Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Qr5gVSshDWuXqQb_HSUPLLpaaYg.roa
File: Qr5gVSshDWuXqQb_HSUPLLpaaYg.roa (raw, json)
Hash identifier: 9XmB04H1+NhfWHbQuL+gzXzcuGhsfq80dJEPHDlwIa8=
Subject key identifier: 42:BE:60:55:2B:21:0D:6B:97:A9:06:FF:1D:25:0F:2C:BA:5A:69:88
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FAA237999FFE829A9DF134B672BEA3B00
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Qr5gVSshDWuXqQb_HSUPLLpaaYg.roa
Signing time: Fri 24 May 2024 10:26:42 +0000
ROA not before: Fri 24 May 2024 10:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 94.103.178.0/24 maxlen: 24
94.103.189.0/24 maxlen: 24
94.103.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:23:79:99:ff:e8:29:a9:df:13:4b:67:2b:ea:3b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 24 10:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42be60552b210d6b97a906ff1d250f2cba5a6988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:08:cd:d2:e6:97:ee:68:c5:2c:6d:14:bd:86:
79:4c:c4:05:8b:e4:21:90:41:d8:af:81:43:b7:de:
34:f5:5d:87:ee:62:98:a7:a4:f7:b8:66:42:4d:b2:
7a:89:99:c3:ae:18:65:16:d0:41:ec:34:35:75:b8:
f0:48:2f:40:0e:a6:8c:20:1d:5a:c8:bd:bb:e8:4e:
f3:6c:b1:4a:24:c9:b3:a1:b7:31:fe:de:81:6a:65:
2b:5f:50:24:1e:cf:ae:86:88:62:20:44:56:8e:c4:
3d:90:2d:d9:e5:f5:46:9e:8f:58:3d:dc:fc:fc:08:
4f:e5:04:9d:70:eb:95:51:3a:6f:1b:fe:64:b2:1b:
23:24:c3:22:5c:fe:1b:91:3c:0e:ab:ab:d1:67:ef:
08:12:49:ee:68:e4:02:39:c5:39:01:16:4c:a9:07:
e2:4b:bd:ef:99:06:e4:16:50:da:59:8c:fc:61:f1:
7e:48:ad:ec:e1:fe:bd:37:d8:e9:81:1a:d9:9e:af:
7f:ac:72:a4:70:17:6f:4a:2f:cb:d2:90:fe:9a:d2:
9a:c4:c6:8a:e0:44:6c:d2:f9:36:d0:83:9c:fb:28:
08:05:a5:6d:10:f9:a5:3e:fa:02:71:cd:20:11:3b:
c6:dd:db:43:f8:0b:a8:c3:8e:23:38:33:6b:28:3f:
5d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BE:60:55:2B:21:0D:6B:97:A9:06:FF:1D:25:0F:2C:BA:5A:69:88
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Qr5gVSshDWuXqQb_HSUPLLpaaYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.178.0/24
94.103.189.0/24
94.103.191.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e6:d1:8c:e7:ee:ff:7f:dc:9b:f6:14:82:16:65:61:c8:bc:
06:e3:a8:42:79:31:94:cb:aa:5d:00:95:d4:cf:34:21:93:f7:
cf:43:8d:fd:e4:ff:c9:cc:c3:2b:a9:4d:6f:ae:f9:6c:05:54:
60:fb:a8:da:64:5e:c3:53:a5:f6:f3:1b:bb:5c:83:8d:d5:3e:
bb:06:6e:19:3c:d8:04:b4:70:59:87:25:6d:e9:f1:df:ab:d1:
7e:3a:d9:07:34:1c:0d:00:fe:71:84:f1:81:c0:ef:ee:01:2c:
08:ef:89:87:e5:1a:be:ca:ce:a8:5e:f4:87:0d:05:34:e5:ac:
70:ab:46:f6:0e:60:ca:dd:a3:69:83:02:fa:af:4c:55:06:2d:
73:49:34:0e:57:11:1a:27:9e:04:df:16:a4:a8:ce:39:f1:22:
c0:69:bc:2b:da:a7:e6:2d:02:34:44:cc:4d:c4:78:e6:79:00:
c1:2b:0f:f8:41:aa:27:20:0d:b5:d5:ca:16:ae:fd:94:c6:35:
0c:69:08:46:63:2e:ed:96:ec:cd:5c:c1:51:c5:8e:73:20:d4:
c8:7e:6a:37:ca:4e:e0:59:2c:35:c2:d2:cc:13:bd:6d:18:64:
17:9e:ac:f1:28:f6:2a:97:27:6a:d6:99:1b:30:44:83:b5:a4:
4f:85:45:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:02:48 2024 by rpki-client on console-fra.rpki-client.org