Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/vW0FQ6fjZk8_IB6fgTVfWuQ_C3k.roa
File: vW0FQ6fjZk8_IB6fgTVfWuQ_C3k.roa (raw, json)
Hash identifier: 7aUo4bUCe/cthtt7Z6E9mrhX6r9giLlfccbnEX/P8ZM=
Subject key identifier: BD:6D:05:43:A7:E3:66:4F:3F:20:1E:9F:81:35:5F:5A:E4:3F:0B:79
Certificate issuer: /CN=05a2cb49b28b62f28d692ad9f4da0ae7081f8493
Certificate serial: 018DF3BDA4C0DC9DAE09442942290B08887E
Authority key identifier: 05:A2:CB:49:B2:8B:62:F2:8D:69:2A:D9:F4:DA:0A:E7:08:1F:84:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/vW0FQ6fjZk8_IB6fgTVfWuQ_C3k.roa
Signing time: Thu 29 Feb 2024 07:21:48 +0000
ROA not before: Thu 29 Feb 2024 07:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199413
IP address blocks: 91.232.46.0/24 maxlen: 24
91.232.47.0/24 maxlen: 24
91.232.48.0/24 maxlen: 24
91.232.49.0/24 maxlen: 24
91.232.50.0/24 maxlen: 24
91.232.51.0/24 maxlen: 24
91.232.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:bd:a4:c0:dc:9d:ae:09:44:29:42:29:0b:08:88:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a2cb49b28b62f28d692ad9f4da0ae7081f8493
Validity
Not Before: Feb 29 07:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd6d0543a7e3664f3f201e9f81355f5ae43f0b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2f:e8:a6:64:6a:33:a8:e3:4a:dd:1e:e5:15:
79:49:42:a9:70:a7:76:64:f8:1e:1b:d8:59:44:37:
4c:de:05:ec:0c:05:0a:b2:ac:d9:ee:93:09:6a:5c:
2e:a3:bf:e1:63:1e:87:74:b0:67:4c:a7:c2:51:fe:
a7:63:86:79:22:b7:ff:76:5b:93:32:7e:c2:ec:94:
4c:5a:51:6a:3a:64:2f:b8:d9:f9:46:1d:ad:d2:70:
27:d7:c4:d5:a7:2f:3f:5a:a6:9a:05:53:c5:bc:2b:
60:c9:b5:c9:2f:83:4c:99:4a:b3:7b:84:24:69:94:
64:0f:c6:35:53:7c:8d:76:27:91:47:c2:7a:e8:d9:
8e:c2:92:25:cc:fe:4b:2f:cc:13:e7:2b:ba:2c:35:
fa:09:3b:69:6b:6a:f9:d4:67:83:ce:8f:8e:03:d2:
3b:80:66:34:8e:c8:61:4a:b2:43:2d:42:74:06:fe:
8f:4b:fb:11:8e:80:88:df:b3:81:c9:75:26:76:59:
5e:37:0f:91:86:7e:25:0d:f1:f2:4c:4b:f6:0a:a9:
12:a7:db:b2:f7:5a:78:69:4a:1b:7c:07:57:54:ea:
d3:cc:90:56:1c:8d:d6:64:0b:8c:da:96:61:00:ef:
f0:89:88:93:e5:9a:34:07:fa:91:e1:e8:a7:d7:f2:
2c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6D:05:43:A7:E3:66:4F:3F:20:1E:9F:81:35:5F:5A:E4:3F:0B:79
X509v3 Authority Key Identifier:
keyid:05:A2:CB:49:B2:8B:62:F2:8D:69:2A:D9:F4:DA:0A:E7:08:1F:84:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/vW0FQ6fjZk8_IB6fgTVfWuQ_C3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/093177-1179-45ad-96e2-e5c0f5d33b23/1/BaLLSbKLYvKNaSrZ9NoK5wgfhJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.46.0-91.232.52.255
Signature Algorithm: sha256WithRSAEncryption
4a:6a:66:7d:48:cc:5f:ef:77:e2:6d:1b:13:16:b3:df:21:5a:
02:4f:27:f6:63:ba:7b:99:01:51:2e:be:38:45:dc:f2:e4:4b:
dd:d1:90:89:0c:09:39:1d:f9:27:34:f9:93:f1:ce:9b:c4:d7:
c4:8e:00:3c:89:4d:ee:03:c8:3c:db:cf:d2:66:6d:38:a9:28:
b1:b2:b3:05:00:d2:21:3c:70:4d:f5:cd:a0:67:39:55:78:28:
90:7b:59:9d:33:44:72:73:c4:57:92:17:72:53:76:19:21:20:
c8:49:03:48:2f:3d:0b:1c:b1:b4:79:1e:ca:9b:08:d0:d3:1d:
83:a1:51:53:a4:cf:81:a6:a3:23:2e:b6:78:d5:63:be:66:f4:
c8:32:45:0c:c0:cf:ac:4b:d5:f1:cc:97:5b:a4:c4:c9:4c:30:
88:e5:8f:e6:3d:b0:72:07:32:e4:da:35:46:e0:0e:c6:96:9e:
ba:f7:90:af:35:8e:aa:cb:82:e5:db:34:71:81:50:bb:a0:c3:
91:76:20:ad:bc:ed:87:36:0e:0b:40:b1:65:e2:3b:b1:9b:fb:
86:03:95:e9:35:ba:5e:09:27:bf:a5:35:f3:dc:b2:c3:47:e1:
ed:ed:35:84:49:b1:5a:af:4d:6f:0e:56:07:da:16:b9:14:aa:
b0:dc:53:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 05:07:06 2024 by rpki-client on console-fra.rpki-client.org