Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/q_Mk64ahfgc9QiV_nZ9SCyzM3l4.roa
File: q_Mk64ahfgc9QiV_nZ9SCyzM3l4.roa (raw, json)
Hash identifier: VhA1M00q78gPKOjjf8Bh77YL8fx2vYpL4ermpg+n66w=
Subject key identifier: AB:F3:24:EB:86:A1:7E:07:3D:42:25:7F:9D:9F:52:0B:2C:CC:DE:5E
Certificate issuer: /CN=2906f026b1fe636c9a5da011dc7fd69c581d02b8
Certificate serial: 018CC2DAB7C2DDCAC96F4425AF7B70FC3E4D
Authority key identifier: 29:06:F0:26:B1:FE:63:6C:9A:5D:A0:11:DC:7F:D6:9C:58:1D:02:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQbwJrH-Y2yaXaAR3H_WnFgdArg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/q_Mk64ahfgc9QiV_nZ9SCyzM3l4.roa
Signing time: Mon 01 Jan 2024 02:29:22 +0000
ROA not before: Mon 01 Jan 2024 02:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7262
IP address blocks: 185.152.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/KQbwJrH-Y2yaXaAR3H_WnFgdArg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/KQbwJrH-Y2yaXaAR3H_WnFgdArg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQbwJrH-Y2yaXaAR3H_WnFgdArg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:b7:c2:dd:ca:c9:6f:44:25:af:7b:70:fc:3e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2906f026b1fe636c9a5da011dc7fd69c581d02b8
Validity
Not Before: Jan 1 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abf324eb86a17e073d42257f9d9f520b2cccde5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b7:15:24:15:36:4a:a2:f2:48:f8:d9:fa:2d:
a4:e5:1e:81:e2:93:2a:0c:c1:6c:1e:96:3d:82:9c:
3b:c2:3a:2a:fe:0f:63:33:2e:b1:a1:75:ef:47:27:
d8:25:1c:19:80:98:1d:17:17:a6:28:6b:8c:88:0a:
e0:b2:0c:59:55:08:c3:1e:41:73:a7:2d:67:db:cb:
2b:91:2f:78:d0:a7:02:0b:cd:a3:da:6d:fb:86:15:
47:0a:24:62:f7:99:1f:5a:a2:87:ee:19:ba:f1:85:
56:26:fc:1d:51:b5:83:3c:67:c3:72:ea:ae:68:fb:
8b:8a:d5:35:14:a8:9a:fb:5f:48:87:00:bc:1b:57:
19:6b:1d:97:12:e1:89:70:a0:a7:88:6e:37:92:24:
67:53:f8:39:cf:aa:fe:d2:9f:4d:f3:86:06:ab:31:
18:91:0a:00:bb:ea:c5:bb:f0:57:04:7c:e1:29:14:
40:f3:b6:d1:cd:f9:bd:66:f8:70:78:25:eb:be:be:
61:4f:87:e7:70:d2:b2:15:aa:a2:82:6b:29:a6:71:
23:67:04:1d:1b:0f:17:a1:c3:cd:84:ab:6b:40:88:
92:db:95:b0:65:90:eb:78:58:1b:a5:39:fa:3e:15:
07:34:5d:f4:4b:f6:07:dc:67:cf:34:21:a9:ba:0e:
bb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F3:24:EB:86:A1:7E:07:3D:42:25:7F:9D:9F:52:0B:2C:CC:DE:5E
X509v3 Authority Key Identifier:
keyid:29:06:F0:26:B1:FE:63:6C:9A:5D:A0:11:DC:7F:D6:9C:58:1D:02:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQbwJrH-Y2yaXaAR3H_WnFgdArg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/q_Mk64ahfgc9QiV_nZ9SCyzM3l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/KQbwJrH-Y2yaXaAR3H_WnFgdArg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.51.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:db:69:1d:db:8d:a5:56:b6:10:d4:7a:2e:ab:ca:9f:c2:f6:
af:a5:f6:f6:74:5b:1a:7b:6a:08:45:5e:9c:11:91:51:bd:aa:
5f:5e:59:98:eb:c2:a5:92:92:7c:f2:31:27:3f:a5:63:6d:bd:
e3:8f:fa:e1:fe:ec:b6:5a:7c:d1:fa:cd:bc:ca:cd:62:f8:07:
85:59:0b:f5:3e:7c:b9:49:74:d5:32:87:4c:cc:11:3d:2b:13:
ad:87:77:ca:44:36:85:72:fa:44:4b:73:5b:61:62:db:9a:82:
ba:d0:da:c0:62:be:e8:dc:ed:a9:4a:8b:bb:ba:4f:32:25:1b:
3a:76:26:a1:9b:ef:b9:21:58:a4:38:93:12:46:ee:cd:27:e3:
1b:90:13:04:72:08:c4:4b:fb:0c:cd:03:96:86:64:a0:a8:5c:
37:74:0e:5b:ee:87:64:a7:c0:9e:53:f5:6a:a3:d3:01:5b:ea:
e4:26:05:ca:e7:16:97:ec:3b:01:46:a6:d6:98:8c:39:92:00:
b7:d0:1f:38:81:bd:f1:b7:a4:23:de:7c:85:0c:c0:ff:b7:1d:
3b:c6:0d:90:7e:4f:c5:b0:28:b6:e6:1c:b6:10:72:90:5c:47:
40:18:d4:9f:99:e6:01:da:ea:39:88:ae:98:1a:48:90:43:5a:
e3:40:90:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:50:39 2024 by rpki-client on console-fra.rpki-client.org