Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/41vTqrC9I3EfPNR-13a6WBV_Yzs.roa
File: 41vTqrC9I3EfPNR-13a6WBV_Yzs.roa (raw, json)
Hash identifier: 8Dp+2jNYHJ1oq1GljISTDoMsjca2C2jcphxrhjnKHf4=
Subject key identifier: E3:5B:D3:AA:B0:BD:23:71:1F:3C:D4:7E:D7:76:BA:58:15:7F:63:3B
Certificate issuer: /CN=e6135d639768a3a63ed9c5ff40af5ed01df741cb
Certificate serial: 018CC2DB50E6BD6769B795AC786A3CD4BA1B
Authority key identifier: E6:13:5D:63:97:68:A3:A6:3E:D9:C5:FF:40:AF:5E:D0:1D:F7:41:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hNdY5doo6Y-2cX_QK9e0B33Qcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/41vTqrC9I3EfPNR-13a6WBV_Yzs.roa
Signing time: Mon 01 Jan 2024 02:30:02 +0000
ROA not before: Mon 01 Jan 2024 02:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203714
IP address blocks: 176.53.180.0/23 maxlen: 23
176.53.182.0/23 maxlen: 23
185.207.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/5hNdY5doo6Y-2cX_QK9e0B33Qcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/5hNdY5doo6Y-2cX_QK9e0B33Qcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/5hNdY5doo6Y-2cX_QK9e0B33Qcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:50:e6:bd:67:69:b7:95:ac:78:6a:3c:d4:ba:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6135d639768a3a63ed9c5ff40af5ed01df741cb
Validity
Not Before: Jan 1 02:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e35bd3aab0bd23711f3cd47ed776ba58157f633b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7b:6e:b3:f4:bd:59:ed:48:dc:a1:9f:94:63:
5b:00:57:26:fe:e1:7e:66:07:83:7c:40:a5:af:6d:
00:14:e5:72:a8:ac:9b:42:db:5c:10:95:cb:22:76:
16:56:d4:37:c7:13:62:81:e0:05:e8:f6:fe:e8:33:
5a:ca:01:91:18:4b:f7:53:4f:76:5c:29:e2:a0:22:
4b:0b:df:f7:8f:05:7d:c5:fa:e8:37:e6:ac:75:77:
f7:72:61:14:5f:3b:c0:f2:0e:3a:b4:b3:02:19:4e:
c7:87:ad:d8:d3:bc:cf:81:97:96:46:45:71:14:00:
c7:10:d9:34:4c:a1:be:ea:86:ac:18:d7:b7:11:30:
9e:97:ba:14:c9:e7:bd:b0:da:af:bf:7f:e8:07:10:
e2:48:2e:19:95:2a:c2:1f:8e:d8:fb:12:64:c7:17:
c1:c5:7b:41:4f:36:61:55:0c:1b:43:69:d1:5c:50:
a7:0c:d4:e6:81:61:f8:46:3a:7e:8a:40:14:b9:c7:
79:e1:05:58:34:10:cf:09:23:94:2a:26:e0:f9:60:
c7:e7:f7:b7:eb:a8:2e:dc:c3:a8:17:43:82:10:22:
35:26:c3:fe:3c:70:d9:6c:bc:61:7b:1b:11:09:ad:
55:68:a1:be:79:38:70:8c:75:f2:31:a9:71:ea:94:
18:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:5B:D3:AA:B0:BD:23:71:1F:3C:D4:7E:D7:76:BA:58:15:7F:63:3B
X509v3 Authority Key Identifier:
keyid:E6:13:5D:63:97:68:A3:A6:3E:D9:C5:FF:40:AF:5E:D0:1D:F7:41:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hNdY5doo6Y-2cX_QK9e0B33Qcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/41vTqrC9I3EfPNR-13a6WBV_Yzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/746a75-d361-4e91-873a-0a770f0c7608/1/5hNdY5doo6Y-2cX_QK9e0B33Qcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.180.0/22
185.207.2.0/24
Signature Algorithm: sha256WithRSAEncryption
07:29:ab:8d:7f:93:ae:e5:21:93:f4:19:f4:83:b0:45:44:fe:
9d:65:a3:b6:e6:13:6f:77:2f:6c:77:dc:6c:12:e2:44:41:88:
31:f2:c3:cc:35:dd:4e:3c:88:f7:e9:07:57:fe:ca:97:d0:83:
c5:58:95:03:45:72:aa:ca:e8:42:63:e9:77:33:b0:b7:fa:bb:
99:02:c3:0e:0e:7a:29:ba:20:1b:ca:52:da:ad:14:95:9c:6a:
da:ab:66:ef:28:83:84:3e:99:20:ec:59:b2:81:c0:84:17:6c:
63:d8:a4:e5:65:24:16:d1:87:89:32:9b:7e:21:7c:6e:30:16:
ba:99:18:c5:79:a0:73:da:26:8f:a1:5f:87:a6:19:11:c1:30:
fd:be:e8:76:aa:24:01:da:54:4a:be:69:94:d8:53:4d:93:96:
ec:37:d3:94:77:b7:7c:1d:90:42:ce:ed:cf:5a:5e:fb:f8:ea:
de:a8:8f:64:82:f7:bb:79:c7:72:74:ff:47:fd:b1:a0:ac:2f:
12:3d:90:51:e8:d9:90:a6:82:00:2f:e1:ad:58:61:7c:af:7f:
6a:53:0f:c1:94:75:19:0f:af:0b:a4:90:73:2b:16:64:e9:62:
75:83:f7:55:f8:95:33:67:f5:9c:07:9c:a1:68:66:f6:1f:2f:
5c:6d:c8:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:37:39 2024 by rpki-client on console-fra.rpki-client.org