Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Pmjef5rzM8Vgo7R4cFh5qb-8bTQ.roa
File: Pmjef5rzM8Vgo7R4cFh5qb-8bTQ.roa (raw, json)
Hash identifier: tpSzgeTtR2aVlXyE5tmImGNHdVWT3rW895W00XAy15k=
Subject key identifier: 3E:68:DE:7F:9A:F3:33:C5:60:A3:B4:78:70:58:79:A9:BF:BC:6D:34
Certificate issuer: /CN=562e8e050d384502eb797f5e944931a66fdd555a
Certificate serial: 0191ED2F586AD8A535E30E685F1FC919EA5C
Authority key identifier: 56:2E:8E:05:0D:38:45:02:EB:79:7F:5E:94:49:31:A6:6F:DD:55:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Pmjef5rzM8Vgo7R4cFh5qb-8bTQ.roa
Signing time: Fri 13 Sep 2024 20:59:48 +0000
ROA not before: Fri 13 Sep 2024 20:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21100
IP address blocks: 91.235.129.0/24 maxlen: 24
185.174.172.0/22 maxlen: 22
185.237.206.0/23 maxlen: 23
195.54.162.0/24 maxlen: 24
2a06:c6c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ed:2f:58:6a:d8:a5:35:e3:0e:68:5f:1f:c9:19:ea:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=562e8e050d384502eb797f5e944931a66fdd555a
Validity
Not Before: Sep 13 20:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e68de7f9af333c560a3b478705879a9bfbc6d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cb:f7:eb:75:3f:aa:47:35:4e:9b:1b:8c:39:
3b:6c:47:07:29:52:2c:e4:dc:c5:2b:c1:33:04:87:
19:21:96:c3:8a:d0:be:0e:9c:53:98:35:99:ad:48:
4f:f2:c4:8e:d3:1e:7b:67:bc:e6:d9:85:f2:99:54:
b8:d0:fc:bb:37:d5:e2:d2:cf:85:99:9f:ba:1f:ee:
c3:b1:d6:6d:de:3a:3e:da:29:87:d2:42:6e:66:34:
7c:1c:74:c8:2d:c7:39:b7:70:52:52:db:3f:bc:79:
0b:0f:6c:3a:60:fa:f2:55:2a:16:01:2d:c4:95:f1:
23:0c:ec:9c:94:3b:69:1f:d6:b0:50:d8:b9:12:ce:
9b:dd:41:11:bc:61:cf:cc:f4:dd:10:9a:11:66:23:
4d:29:cf:fc:16:6c:b8:56:1a:b2:8d:56:75:40:9a:
1a:3b:73:16:fe:3f:08:c2:e2:ce:2d:38:29:03:36:
21:f0:3d:1d:8a:17:90:7d:71:de:9c:ee:fa:57:36:
b3:7c:d3:4a:a2:ce:a1:d5:55:03:5a:4b:98:31:ea:
f1:cd:ac:7a:9e:c8:97:b4:d3:94:3e:33:b0:58:50:
06:ec:93:37:b9:06:37:ba:79:54:2d:d4:7f:01:ba:
6f:02:70:b7:9e:0e:64:d1:a4:bb:35:82:5c:68:42:
43:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:68:DE:7F:9A:F3:33:C5:60:A3:B4:78:70:58:79:A9:BF:BC:6D:34
X509v3 Authority Key Identifier:
keyid:56:2E:8E:05:0D:38:45:02:EB:79:7F:5E:94:49:31:A6:6F:DD:55:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vi6OBQ04RQLreX9elEkxpm_dVVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Pmjef5rzM8Vgo7R4cFh5qb-8bTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c2f182-bb67-43d8-8ea5-95c5001bfc70/1/Vi6OBQ04RQLreX9elEkxpm_dVVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.129.0/24
185.174.172.0/22
185.237.206.0/23
195.54.162.0/24
IPv6:
2a06:c6c0::/48
Signature Algorithm: sha256WithRSAEncryption
18:e7:07:d2:fb:bc:50:fb:49:5d:59:d2:8f:ef:9d:b1:65:80:
23:19:57:79:a9:9d:e6:e7:aa:a3:d5:b8:79:7f:9f:3b:a2:2f:
35:b8:cf:13:e5:12:80:f6:65:25:7f:bc:e8:2b:71:53:d0:ec:
44:03:66:87:31:90:90:6f:0b:7b:b0:27:1f:ba:b6:c5:18:a0:
0d:25:df:10:23:23:a5:c2:bb:d1:d9:c6:db:05:67:83:de:18:
7c:e3:1f:e0:61:d2:c8:4a:b9:2c:4f:78:51:ee:14:bf:31:78:
f7:e4:19:ee:d1:87:76:68:3c:6e:74:77:65:70:ee:66:ba:65:
f5:37:a2:46:78:96:ca:58:3d:61:d7:ae:c0:e7:74:e9:7f:ac:
10:69:0e:aa:fd:40:c8:c3:16:0c:21:5b:8e:92:48:ee:e2:f6:
73:82:06:73:12:42:df:ed:b0:0d:be:71:b9:71:61:db:d0:88:
24:d2:3f:d4:d9:d5:1d:d6:64:82:35:23:63:44:ee:7a:8b:39:
62:f3:03:f2:fc:99:4b:9f:ad:0c:5c:2b:04:c7:91:77:c7:03:
91:8c:6d:1f:19:67:27:20:79:58:ca:51:43:ec:8f:cf:f6:e1:
46:bd:24:1c:2e:b4:6f:61:b6:6f:0a:5d:99:92:a2:34:f3:fd:
76:a9:59:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 01:16:23 2024 by rpki-client on console-fra.rpki-client.org