Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/VG9Y48C5SVScGLTnm-kH1odaywo.roa
File: VG9Y48C5SVScGLTnm-kH1odaywo.roa (raw, json)
Hash identifier: YyOLhZV0Lnvln/z628uSk8cT3aCvBvbJzcRi0IKfnlY=
Subject key identifier: 54:6F:58:E3:C0:B9:49:54:9C:18:B4:E7:9B:E9:07:D6:87:5A:CB:0A
Certificate issuer: /CN=acc48f7a59120588d4170ea2815e6ae51be6bcff
Certificate serial: 018CC725A13DF8C5BADBEB904CA52A87BAFB
Authority key identifier: AC:C4:8F:7A:59:12:05:88:D4:17:0E:A2:81:5E:6A:E5:1B:E6:BC:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMSPelkSBYjUFw6igV5q5RvmvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/VG9Y48C5SVScGLTnm-kH1odaywo.roa
Signing time: Mon 01 Jan 2024 22:29:41 +0000
ROA not before: Mon 01 Jan 2024 22:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15557
IP address blocks: 193.56.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/rMSPelkSBYjUFw6igV5q5RvmvP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/rMSPelkSBYjUFw6igV5q5RvmvP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rMSPelkSBYjUFw6igV5q5RvmvP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:a1:3d:f8:c5:ba:db:eb:90:4c:a5:2a:87:ba:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc48f7a59120588d4170ea2815e6ae51be6bcff
Validity
Not Before: Jan 1 22:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=546f58e3c0b949549c18b4e79be907d6875acb0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:8c:64:74:d7:0e:05:2c:9f:af:ba:d6:03:
77:9e:b8:fe:7f:e1:1e:88:7b:82:16:0c:c2:8d:39:
75:55:cb:92:b2:4d:c8:ff:e8:53:d9:5c:95:6e:2f:
34:6a:fe:ee:6f:91:bf:67:4f:4e:48:c6:5b:f4:7d:
b5:9c:f3:38:bb:a4:f9:8c:9a:85:d0:69:29:53:39:
3c:39:78:0b:34:c2:3e:b3:0d:3c:36:a8:7e:d5:6a:
11:d0:b1:2a:42:1c:0c:a2:53:ae:cd:95:b3:00:d5:
56:d0:b1:5e:01:92:52:84:bc:04:56:b2:e1:6b:e4:
f0:2b:93:1b:0f:40:a7:31:15:fb:66:66:6b:cd:f8:
ce:92:89:d8:a3:b6:f9:93:d8:0a:de:78:4c:d9:3a:
ed:8c:4f:d7:bd:ca:8e:18:e4:8f:e0:99:4f:50:16:
fd:76:e5:0d:48:1b:95:ba:24:49:94:01:15:1c:46:
6d:f4:84:30:6a:28:dd:d3:2a:cf:00:d2:13:f0:c1:
f9:cd:57:b4:b0:bd:25:09:79:46:5e:c8:dc:33:c8:
bf:df:ee:eb:7b:ca:fd:60:41:67:20:ac:96:16:28:
6a:12:42:c3:68:c4:1d:e4:51:e9:c1:ea:fd:ec:69:
ef:a4:55:91:aa:05:f5:f3:7b:92:cd:80:4f:f4:d7:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6F:58:E3:C0:B9:49:54:9C:18:B4:E7:9B:E9:07:D6:87:5A:CB:0A
X509v3 Authority Key Identifier:
keyid:AC:C4:8F:7A:59:12:05:88:D4:17:0E:A2:81:5E:6A:E5:1B:E6:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMSPelkSBYjUFw6igV5q5RvmvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/VG9Y48C5SVScGLTnm-kH1odaywo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d8679e-46bb-44f5-ba52-b52b3a236fa7/1/rMSPelkSBYjUFw6igV5q5RvmvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.37.0/24
Signature Algorithm: sha256WithRSAEncryption
76:99:e4:de:85:be:e5:ae:c0:ef:65:c7:58:d1:85:66:2f:3d:
ab:5a:90:95:4f:b8:34:8f:14:08:7b:55:65:56:a9:08:76:41:
b5:5b:a8:50:e7:2b:d0:23:e3:d3:1b:67:d5:26:93:2a:8b:d5:
fc:f8:64:34:ce:29:4e:94:15:75:1d:db:28:0b:30:e5:45:1b:
89:e0:8c:50:3e:fe:64:4d:ba:52:3d:f4:8d:17:75:f1:4d:25:
40:d2:33:e9:94:d6:e2:eb:02:6d:19:9e:f3:ec:43:bb:fc:85:
d6:cd:9b:5e:61:46:03:38:f5:57:5e:ea:ad:11:19:a4:4e:24:
5a:88:fb:13:47:a5:43:ae:05:cc:f7:7a:94:a3:3a:e4:cf:c8:
c9:1b:31:1d:16:fa:b2:35:bd:5f:b5:94:5d:77:58:b0:f5:ce:
51:00:44:06:90:cf:67:48:11:15:12:8d:33:60:89:da:cd:a1:
47:95:d4:bf:e7:1e:07:cd:59:2c:ea:59:b4:38:18:7b:0c:fc:
75:1c:cf:88:38:85:09:86:7e:da:9a:02:0d:5f:37:66:26:a1:
bd:93:91:a8:ce:6d:f4:fa:5b:2b:42:c3:77:e7:87:1e:6a:24:
3f:73:5f:b4:c8:53:0e:43:0e:f5:41:4e:18:52:01:94:dd:25:
a6:7e:3b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:04:10 2024 by rpki-client on console-ams.rpki-client.org