Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/BVVPuEMIizcsNN3VJ7O6J3QfHlI.roa
File: BVVPuEMIizcsNN3VJ7O6J3QfHlI.roa (raw, json)
Hash identifier: 2qTqQG6KKz4VRL9p3PY4BWvWBWlyU1ETnOF64V4qt1c=
Subject key identifier: 05:55:4F:B8:43:08:8B:37:2C:34:DD:D5:27:B3:BA:27:74:1F:1E:52
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 018CC2DABF8F2945E81B64EC477F20A12FA0
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/BVVPuEMIizcsNN3VJ7O6J3QfHlI.roa
Signing time: Mon 01 Jan 2024 02:29:24 +0000
ROA not before: Mon 01 Jan 2024 02:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39457
IP address blocks: 193.84.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:bf:8f:29:45:e8:1b:64:ec:47:7f:20:a1:2f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jan 1 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05554fb843088b372c34ddd527b3ba27741f1e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0d:47:f5:f8:29:2b:94:4e:18:cd:35:1e:04:
50:8d:17:8a:1e:05:40:9f:23:81:6b:7f:e0:a2:3f:
83:73:d5:6b:1d:ca:c7:f3:6b:2d:11:e2:e6:e8:e2:
b4:12:d9:9a:c0:4a:4b:2e:3b:60:6d:6b:38:a1:14:
1c:98:3d:75:8a:09:63:7c:18:8b:e8:06:79:da:20:
7b:83:9b:7b:a3:d3:1c:2f:61:ef:4c:9d:ab:2c:cc:
2d:85:0d:9b:de:38:a9:08:bf:e0:ef:23:60:d8:54:
c9:74:8e:64:7a:73:96:9b:3b:de:93:ca:93:45:db:
38:b9:7b:0f:ea:3b:ee:fd:72:a2:5c:36:ce:21:fb:
a7:5b:c6:90:9d:3b:4d:ba:0a:ee:29:43:57:54:92:
4a:a0:ec:83:b2:f6:c9:f8:5f:08:0e:53:f7:29:0f:
86:1f:68:27:bd:01:70:53:8b:f0:e1:34:ef:0a:a5:
ae:db:88:9e:5d:f0:be:6c:4f:b8:9f:ad:83:89:c2:
94:01:9f:c9:8b:7a:31:83:99:6f:e0:c7:6d:49:32:
10:88:21:8f:33:e3:0c:90:13:c8:71:ce:b6:e5:d2:
cb:26:df:4e:6f:e9:c3:4d:fe:49:48:9d:8e:23:b3:
d4:39:6f:40:4c:71:df:c3:ef:b0:83:79:4c:c1:71:
4d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:55:4F:B8:43:08:8B:37:2C:34:DD:D5:27:B3:BA:27:74:1F:1E:52
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/BVVPuEMIizcsNN3VJ7O6J3QfHlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.25.0/24
Signature Algorithm: sha256WithRSAEncryption
06:de:7b:ef:25:fd:68:f5:b2:6e:53:34:55:c5:ec:ba:97:76:
b6:5e:a7:1e:6b:b8:a0:00:0a:a8:a7:a0:a5:66:1a:f7:2e:d2:
2f:82:c9:cb:9c:79:3d:05:ae:a9:e8:67:22:07:41:50:85:23:
7f:57:59:dc:5a:ef:a1:77:ad:7b:9d:f1:b3:4b:f6:02:16:2e:
95:9a:2d:2e:60:22:66:c5:84:7e:f2:92:b8:0a:11:63:60:4c:
5b:69:18:96:0d:65:c6:3b:d6:7d:b7:bb:2b:54:71:b9:57:da:
c2:b4:fb:f2:68:59:12:dd:64:a3:fc:0d:04:a9:b9:4b:0e:51:
32:4d:46:cc:90:01:84:f7:91:be:7d:9b:01:89:4f:5c:e4:e9:
67:24:30:89:e9:18:76:af:70:74:bf:b3:49:94:28:a8:ef:02:
96:34:2e:39:12:9a:cb:24:ba:f5:ef:13:af:50:72:b3:e2:b5:
34:85:f6:f8:bb:58:9c:d6:1b:ac:4c:92:3b:4d:a7:71:01:42:
3b:5c:d0:a8:f2:9e:79:1a:70:cb:c5:a7:40:11:76:e7:ab:41:
39:33:f0:64:62:a9:46:8f:e1:c7:5a:a9:6b:64:29:b1:f0:99:
70:30:68:1b:e7:5b:6a:ca:3a:b6:10:60:7f:6a:63:c4:fa:dd:
8f:2b:10:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 11:39:28 2024 by rpki-client on console-ams.rpki-client.org