:d8:91:ea:3e:87:c0:ee:89:87:9e:21:fd:
65:b4:3f:98:1d:98:68:57:97:dd:92:6f:50:06:95:
4b:61:d2:e5:18:48:28:62:85:b2:62:4d:99:d8:9b:
dc:94:26:26:ce:89:74:a0:bd:5b:8f:27:48:cc:dc:
6d:b9:d6:a8:24:8b:c5:a8:45:b6:3f:9f:3f:e1:41:
92:8a:e8:84:85:e3:67:cb:cb:39:bd:b7:cc:5a:88:
3a:40:bc:ea:26:ad:1c:6e:5f:4d:da:9b:7c:4d:7c:
86:cc:b2:b3:25:39:db:62:7d:75:4e:13:75:35:55:
49:44:57:4d:1a:02:ba:9e:2f:a3:1b:6e:e3:e8:e5:
5b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:58:31:DE:86:62:45:2C:AE:88:EB:3D:B0:FB:4F:7B:A3:0B:17:D0
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/xFgx3oZiRSyuiOs9sPtPe6MLF9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0-185.148.242.255
Signature Algorithm: sha256WithRSAEncryption
01:56:d3:7a:82:80:81:c8:01:4b:22:a3:34:de:1e:08:57:83:
be:14:2e:1f:bd:1d:bc:39:3d:7b:0d:6c:38:f2:ba:b1:bb:1c:
f7:0a:14:57:37:5c:67:26:ff:d5:29:2b:95:25:2a:31:9d:29:
60:2e:94:50:6a:b5:8d:da:ad:34:ef:ca:75:02:c7:3e:3a:b7:
fe:1d:de:22:f9:1a:e1:9f:16:57:f6:39:03:b7:cd:0c:be:a7:
84:c3:75:7e:b2:6e:27:32:11:bf:2e:b4:a7:a4:cb:35:a0:fc:
ea:b1:03:05:1c:0d:30:77:df:ba:29:40:d3:bc:d2:38:7a:b9:
93:ec:e0:7f:ec:e4:6e:34:bf:42:2a:0a:cc:7a:a0:5a:c7:64:
4a:3d:64:f9:dd:a1:7c:cf:bd:a1:57:23:e6:8d:1d:24:f8:2f:
48:0b:77:bd:b9:27:77:2d:02:7f:fd:9f:a4:86:65:57:90:ef:
9b:e1:ec:c6:80:d5:80:2d:a2:4c:f7:63:b8:c4:62:8c:49:01:
d2:12:43:ef:db:3d:1d:0e:57:10:42:27:94:53:aa:5e:6d:36:
18:76:4b:bf:c2:28:c7:cc:dd:31:01:78:57:6e:c8:a4:a7:bb:
bd:c2:52:eb:74:2c:d2:4f:b4:91:3e:74:73:5a:fd:28:d6:13:
9b:fd:34:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 4 14:06:22 2024 by rpki-client on console-ams.rpki-client.org