Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/vWniMv1Bo_3dUYKYJrydIxkJKcg.roa
File: vWniMv1Bo_3dUYKYJrydIxkJKcg.roa (raw, json)
Hash identifier: tJ/8WaMsWYJX+m/TOCok9nZ0SLG7OfUpuctHJBUdLGU=
Subject key identifier: BD:69:E2:32:FD:41:A3:FD:DD:51:82:98:26:BC:9D:23:19:09:29:C8
Certificate issuer: /CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Certificate serial: 0193400F6183FCE10A353B7B6DA4BF50BF09
Authority key identifier: 61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/vWniMv1Bo_3dUYKYJrydIxkJKcg.roa
Signing time: Mon 18 Nov 2024 16:16:10 +0000
ROA not before: Mon 18 Nov 2024 16:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215089
IP address blocks: 46.235.8.0/24 maxlen: 24
77.245.157.0/24 maxlen: 24
185.87.254.0/24 maxlen: 24
185.87.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:40:0f:61:83:fc:e1:0a:35:3b:7b:6d:a4:bf:50:bf:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Validity
Not Before: Nov 18 16:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd69e232fd41a3fddd51829826bc9d23190929c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:94:8a:d9:89:3e:ee:c9:9e:37:08:a7:f6:e3:
2d:88:7c:4d:0a:25:5e:f9:14:40:ad:b7:c3:fd:b6:
8d:12:bc:22:27:7e:b4:78:e8:8e:a1:2a:20:5b:16:
9b:4f:c0:dd:77:a2:2c:f3:65:8b:1a:70:aa:16:46:
66:5b:31:e7:8b:73:b6:c6:cf:38:3d:16:b8:75:a4:
53:bd:b2:8a:f8:98:3b:8d:fb:2a:bd:5a:13:cf:0f:
24:e1:a0:b7:6f:d9:ff:86:92:91:48:08:9b:4c:6b:
15:47:cb:36:8f:f5:99:40:cd:00:fc:71:60:f3:5a:
e1:fe:97:ca:e1:d7:16:70:99:94:e2:95:47:86:47:
7a:6f:83:f3:9f:4f:c1:1b:74:34:c3:97:2f:76:51:
b2:b2:a9:7c:da:da:fa:2b:a3:58:4c:04:c6:f6:56:
de:24:7a:14:45:86:7f:df:1f:bf:08:82:14:16:76:
8a:74:d3:a6:3b:f3:a7:31:9e:c7:70:3a:df:89:a9:
98:c2:44:63:0a:50:ce:38:45:f9:d8:95:f8:5d:ea:
8a:5d:03:81:5c:d1:b4:8e:5d:24:9a:9f:34:78:1d:
9f:56:4d:7d:2b:21:a7:eb:ac:0e:f8:d1:b2:7d:f4:
4f:ea:1c:dd:1b:aa:02:40:00:25:78:01:5a:df:25:
cb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:69:E2:32:FD:41:A3:FD:DD:51:82:98:26:BC:9D:23:19:09:29:C8
X509v3 Authority Key Identifier:
keyid:61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/vWniMv1Bo_3dUYKYJrydIxkJKcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.8.0/24
77.245.157.0/24
185.87.254.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:26:c2:4f:66:4c:05:94:3a:d1:fc:e9:e5:49:83:e8:aa:99:
7a:20:a6:4f:82:58:1e:f8:9c:c6:8f:9a:07:c6:3f:f3:7f:5e:
ed:f3:37:21:d1:6d:63:0e:4e:0c:ab:4c:07:1e:e4:96:82:42:
c3:3e:c5:06:45:33:31:0f:32:91:84:4e:36:79:7e:8f:c1:a1:
84:e6:4d:51:69:55:6d:ef:10:4b:ba:2e:c4:a2:0d:e9:33:90:
93:10:3d:cd:bc:0f:76:34:73:0f:03:41:8e:ce:4a:76:83:83:
c0:af:0a:c3:b8:06:e6:32:50:22:f6:01:e4:a5:81:fc:56:9a:
9f:06:3a:e0:40:5e:12:29:80:30:51:5a:95:ce:5f:b4:94:f8:
5e:bc:97:e4:58:15:bc:1f:37:54:87:41:eb:9f:56:60:d8:a9:
9e:0e:95:42:53:16:61:f8:d6:e2:a0:c2:08:fb:83:b0:3d:b4:
4e:6c:94:83:b5:c2:cb:a1:43:ee:51:e6:18:8d:e1:ac:23:4f:
ac:db:fe:3d:6a:f5:aa:c5:b6:75:9e:ec:d4:f0:d1:5d:11:7c:
06:d5:88:55:a8:2d:98:a7:2e:67:14:6b:40:5d:2d:39:44:45:
e5:72:33:59:d4:f4:28:93:be:4b:2f:68:45:40:72:ed:d1:b8:
2c:19:53:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:05 2024 by rpki-client on console-ams.rpki-client.org