Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/kglE00ssZNeFFmeQlW1jZvNpQ9c.roa
File: kglE00ssZNeFFmeQlW1jZvNpQ9c.roa (raw, json)
Hash identifier: Hw5FbGAV3P8+kVFOpoitbUxS4NcvRff0jC6zACa35DE=
Subject key identifier: 92:09:44:D3:4B:2C:64:D7:85:16:67:90:95:6D:63:66:F3:69:43:D7
Certificate issuer: /CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Certificate serial: 018CC6B89ACC447BAA0F0758009F0F4E456C
Authority key identifier: C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/kglE00ssZNeFFmeQlW1jZvNpQ9c.roa
Signing time: Mon 01 Jan 2024 20:30:36 +0000
ROA not before: Mon 01 Jan 2024 20:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49183
IP address blocks: 94.231.176.0/24 maxlen: 24
94.231.179.0/24 maxlen: 24
94.231.178.0/24 maxlen: 24
94.231.177.0/24 maxlen: 24
94.231.186.0/24 maxlen: 24
94.231.185.0/24 maxlen: 24
94.231.180.0/24 maxlen: 24
94.231.183.0/24 maxlen: 24
94.231.182.0/24 maxlen: 24
94.231.181.0/24 maxlen: 24
94.231.187.0/24 maxlen: 24
94.231.190.0/24 maxlen: 24
94.231.189.0/24 maxlen: 24
94.231.188.0/24 maxlen: 24
94.231.191.0/24 maxlen: 24
46.173.173.0/24 maxlen: 24
46.173.175.0/24 maxlen: 24
46.173.164.0/24 maxlen: 24
46.173.166.0/24 maxlen: 24
46.173.165.0/24 maxlen: 24
46.173.164.0/22 maxlen: 22
46.173.160.0/24 maxlen: 24
46.173.160.0/22 maxlen: 22
46.173.163.0/24 maxlen: 24
46.173.162.0/24 maxlen: 24
46.173.161.0/24 maxlen: 24
46.173.167.0/24 maxlen: 24
46.173.168.0/22 maxlen: 22
46.173.172.0/24 maxlen: 24
2001:678:d94::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 07:03:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:9a:cc:44:7b:aa:0f:07:58:00:9f:0f:4e:45:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Validity
Not Before: Jan 1 20:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=920944d34b2c64d785166790956d6366f36943d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e6:4e:8c:e0:c0:8b:4d:d4:bc:62:7a:aa:22:
6c:e7:dc:c0:d3:fa:78:fc:da:f7:41:73:15:2d:bf:
de:00:c6:d6:d3:54:50:eb:d9:49:0c:f7:47:77:6f:
69:e7:13:19:c7:e2:ed:6c:e3:86:51:25:b0:4e:a5:
b6:0c:c8:a5:56:58:bd:50:be:c1:29:ab:dd:1e:20:
32:de:11:ed:0f:1d:a5:ea:ac:cf:d9:35:af:91:56:
27:7a:7f:57:f7:1e:b4:37:0f:eb:9d:48:18:9c:d4:
2c:d0:65:da:d4:cd:95:76:fb:72:d1:df:c9:68:74:
87:d6:7e:9a:1a:26:18:2d:71:b8:87:c9:e3:c9:9a:
2a:7e:ed:12:52:b8:cf:ca:83:e2:bb:b4:5c:9f:d4:
be:77:1b:1a:06:9e:be:39:ea:b4:77:db:36:b5:de:
c4:84:9a:7a:c5:a2:90:40:cc:3b:09:53:65:a1:03:
13:bd:0a:fd:3e:29:b5:6e:6a:70:b6:d1:45:6b:02:
c8:6d:b4:46:0b:d1:9e:bb:6c:0a:78:ee:78:82:f0:
45:6d:f1:ac:96:54:1a:46:91:a9:d5:9c:4b:f6:7c:
fb:3e:10:29:9a:3c:20:8f:49:ea:2b:32:33:93:07:
44:3a:27:71:42:46:ae:45:8d:a8:9f:99:fd:4e:f5:
6f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:09:44:D3:4B:2C:64:D7:85:16:67:90:95:6D:63:66:F3:69:43:D7
X509v3 Authority Key Identifier:
keyid:C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/kglE00ssZNeFFmeQlW1jZvNpQ9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.160.0-46.173.173.255
46.173.175.0/24
94.231.176.0/21
94.231.185.0-94.231.191.255
IPv6:
2001:678:d94::/48
Signature Algorithm: sha256WithRSAEncryption
44:4f:ed:fd:9f:41:ef:3b:f5:dc:83:c7:65:fd:0b:ef:1b:55:
99:0d:4e:44:1d:fd:ae:6d:e4:4c:b1:77:e0:c1:5b:47:8a:ef:
34:98:da:7e:95:3a:3a:7c:9c:1b:6b:5d:dd:4e:32:10:d9:95:
10:cd:4d:75:90:2c:ef:20:5c:57:b6:ef:05:4b:0f:57:99:11:
e6:95:e0:74:29:90:d8:c5:b9:a2:a8:5a:d1:21:84:3e:38:82:
fc:b4:18:c3:87:8f:12:6f:64:a3:32:ea:a7:6e:00:4f:6d:55:
c5:ff:6c:3c:a2:22:33:80:13:84:dc:32:e0:1c:09:10:c6:ea:
4f:b3:c0:5e:8c:88:47:7c:86:7b:56:11:c7:62:8c:bd:66:0d:
b3:c1:5b:15:8d:9d:03:a8:fa:57:a2:9b:87:65:ba:1f:38:01:
46:9b:c3:78:bd:59:57:86:96:56:7f:68:14:04:d7:29:68:47:
af:c4:02:04:95:28:c5:06:43:30:40:b6:a1:e7:5e:02:3a:28:
fd:75:18:40:ef:32:ad:ce:f6:71:9d:1c:19:8c:83:63:98:1a:
e7:47:f3:86:77:d7:16:80:3b:59:c6:85:ee:34:13:ff:95:e2:
4c:66:e0:4a:7b:78:5e:e0:03:cc:a4:71:ed:03:54:cf:a7:6b:
fb:9b:38:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 15:46:12 2024 by rpki-client on console-fra.rpki-client.org