Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/rvn7d6Em6MAoEtBMNtWijDcWK88.roa
File: rvn7d6Em6MAoEtBMNtWijDcWK88.roa (raw, json)
Hash identifier: /vY+i4eX3QC7mSsw8HW0MZhj7gmzvEZec+CGqtQwdzE=
Subject key identifier: AE:F9:FB:77:A1:26:E8:C0:28:12:D0:4C:36:D5:A2:8C:37:16:2B:CF
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01927AC1ED09D67C5440BE84D3871E75445D
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/rvn7d6Em6MAoEtBMNtWijDcWK88.roa
Signing time: Fri 11 Oct 2024 08:46:22 +0000
ROA not before: Fri 11 Oct 2024 08:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63023
IP address blocks: 5.8.18.0/24 maxlen: 24
46.161.0.0/24 maxlen: 24
146.185.233.0/24 maxlen: 24
146.185.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:c1:ed:09:d6:7c:54:40:be:84:d3:87:1e:75:44:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Oct 11 08:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aef9fb77a126e8c02812d04c36d5a28c37162bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:38:7a:a9:17:66:3e:49:fd:10:cf:4c:cb:
c1:92:63:a3:c8:c8:cd:90:37:00:66:9a:fe:52:35:
71:58:04:c7:2d:0a:c4:06:14:9e:42:c7:52:20:d0:
ea:f6:b0:5f:04:6d:31:fd:3f:cc:6e:88:a5:aa:2a:
33:1b:dd:2c:b6:63:f7:1e:e1:51:61:e4:af:b5:c3:
51:12:f8:1c:85:97:66:67:87:7d:7c:74:2c:ce:a0:
7f:31:e6:58:be:39:cc:da:99:4e:b1:be:a5:19:ba:
d1:b6:0b:1f:32:1a:e1:42:09:21:be:7d:bc:a6:5e:
bb:db:b8:ae:49:96:e2:7a:f5:c7:51:91:e8:22:68:
c1:e0:40:d2:c4:dc:ca:75:c0:94:fc:23:bd:58:f9:
69:9a:9a:a2:1d:18:3d:2b:cd:3f:05:fe:be:e0:83:
b1:df:29:07:c5:96:16:06:2a:1e:6f:cf:de:39:86:
8b:72:9e:5d:b4:a9:b4:e5:53:53:e1:4e:33:30:a7:
b4:13:80:9b:89:92:a6:61:8e:10:af:ae:47:76:1e:
f4:f0:a2:fd:15:88:e2:1a:74:fe:59:1f:6f:7d:33:
50:4f:de:b4:1e:56:ad:b0:d5:08:0a:6e:3d:6f:a2:
5f:40:50:e6:2c:32:42:50:be:e5:c9:93:a8:3b:9d:
20:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F9:FB:77:A1:26:E8:C0:28:12:D0:4C:36:D5:A2:8C:37:16:2B:CF
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/rvn7d6Em6MAoEtBMNtWijDcWK88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.18.0/24
46.161.0.0/24
146.185.233.0/24
146.185.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:3f:07:58:73:79:31:3b:ef:d5:51:f0:42:e4:a6:6e:3d:46:
5a:20:3a:2f:41:e3:76:7d:da:0b:54:85:bc:8c:df:8f:35:0c:
0d:47:e6:ff:ce:d2:84:ed:0f:c8:c6:6a:69:29:5f:71:df:53:
02:0b:60:72:03:95:35:8e:d9:a9:3c:b1:10:5b:07:4a:73:c0:
0d:cc:ad:2e:a7:fe:59:0c:4f:4b:9d:f0:ad:b9:74:57:81:fe:
5b:ff:c9:6b:f1:20:88:7a:4f:b9:00:9b:28:27:2d:51:87:15:
91:a4:8a:04:42:0e:ed:50:07:02:89:43:cd:87:03:78:ed:54:
5f:40:01:b9:98:8f:2e:27:01:db:a8:24:47:c7:66:c5:ab:df:
53:37:39:52:27:98:29:92:28:13:b5:0b:4b:2e:c3:03:9a:79:
4c:e1:a0:71:de:8c:0d:6f:ca:a6:78:68:11:e2:bd:56:fc:7a:
04:17:7d:9f:f7:2c:d5:f2:85:4d:82:94:c8:de:d4:f9:3f:a3:
7e:da:9c:0e:33:29:43:97:e6:b5:9d:e1:5a:0c:94:f9:c7:92:
ce:75:e9:46:b2:83:9c:4d:b9:77:c8:4f:dd:11:c8:5c:a5:29:
30:ba:30:99:53:8f:4e:7d:29:4d:ad:fa:0b:2f:ab:bf:e2:b9:
86:5b:3e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:12 2024 by rpki-client on console-fra.rpki-client.org