Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/fCFduHFA4_2t3p3XS0-kh5J-7Ug.roa
File: fCFduHFA4_2t3p3XS0-kh5J-7Ug.roa (raw, json)
Hash identifier: oAy2ikTIrbFnjYsBKSDrdwRUsAY958T0TPlpB0k54iY=
Subject key identifier: 7C:21:5D:B8:71:40:E3:FD:AD:DE:9D:D7:4B:4F:A4:87:92:7E:ED:48
Certificate issuer: /CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Certificate serial: 019096572ED4C7C82C706CF72D079F63947E
Authority key identifier: C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/fCFduHFA4_2t3p3XS0-kh5J-7Ug.roa
Signing time: Tue 09 Jul 2024 07:13:34 +0000
ROA not before: Tue 09 Jul 2024 07:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211804
IP address blocks: 185.250.240.0/24 maxlen: 24
185.250.241.0/24 maxlen: 24
185.250.242.0/24 maxlen: 24
185.250.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:57:2e:d4:c7:c8:2c:70:6c:f7:2d:07:9f:63:94:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2ac1d7c9eccf5658b88f16f613d7b3e8e8c72
Validity
Not Before: Jul 9 07:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c215db87140e3fdadde9dd74b4fa487927eed48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3d:15:f3:94:b4:b2:af:57:f0:8e:ac:cc:a8:
92:a6:00:32:e1:01:33:60:77:aa:e8:de:6c:76:d0:
ce:16:20:f5:f1:88:e7:b4:cc:6d:0d:7b:cf:b1:23:
9b:f1:2f:d4:83:40:59:a5:23:ad:57:15:f2:f5:10:
c1:3c:60:91:67:c3:d3:2a:1e:13:f3:6c:1c:8b:de:
3a:ad:9f:2a:d0:6a:a8:61:1c:69:91:7b:6b:3b:ec:
19:d0:9b:d7:36:9c:90:28:4b:fe:ad:d1:d0:74:6f:
b0:b6:46:0a:2a:42:dd:ae:00:7e:ff:89:8a:57:c9:
09:99:1a:6f:e9:99:b0:d3:6d:cd:e9:27:96:91:89:
fa:c7:ca:67:81:17:d5:3c:ab:ed:dc:12:bd:0d:18:
ee:8e:82:73:8d:c7:75:86:7d:05:46:51:c4:79:e2:
92:85:19:24:c9:68:87:0c:6e:ed:cd:59:6b:df:6b:
ae:c2:76:ec:80:de:f1:ad:e4:52:6c:82:94:c1:52:
34:11:30:33:7e:a1:e0:ce:d0:b3:58:0b:91:52:d6:
5c:d8:48:50:2f:c0:63:44:f4:00:23:2e:e8:a8:a9:
1e:1a:dd:5b:1c:ca:d8:47:bd:7e:bd:16:ef:0e:8b:
61:bf:86:a2:db:b9:8e:19:ae:54:43:da:4b:02:12:
c6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:21:5D:B8:71:40:E3:FD:AD:DE:9D:D7:4B:4F:A4:87:92:7E:ED:48
X509v3 Authority Key Identifier:
keyid:C2:D2:AC:1D:7C:9E:CC:F5:65:8B:88:F1:6F:61:3D:7B:3E:8E:8C:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKsHXyezPVli4jxb2E9ez6OjHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/fCFduHFA4_2t3p3XS0-kh5J-7Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8b1bc2-5926-4ace-b16f-197fe8365643/1/wtKsHXyezPVli4jxb2E9ez6OjHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.240.0/22
Signature Algorithm: sha256WithRSAEncryption
38:38:07:e0:8a:6f:02:50:3d:7b:c6:a0:70:7e:06:a9:aa:0f:
a1:8b:15:ff:c6:44:c5:3a:e9:1a:1d:b4:f2:a2:28:1f:94:29:
8d:90:9a:00:a7:13:51:0b:16:48:8b:c2:d1:76:8b:75:ab:33:
66:46:85:be:07:c6:5f:12:e6:4a:7c:ed:4d:04:0e:4d:2b:38:
72:ac:86:8d:ac:59:b5:64:a9:91:44:f5:02:03:17:82:c1:95:
fa:3b:40:40:74:53:11:14:1a:90:1d:af:f8:19:40:88:45:e2:
af:3e:41:0b:81:af:71:a8:45:93:a6:0c:db:5b:c1:ff:4a:6e:
55:51:1a:be:6e:38:35:a2:35:c2:71:d4:0a:e2:c1:c7:19:b0:
8e:ec:8c:45:b3:ea:b9:ba:34:8e:51:7c:2c:c3:21:bf:15:9e:
87:30:ca:4d:d5:ed:b2:2b:0c:89:d5:46:a4:db:00:df:7b:a1:
fb:7e:68:05:08:b7:ca:dc:ef:f3:08:10:e1:42:28:6c:ff:4f:
62:f4:0e:53:25:2c:79:ba:d6:02:87:68:03:56:f1:9c:0e:e2:
ec:03:a6:d9:b8:d5:5f:be:21:7a:ef:00:7a:e9:2f:24:f0:d9:
e0:77:48:d1:c3:59:c7:7d:e0:9a:80:1f:f9:f1:9c:39:78:70:
c6:09:a9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:03:49 2024 by rpki-client on console-ams.rpki-client.org