Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/V-WTA8KiOyMgaRhqTCZVqgeX-NQ.roa
File: V-WTA8KiOyMgaRhqTCZVqgeX-NQ.roa (raw, json)
Hash identifier: 9hBMl3upNP011iq1c1ZTnQhOZv4tsXmhkAY24v8I1hg=
Subject key identifier: 57:E5:93:03:C2:A2:3B:23:20:69:18:6A:4C:26:55:AA:07:97:F8:D4
Certificate issuer: /CN=0260b70a50adead39b709b590046c52e0cc6929b
Certificate serial: 018CC8018EBC33DADCD4A5C1A408E70A1F00
Authority key identifier: 02:60:B7:0A:50:AD:EA:D3:9B:70:9B:59:00:46:C5:2E:0C:C6:92:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmC3ClCt6tObcJtZAEbFLgzGkps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/V-WTA8KiOyMgaRhqTCZVqgeX-NQ.roa
Signing time: Tue 02 Jan 2024 02:29:54 +0000
ROA not before: Tue 02 Jan 2024 02:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200547
IP address blocks: 185.238.148.0/22 maxlen: 24
185.238.149.0/24 maxlen: 24
185.238.150.0/24 maxlen: 24
185.238.151.0/24 maxlen: 24
160.238.112.0/24 maxlen: 24
160.238.112.0/22 maxlen: 22
160.238.113.0/24 maxlen: 24
160.238.114.0/24 maxlen: 24
160.238.115.0/24 maxlen: 24
185.95.237.0/24 maxlen: 24
185.95.238.0/24 maxlen: 24
185.95.239.0/24 maxlen: 24
185.95.236.0/22 maxlen: 24
185.236.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/AmC3ClCt6tObcJtZAEbFLgzGkps.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/AmC3ClCt6tObcJtZAEbFLgzGkps.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmC3ClCt6tObcJtZAEbFLgzGkps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:8e:bc:33:da:dc:d4:a5:c1:a4:08:e7:0a:1f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0260b70a50adead39b709b590046c52e0cc6929b
Validity
Not Before: Jan 2 02:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57e59303c2a23b232069186a4c2655aa0797f8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:c4:b0:84:4b:fb:2b:ad:03:a0:c2:32:0a:
c8:03:b0:1f:44:69:c1:c1:93:48:f4:66:4e:b3:5b:
d9:42:cc:a3:d9:c4:45:05:24:de:9f:77:cd:10:60:
8f:b5:9a:2e:73:87:aa:df:16:56:28:de:e3:9f:6a:
ec:ec:85:ae:7f:28:74:f4:e8:7f:ac:7b:8c:70:a3:
c5:47:26:7e:09:db:4e:16:35:9c:d5:66:88:79:f3:
3a:87:38:1c:f5:ea:94:f8:57:f6:0f:c1:4c:67:df:
35:a8:69:99:6e:b0:08:77:90:f3:f3:19:bd:5c:83:
51:81:77:87:d1:85:ba:a7:5a:d7:b0:a9:2e:dc:e4:
22:f0:50:31:50:28:e8:54:64:ef:5d:4d:80:9a:84:
03:21:ec:48:e7:a7:2d:b9:c8:2f:84:6a:c8:e6:2c:
a3:62:63:58:a8:d6:ac:40:05:14:e7:5b:68:6a:37:
22:03:4f:54:33:2d:a6:9a:b8:8f:60:7e:2b:35:1b:
d6:d2:29:34:4d:76:c7:69:15:21:60:bf:32:21:09:
b0:32:b3:78:89:c7:a4:ce:4a:79:2a:64:26:06:76:
f8:0f:11:5c:9b:13:69:e5:0b:55:66:df:c6:94:ef:
70:40:b6:a6:20:61:de:b1:f4:a6:1d:fc:8c:73:8c:
63:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E5:93:03:C2:A2:3B:23:20:69:18:6A:4C:26:55:AA:07:97:F8:D4
X509v3 Authority Key Identifier:
keyid:02:60:B7:0A:50:AD:EA:D3:9B:70:9B:59:00:46:C5:2E:0C:C6:92:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmC3ClCt6tObcJtZAEbFLgzGkps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/V-WTA8KiOyMgaRhqTCZVqgeX-NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5eb130-a0f7-49af-a271-ebec2a42e60d/1/AmC3ClCt6tObcJtZAEbFLgzGkps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.238.112.0/22
185.95.236.0/22
185.236.52.0/24
185.238.148.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:e2:f9:18:11:f0:c2:94:72:cb:ac:0b:2d:aa:af:5d:40:6c:
70:40:5f:e4:c4:80:c7:1a:6a:f1:8b:f4:0e:9c:65:43:6c:3e:
95:ee:18:9d:46:8e:f6:6a:84:00:cd:c7:04:67:1c:33:23:45:
0f:68:c7:12:ec:1e:5c:c8:08:29:0b:bf:ca:ec:f8:ef:50:05:
8e:68:0b:05:2a:6f:4e:58:d5:7c:15:48:2e:c1:de:70:52:d2:
17:81:0e:08:0c:bd:35:e7:1c:40:18:fe:f4:56:9e:33:a7:28:
0e:39:32:9f:75:8a:ff:dc:9f:93:49:dd:53:fc:62:01:d8:f6:
f6:32:09:fa:db:7e:f4:cc:05:09:49:06:1a:fb:d6:58:c5:3f:
8a:e7:1f:8c:75:12:4b:b5:79:68:00:85:df:92:50:4d:9e:83:
24:8f:73:60:07:6d:db:9c:9f:df:60:4e:b3:a2:23:c6:47:1a:
87:5c:71:11:d5:a8:c0:e3:aa:7b:de:9b:fe:fd:c6:45:25:7d:
23:fc:e7:32:db:9e:41:ec:a6:b3:5e:1e:39:76:d3:b2:50:25:
f0:68:0a:b0:a2:9e:ac:83:f0:9e:37:73:18:6e:5c:57:51:71:
3d:c9:5e:d3:94:de:5d:65:3a:08:b2:08:22:00:36:5e:97:03:
f8:22:02:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:14:35 2024 by rpki-client on console-ams.rpki-client.org