Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/a_hnvCV1rdhBiOLaoQjVN6kW0UA.roa
File: a_hnvCV1rdhBiOLaoQjVN6kW0UA.roa (raw, json)
Hash identifier: LDXuWFHfxMOKIbofaBN4rPSQZKrGjfUnesN/xup7J24=
Subject key identifier: 6B:F8:67:BC:25:75:AD:D8:41:88:E2:DA:A1:08:D5:37:A9:16:D1:40
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 01931D920AF6EE66CD59860FFAAF016446C8
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/a_hnvCV1rdhBiOLaoQjVN6kW0UA.roa
Signing time: Mon 11 Nov 2024 23:32:10 +0000
ROA not before: Mon 11 Nov 2024 23:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 86.110.36.0/24 maxlen: 24
86.110.44.0/24 maxlen: 24
86.110.46.0/24 maxlen: 24
86.110.53.0/24 maxlen: 24
86.110.56.0/24 maxlen: 24
86.110.58.0/24 maxlen: 24
86.110.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1d:92:0a:f6:ee:66:cd:59:86:0f:fa:af:01:64:46:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Nov 11 23:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bf867bc2575add84188e2daa108d537a916d140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:2f:d9:33:8d:fd:84:26:20:67:55:1e:f8:
b2:a1:e3:12:4a:2b:32:b4:db:28:8c:7c:9c:f1:f5:
a8:34:9c:11:3f:5e:34:d7:ed:15:e0:58:7a:be:c6:
ce:f4:ac:d8:d3:24:f9:73:e9:66:f6:d9:7d:b8:62:
be:f4:a9:57:6c:23:e5:a0:ad:a9:27:1d:b1:6c:8a:
7d:58:a8:c6:10:a5:22:5e:6b:aa:0c:55:60:86:c4:
b2:d8:89:51:4c:f9:86:3c:f4:33:dd:bd:8a:ee:88:
37:07:ba:f5:fd:25:b4:5f:40:9e:f3:75:d0:54:a0:
41:25:dd:79:0e:db:3b:7d:6a:2c:32:08:48:03:3f:
38:12:e1:3c:9c:ee:09:69:0d:ef:4a:ff:a9:17:15:
63:0c:6b:ff:a5:3a:b0:94:7c:11:62:1a:5e:0d:12:
a0:52:9d:9b:9c:ad:82:5e:e1:52:bf:f8:9c:a5:35:
a7:e2:aa:db:1b:c1:73:78:0a:04:6b:88:47:75:ea:
3f:cd:f5:ad:60:4e:92:fe:6f:1d:ac:2f:05:2b:62:
35:10:48:6d:75:bf:c3:f4:30:1f:9a:2b:28:16:17:
52:c0:6e:68:f2:ce:85:6c:6b:2d:b9:3d:d3:45:33:
1e:e4:22:90:f7:4a:5c:15:6c:c0:f5:5b:7f:dc:0f:
3a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F8:67:BC:25:75:AD:D8:41:88:E2:DA:A1:08:D5:37:A9:16:D1:40
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/a_hnvCV1rdhBiOLaoQjVN6kW0UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.36.0/24
86.110.44.0/24
86.110.46.0/24
86.110.53.0/24
86.110.56.0/24
86.110.58.0/24
86.110.63.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:59:18:58:e6:b7:1e:36:4c:c7:f2:fb:63:86:15:9e:a5:96:
2b:56:5b:6a:61:81:82:c1:d3:5c:1d:c2:d5:86:24:6b:3c:97:
bb:00:bb:d7:40:7c:de:ee:ad:3f:55:2e:48:e1:7f:e8:7c:96:
96:ed:3c:55:2b:e0:19:fd:4a:fd:96:d1:81:38:4e:b1:c5:56:
7a:f2:56:74:4d:67:a8:51:c0:eb:f9:50:64:d1:c0:c0:7c:2f:
69:03:79:34:77:d9:5f:07:bd:a1:fb:96:2e:89:89:16:ad:2c:
f1:c6:4a:ce:c4:30:82:b0:40:2b:c8:02:37:cf:ba:86:9d:ba:
38:a0:b4:2c:69:44:93:f5:47:97:09:5a:94:f3:03:21:c1:b3:
dc:8a:92:e9:ee:35:7b:27:63:c0:96:d7:cd:c5:76:6b:8c:13:
93:de:9f:0b:83:bc:45:63:35:22:db:d1:f6:46:00:80:f2:0f:
2a:ba:e6:90:f4:40:c0:1f:6f:be:46:b8:72:87:99:57:8f:f7:
2b:d0:19:4d:da:04:10:f7:cf:07:80:2e:86:f4:81:a8:c5:15:
a4:27:47:8c:77:5e:8a:d4:74:b5:35:5d:9c:e7:a0:70:b4:c0:
d5:52:b3:81:67:46:46:8c:da:53:15:1e:7f:ba:d9:bd:40:13:
69:9b:56:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:46:29 2024 by rpki-client on console-ams.rpki-client.org