Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RkASH2Wvmb9qYzLmY07Pozki8BM.roa
File: RkASH2Wvmb9qYzLmY07Pozki8BM.roa (raw, json)
Hash identifier: V+iRs1YLBpZHNxrNIBC4siI5P2Y5bakZ+saRupU7AD4=
Subject key identifier: 46:40:12:1F:65:AF:99:BF:6A:63:32:E6:63:4E:CF:A3:39:22:F0:13
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018CCA2BC07B0D5986C21EEF4959A0E7E42B
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RkASH2Wvmb9qYzLmY07Pozki8BM.roa
Signing time: Tue 02 Jan 2024 12:35:14 +0000
ROA not before: Tue 02 Jan 2024 12:35:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202081
IP address blocks: 77.79.249.0/24 maxlen: 24
195.167.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:c0:7b:0d:59:86:c2:1e:ef:49:59:a0:e7:e4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 12:35:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4640121f65af99bf6a6332e6634ecfa33922f013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6e:9d:f5:62:03:61:ff:b4:1e:8c:4e:fa:bd:
28:0e:8d:c9:61:0e:32:0c:b7:ed:a0:ee:5a:3b:04:
b6:01:39:eb:8d:5b:4e:b4:84:6a:93:30:23:0d:f6:
5b:c5:85:24:bc:be:31:8d:09:d0:5d:3c:54:cb:eb:
92:c0:e2:85:13:ba:c3:ed:1b:86:1f:e9:99:79:18:
b0:31:e8:e4:40:8a:34:62:b1:9c:1a:89:c5:33:56:
14:9b:14:d6:04:d9:ad:c8:ca:7f:11:56:47:e9:50:
0d:9a:9d:06:a8:3e:b2:88:b3:1a:dc:c5:74:54:80:
5d:c1:43:68:81:58:3e:66:b6:17:b8:ba:26:b7:7d:
3a:bf:af:c8:0b:a7:34:cd:16:ff:12:ae:94:4b:a3:
3b:62:54:16:87:ff:c3:0b:6d:8f:a7:44:2d:98:db:
08:80:03:f8:6e:cf:38:c8:73:d6:6f:a6:ed:a3:a4:
8e:07:15:e5:6e:a1:eb:55:f3:b5:c8:5f:85:24:b3:
93:45:28:d4:54:0e:44:b4:57:be:14:c2:e2:c8:b1:
15:4a:2d:37:30:00:20:03:e3:60:25:b2:bb:8a:d5:
83:d5:ca:6a:95:9d:f2:e3:6e:01:2c:e0:50:53:fe:
b6:63:e8:b1:9b:04:15:3c:f5:7b:05:a8:1e:cf:57:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:40:12:1F:65:AF:99:BF:6A:63:32:E6:63:4E:CF:A3:39:22:F0:13
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/RkASH2Wvmb9qYzLmY07Pozki8BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.249.0/24
195.167.152.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d5:a6:7d:69:87:7c:a5:45:c2:46:46:e4:25:5c:91:87:41:
11:a1:49:b9:e4:74:fa:8f:60:b2:84:57:79:45:c8:0b:40:12:
8c:76:85:9f:e8:85:04:4b:4c:73:7e:3b:ff:41:39:43:bc:fe:
44:82:d0:b7:05:b2:ec:d0:20:df:d9:7b:90:e4:76:c2:af:34:
f8:2a:3c:ff:c0:20:22:95:f8:9b:38:1f:22:33:5c:12:20:5a:
af:09:7e:40:c2:b5:e0:f4:7f:ad:9b:70:61:77:ea:cb:a9:83:
99:a2:3b:62:aa:7b:6c:19:b8:89:58:7e:b5:e6:cf:9b:f7:59:
53:62:dd:8d:95:ff:3b:1b:c1:f2:6f:70:ad:17:9a:9f:90:26:
99:5f:06:40:eb:83:5b:45:f5:9d:b1:55:e7:bb:3e:08:2a:37:
16:0e:ba:f0:15:c6:44:20:e0:3e:c5:b2:b6:a1:65:85:c0:87:
72:0f:aa:9d:12:7c:13:8c:0a:bf:0a:c7:64:e1:a5:1b:b1:ad:
12:ac:d7:11:60:1a:7a:a0:8f:40:98:c9:c0:d1:0a:c3:33:b5:
da:39:12:75:71:29:d0:be:4b:f3:7b:ee:c8:26:e1:c0:ad:05:
13:5a:8d:03:19:33:fa:2b:23:47:f3:ff:3b:d8:72:8f:0f:41:
68:b9:ff:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 13:57:00 2024 by rpki-client on console-ams.rpki-client.org