Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/PmfDqWKKF4BBYfyh_aESKFVyhqk.roa
File: PmfDqWKKF4BBYfyh_aESKFVyhqk.roa (raw, json)
Hash identifier: yFWSjOpuZ3BTOVeDuoKN1SDBIhDJUoHoFoMlkmbGC5E=
Subject key identifier: 3E:67:C3:A9:62:8A:17:80:41:61:FC:A1:FD:A1:12:28:55:72:86:A9
Certificate issuer: /CN=b48f41afdc609568fb2338fdb20b2d0c422b723b
Certificate serial: 01912C905F0DAC5F6881ECD09FAC6F08C334
Authority key identifier: B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/PmfDqWKKF4BBYfyh_aESKFVyhqk.roa
Signing time: Wed 07 Aug 2024 11:19:04 +0000
ROA not before: Wed 07 Aug 2024 11:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 185.90.154.0/24 maxlen: 24
2a05:e100:1::/48 maxlen: 48
2a05:e100:a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:90:5f:0d:ac:5f:68:81:ec:d0:9f:ac:6f:08:c3:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48f41afdc609568fb2338fdb20b2d0c422b723b
Validity
Not Before: Aug 7 11:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e67c3a9628a17804161fca1fda11228557286a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0e:b2:42:50:97:11:38:0f:c6:34:82:6c:60:
9e:a7:a9:83:f3:d8:81:24:5d:57:7a:bb:7f:d2:0c:
c9:76:75:38:61:f3:ea:ed:9e:2a:b3:38:49:35:32:
59:31:0a:b3:7a:a3:76:e2:5a:46:e0:3f:30:36:98:
e9:34:d8:d2:a7:27:ae:e3:64:ff:5f:5a:46:fa:5a:
69:f1:1d:91:c1:eb:e3:08:fc:59:bd:37:98:df:aa:
7d:de:11:72:a5:9f:c0:29:c0:c7:20:a8:ac:a1:c6:
ad:50:4b:0c:06:46:a6:ba:89:3d:1d:93:67:1f:8e:
c5:dd:31:ad:e6:b9:8a:79:75:30:3f:e6:bc:90:3c:
da:3c:7e:8b:3b:d6:53:a8:46:b0:c5:78:5d:6d:9f:
62:c0:06:47:1e:e8:e2:69:ab:de:58:62:eb:e9:2c:
67:fe:08:da:78:b0:24:5e:34:93:64:3c:9f:95:b3:
45:61:f6:c9:89:2d:71:84:36:7b:92:76:10:3b:7f:
08:b2:82:69:1e:5e:5f:a9:08:50:c6:57:f4:62:95:
09:54:14:2d:b9:0e:d9:23:30:0d:04:bf:c7:b7:90:
7e:8e:1e:e5:78:9f:50:8f:af:53:77:c7:c5:34:20:
5e:c1:69:df:21:45:70:21:19:34:2f:50:00:d2:0a:
1d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:67:C3:A9:62:8A:17:80:41:61:FC:A1:FD:A1:12:28:55:72:86:A9
X509v3 Authority Key Identifier:
keyid:B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/PmfDqWKKF4BBYfyh_aESKFVyhqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.154.0/24
IPv6:
2a05:e100:1::/48
2a05:e100:a::/48
Signature Algorithm: sha256WithRSAEncryption
0f:51:99:9c:d9:66:af:f7:fa:51:71:2c:90:bb:21:39:b4:24:
db:e4:89:76:81:de:99:8e:bf:a4:7e:51:28:29:e3:60:d6:9e:
b2:20:af:4d:c7:d4:05:2b:91:9e:30:7e:d1:b5:fa:99:ca:71:
5f:e0:85:8f:b9:b6:56:83:b9:7e:ac:52:26:2c:bf:da:c5:37:
a6:07:d0:77:e9:f7:12:bd:84:91:69:ad:81:b3:a5:4b:43:44:
e0:92:dd:0a:6e:18:32:22:a8:12:bf:8f:80:d2:0a:01:30:46:
f3:b7:e7:1a:af:5b:f6:c9:b6:50:1d:b7:d1:75:e3:f4:6b:b3:
3f:85:b4:de:3b:41:4c:3b:fe:c8:90:a8:c6:a2:fb:a0:67:6c:
ba:18:e6:0c:5d:2c:1c:9f:f9:9a:02:0e:7f:2b:b4:7d:c3:55:
71:17:00:7c:06:0f:98:80:ee:6c:7b:f1:d4:f8:dc:47:79:95:
84:02:11:da:61:ea:1f:24:b3:b8:e5:ae:36:ff:75:6e:27:2a:
5a:c3:37:2d:8a:7f:98:87:22:60:2d:04:5a:b2:4b:24:8a:1c:
8e:d0:2f:db:19:02:ec:99:70:4a:f9:c2:02:09:db:3e:8c:66:
29:72:20:2a:c3:68:9c:f9:6a:93:68:7e:b6:95:65:9c:5e:71:
9d:59:65:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:29:25 2024 by rpki-client on console-fra.rpki-client.org