Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/qYYoHQBXps4oUGQTzda-So0DrWw.roa
File: qYYoHQBXps4oUGQTzda-So0DrWw.roa (raw, json)
Hash identifier: IAoeW7qcOs0P8b9t8CYCI6m4FkhMZp6ouXyfWpL//pY=
Subject key identifier: A9:86:28:1D:00:57:A6:CE:28:50:64:13:CD:D6:BE:4A:8D:03:AD:6C
Certificate issuer: /CN=dcaa274445826e3d795c3ed18c27700eeac1ca62
Certificate serial: 018CC3B70A146D232DD1A27EB3784AA7B647
Authority key identifier: DC:AA:27:44:45:82:6E:3D:79:5C:3E:D1:8C:27:70:0E:EA:C1:CA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KonREWCbj15XD7RjCdwDurBymI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/qYYoHQBXps4oUGQTzda-So0DrWw.roa
Signing time: Mon 01 Jan 2024 06:30:01 +0000
ROA not before: Mon 01 Jan 2024 06:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207040
IP address blocks: 185.163.132.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/3KonREWCbj15XD7RjCdwDurBymI.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/3KonREWCbj15XD7RjCdwDurBymI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3KonREWCbj15XD7RjCdwDurBymI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:0a:14:6d:23:2d:d1:a2:7e:b3:78:4a:a7:b6:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcaa274445826e3d795c3ed18c27700eeac1ca62
Validity
Not Before: Jan 1 06:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a986281d0057a6ce28506413cdd6be4a8d03ad6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:9f:01:b7:e9:05:7e:57:5f:7b:d5:f7:4a:
df:43:99:83:b1:42:46:1a:46:6c:57:e1:53:58:13:
45:ad:ad:fd:11:92:00:fd:5a:1d:4b:be:a6:f5:94:
ae:0b:46:de:f9:c5:02:3a:2f:bd:92:0b:63:3c:8e:
74:7a:29:a2:36:e7:9d:b2:75:fb:5c:98:ea:2e:3f:
db:82:0a:d2:92:2b:81:bf:97:6a:2d:3d:fd:6e:d5:
55:c5:3c:a0:b6:07:a7:4d:ce:62:e6:d2:c4:44:e2:
fe:bb:40:78:f0:f3:bd:ef:3c:85:3b:a0:a6:72:9c:
9e:d7:11:d6:1e:03:16:69:08:2d:0b:fe:45:04:28:
43:67:7b:8a:cb:eb:4c:bc:d9:dc:47:54:fa:d1:9e:
e7:83:11:6b:8b:0f:42:96:b0:07:c6:4c:24:1e:f2:
44:b1:cb:6e:bb:e1:a6:b4:2c:9c:c5:9a:b2:a6:1a:
67:24:0d:0c:a8:63:f8:06:c6:e3:1d:4b:aa:61:88:
b9:ea:59:b7:13:83:b4:38:07:cc:3b:bb:f6:68:fc:
6b:bf:97:99:b2:58:c3:3e:5f:f4:0d:0a:e7:52:68:
a8:19:37:00:bc:f9:53:c2:57:76:b2:7e:96:bf:b1:
ef:46:78:b4:59:f6:27:f8:77:a1:6f:07:b5:34:e6:
1c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:86:28:1D:00:57:A6:CE:28:50:64:13:CD:D6:BE:4A:8D:03:AD:6C
X509v3 Authority Key Identifier:
keyid:DC:AA:27:44:45:82:6E:3D:79:5C:3E:D1:8C:27:70:0E:EA:C1:CA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KonREWCbj15XD7RjCdwDurBymI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/qYYoHQBXps4oUGQTzda-So0DrWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/3KonREWCbj15XD7RjCdwDurBymI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.132.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:70:f9:0f:a9:17:b8:ef:52:49:e7:30:59:b1:cb:d1:0a:0b:
e6:83:c5:4a:16:50:c5:26:5e:2c:30:a6:81:ee:50:35:3d:35:
8e:84:31:03:21:45:35:d5:09:c6:b0:58:6f:2a:58:1c:b4:2e:
37:ba:bb:63:8f:c4:3b:98:47:87:93:c5:fd:bd:44:d0:2c:82:
03:e0:91:bd:5a:1c:21:a3:31:85:74:53:15:d1:5b:06:1a:d2:
e5:ce:4a:8a:1e:ea:08:70:7b:2d:c3:1b:e0:93:f3:7e:18:b2:
01:13:47:3e:46:10:e5:40:7e:00:65:f3:cb:f2:a6:a4:fb:35:
d5:c3:1d:9f:95:7c:cf:82:c2:5e:4c:30:9e:86:6e:e4:9f:99:
3c:69:08:41:df:3c:cc:49:c1:a6:eb:96:1d:1c:31:52:89:a4:
34:a4:57:7e:d4:10:7f:6e:c6:25:8b:39:54:50:0f:93:8f:b0:
60:62:9c:1e:be:fd:47:59:6d:3b:13:98:bc:ed:66:ff:6d:dc:
7e:b8:d9:15:29:6f:32:07:52:9a:4c:dd:6f:ba:fc:e2:7a:e7:
5c:d0:20:fa:b4:11:de:a2:dd:b3:5f:60:a2:dd:05:a2:97:58:
36:49:56:d6:b9:10:37:6e:54:6f:ca:e7:7b:09:be:69:4c:41:
40:2e:1d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 06:26:55 2024 by rpki-client on console-fra.rpki-client.org