Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/VH_IFJx9V7f2jrQusE9IQ34YTzk.roa
File: VH_IFJx9V7f2jrQusE9IQ34YTzk.roa (raw, json)
Hash identifier: Y6oeD4TJqrl6aePX9Qj4TUhPi6c4gfwwIen/VAEwAvo=
Subject key identifier: 54:7F:C8:14:9C:7D:57:B7:F6:8E:B4:2E:B0:4F:48:43:7E:18:4F:39
Certificate issuer: /CN=7977b55e34ffd72075fbdda039a65b371de39820
Certificate serial: 018CC8DEFD4CAAF5F62800D866316434DB6A
Authority key identifier: 79:77:B5:5E:34:FF:D7:20:75:FB:DD:A0:39:A6:5B:37:1D:E3:98:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXe1XjT_1yB1-92gOaZbNx3jmCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/VH_IFJx9V7f2jrQusE9IQ34YTzk.roa
Signing time: Tue 02 Jan 2024 06:31:46 +0000
ROA not before: Tue 02 Jan 2024 06:31:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57022
IP address blocks: 194.45.106.0/24 maxlen: 24
194.45.45.0/24 maxlen: 24
194.45.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/eXe1XjT_1yB1-92gOaZbNx3jmCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/eXe1XjT_1yB1-92gOaZbNx3jmCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/eXe1XjT_1yB1-92gOaZbNx3jmCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:fd:4c:aa:f5:f6:28:00:d8:66:31:64:34:db:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7977b55e34ffd72075fbdda039a65b371de39820
Validity
Not Before: Jan 2 06:31:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=547fc8149c7d57b7f68eb42eb04f48437e184f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:94:34:ad:94:ed:a1:b0:f4:5e:54:a4:28:12:
0e:a1:f8:44:86:15:d3:cc:a7:c0:e7:03:9b:de:b5:
4c:a9:c1:3a:bd:c1:db:c8:16:34:10:b8:6a:7b:c1:
44:af:53:c1:62:06:60:5a:66:be:21:52:ba:c1:ec:
bd:bc:6b:e1:54:d6:ec:19:2a:31:e9:51:48:9a:50:
94:ca:a4:b6:45:87:bc:c9:2e:46:71:dd:9a:2f:d5:
39:06:03:b8:e9:d4:f7:0b:1a:26:3b:1b:c9:2d:a2:
84:6e:07:b7:1f:3d:1e:32:99:a5:d4:2b:a3:be:03:
d4:a6:71:b9:0a:34:97:98:24:b9:e8:02:f7:f8:c8:
02:d4:42:73:1e:7a:ab:13:dc:ea:09:ea:c3:1b:c1:
c1:70:40:e3:71:8e:f1:92:0b:f2:9a:84:24:5f:ff:
07:e9:9b:8c:9a:7a:6d:e6:7d:14:21:33:11:9b:69:
84:a4:df:fa:87:a3:e8:7a:64:3a:8f:fe:ef:1e:77:
52:69:4a:77:f5:05:6f:c5:d3:34:09:78:d5:d6:6d:
e9:b4:e8:49:f3:bf:ae:cb:5c:70:56:20:2a:62:2d:
13:fa:e8:7a:91:00:8e:64:71:7a:fe:e8:97:55:11:
38:c7:6b:20:08:dd:00:16:8e:d9:5a:65:cf:dc:63:
13:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7F:C8:14:9C:7D:57:B7:F6:8E:B4:2E:B0:4F:48:43:7E:18:4F:39
X509v3 Authority Key Identifier:
keyid:79:77:B5:5E:34:FF:D7:20:75:FB:DD:A0:39:A6:5B:37:1D:E3:98:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXe1XjT_1yB1-92gOaZbNx3jmCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/VH_IFJx9V7f2jrQusE9IQ34YTzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/bd0a76-04b1-4490-ad04-97eec7cf6093/1/eXe1XjT_1yB1-92gOaZbNx3jmCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.45.0/24
194.45.106.0/24
194.45.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:17:49:8f:e7:d3:2a:85:04:23:3e:78:4c:76:63:45:3e:96:
7f:11:58:7f:81:74:16:bc:7d:1b:96:ca:8a:22:cf:52:e7:f0:
d8:6d:22:d6:e1:49:dd:09:88:13:54:6d:40:9e:e9:07:58:d7:
c3:ae:5e:7a:6b:3c:ff:25:94:10:de:d4:c8:e0:ba:5d:76:13:
02:e6:88:ea:81:c1:20:4d:21:e6:e5:5e:0d:19:a2:02:e2:61:
cd:2c:dc:ab:a7:27:7c:d9:7c:99:ea:53:12:fe:68:db:ee:c0:
a3:71:83:9a:f1:5f:25:f5:ec:22:1b:42:69:42:11:7d:25:cf:
c5:1d:d1:e8:c6:b1:60:34:d3:66:c3:67:ef:c5:23:81:96:ab:
29:eb:c6:2b:1e:2f:28:1d:67:6b:ee:a7:9e:96:67:6a:82:70:
90:f7:02:f3:6a:64:bf:7b:bc:db:7a:ce:f8:78:c4:6e:b6:d2:
f0:09:de:38:a5:0b:dd:d8:f1:13:17:b9:22:33:ad:6e:1c:f8:
0c:45:2f:09:81:13:82:64:54:c1:e9:90:51:e9:fb:64:ec:5c:
29:f8:c3:00:25:90:c9:4d:f6:40:21:5c:c1:34:d1:5d:b8:7e:
b7:a0:ed:7e:bb:8a:b8:d4:98:4d:3f:46:8e:00:ed:26:44:0f:
1c:2f:75:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:35:35 2024 by rpki-client on console-ams.rpki-client.org