Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/5EjXtK4kInhX6cSkAisknRL7pr8.roa
File: 5EjXtK4kInhX6cSkAisknRL7pr8.roa (raw, json)
Hash identifier: MJYMOiOtCMF/gF7eJdafA2W7Dv+DmDMv3qv6mAeLR80=
Subject key identifier: E4:48:D7:B4:AE:24:22:78:57:E9:C4:A4:02:2B:24:9D:12:FB:A6:BF
Certificate issuer: /CN=69622a1aadf79e711d1e7e4319f732c0b2da801e
Certificate serial: 018CC94AAD8F571C63D32BB27AA3EEDC6808
Authority key identifier: 69:62:2A:1A:AD:F7:9E:71:1D:1E:7E:43:19:F7:32:C0:B2:DA:80:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWIqGq33nnEdHn5DGfcywLLagB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/5EjXtK4kInhX6cSkAisknRL7pr8.roa
Signing time: Tue 02 Jan 2024 08:29:23 +0000
ROA not before: Tue 02 Jan 2024 08:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34979
IP address blocks: 185.242.46.0/24 maxlen: 24
185.242.47.0/24 maxlen: 24
185.242.45.0/24 maxlen: 24
2a0c:bc80::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/aWIqGq33nnEdHn5DGfcywLLagB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/aWIqGq33nnEdHn5DGfcywLLagB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aWIqGq33nnEdHn5DGfcywLLagB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:ad:8f:57:1c:63:d3:2b:b2:7a:a3:ee:dc:68:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69622a1aadf79e711d1e7e4319f732c0b2da801e
Validity
Not Before: Jan 2 08:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e448d7b4ae24227857e9c4a4022b249d12fba6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:da:9d:4d:34:b1:cd:e5:55:71:31:fd:91:05:
df:05:ef:eb:67:a9:38:42:e4:94:15:88:0f:44:08:
51:71:e5:a2:e0:ae:8d:56:21:7f:3a:0a:48:2d:cf:
25:f6:77:06:c1:9f:14:29:eb:1b:16:71:fb:e8:23:
47:db:11:e4:c4:ed:7d:13:9b:9a:6c:89:79:e1:95:
68:95:e2:7c:0d:6c:06:60:44:6d:e8:c6:ad:f6:c2:
df:68:b7:07:5d:e5:f6:bc:de:8b:64:01:f5:10:15:
97:c9:87:83:55:23:52:76:a6:27:39:2d:08:99:6d:
cd:4e:6c:36:8d:04:a9:fd:13:04:05:5b:ad:eb:3f:
1e:c3:46:cc:59:df:90:04:28:32:68:cc:a4:c3:31:
47:f6:49:14:24:d4:48:1e:26:58:74:82:2e:20:1e:
5f:13:df:26:39:47:db:06:3c:08:72:42:39:4d:73:
4e:d3:5a:40:ea:40:9d:e4:91:7a:68:da:c8:f5:19:
90:78:96:45:bd:eb:c8:5e:60:47:ac:24:09:20:1b:
31:17:d4:8d:4d:9b:e1:c4:0c:62:a0:f3:47:88:df:
1a:ea:2a:c4:2e:1a:70:85:6e:25:e7:a8:8a:19:b0:
bf:ac:8a:5e:4f:81:d3:fe:56:2b:a4:20:b5:15:d0:
7c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:48:D7:B4:AE:24:22:78:57:E9:C4:A4:02:2B:24:9D:12:FB:A6:BF
X509v3 Authority Key Identifier:
keyid:69:62:2A:1A:AD:F7:9E:71:1D:1E:7E:43:19:F7:32:C0:B2:DA:80:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWIqGq33nnEdHn5DGfcywLLagB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/5EjXtK4kInhX6cSkAisknRL7pr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/717615-d202-48f2-bb93-cc20f4172ced/1/aWIqGq33nnEdHn5DGfcywLLagB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.45.0-185.242.47.255
IPv6:
2a0c:bc80::/29
Signature Algorithm: sha256WithRSAEncryption
20:1a:4e:2c:ce:5c:16:dc:8e:c7:c7:cc:ea:d6:f5:f0:38:9f:
fb:e6:72:0a:92:19:a7:b9:84:59:c6:39:72:d2:a7:f2:ae:b5:
4a:9a:82:4d:3e:81:0c:d5:2c:d3:27:c0:07:b8:d5:cc:08:b5:
35:dd:a0:9e:ee:d0:c0:c9:fb:8f:64:b9:bb:c4:56:34:a8:4e:
9b:49:33:d3:d2:1e:41:6a:76:40:6d:68:32:49:0e:3f:5c:8d:
a9:10:08:95:c9:dc:a1:b5:8c:92:67:a5:0f:69:53:a0:a9:57:
7d:80:24:8c:a6:c9:5a:6a:cf:e2:e1:fe:f5:5e:c0:09:d9:67:
45:8b:d6:37:53:64:79:d7:fe:e7:cb:78:ee:39:51:97:35:d8:
42:ee:d2:5e:88:ca:df:a6:1c:3c:9c:89:d3:20:91:c9:b3:72:
41:9b:44:0e:d1:08:97:f7:06:f9:28:ba:29:6c:a7:1b:0e:a9:
5c:35:4a:98:e6:e6:4a:76:34:6f:a7:9f:79:63:2a:4c:f5:be:
70:aa:0c:6b:d1:52:07:3e:db:03:00:cb:a5:41:be:3b:70:e9:
62:94:2e:2c:af:f3:8d:c1:22:2d:e4:d2:f4:f9:4e:09:b3:d8:
09:71:f0:24:05:c1:37:64:4d:bb:44:68:cf:1f:b5:66:b7:e4:
79:39:6d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:11:24 2024 by rpki-client on console-ams.rpki-client.org