Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/Yr0mXihiGEr4lvAQMjAAwKMFaFE.roa
File: Yr0mXihiGEr4lvAQMjAAwKMFaFE.roa (raw, json)
Hash identifier: n36VABd3L6VUn/VOFphwSNeq2FZcUu2ftl6O5n6SAXE=
Subject key identifier: 62:BD:26:5E:28:62:18:4A:F8:96:F0:10:32:30:00:C0:A3:05:68:51
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 0191037D89D52E85E33A343F71EF883DC97B
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/Yr0mXihiGEr4lvAQMjAAwKMFaFE.roa
Signing time: Tue 30 Jul 2024 11:54:04 +0000
ROA not before: Tue 30 Jul 2024 11:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47376
IP address blocks: 46.148.38.0/24 maxlen: 24
46.148.41.0/24 maxlen: 24
46.148.43.0/24 maxlen: 24
46.148.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:03:7d:89:d5:2e:85:e3:3a:34:3f:71:ef:88:3d:c9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Jul 30 11:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62bd265e2862184af896f010323000c0a3056851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a1:c0:1b:70:35:48:8a:c1:6f:a9:ed:c8:d5:
0d:34:44:c6:ef:08:01:eb:76:9e:a5:92:f8:3e:ab:
c2:dc:c4:b9:27:81:9e:1b:7e:2f:e2:d5:b4:3c:db:
64:f0:8c:bd:e2:7d:de:b8:1f:ea:f4:41:22:74:aa:
a2:bf:0d:71:25:4e:d9:ef:27:86:17:b4:86:19:39:
40:7c:2c:22:d1:49:4d:f1:f2:ed:2f:f9:b9:58:ec:
20:7e:06:37:51:56:26:f4:41:7c:42:3d:5a:a7:c9:
e1:3e:d5:9f:a5:6e:2e:d9:97:d0:20:6a:a5:95:01:
48:5b:00:88:16:92:fe:48:4c:88:6d:62:7b:d0:f4:
f4:de:6b:77:6e:69:23:45:38:16:53:1c:19:8b:99:
bf:c5:00:7c:44:d0:75:f7:96:b0:71:30:d2:99:97:
24:d8:c0:06:53:1d:31:af:9e:76:7c:08:9f:ef:98:
81:e0:27:d2:25:43:de:55:6d:e5:e0:0c:f4:b8:f9:
24:8d:68:90:78:a2:64:73:c6:77:02:16:16:89:8e:
a7:f9:75:79:00:75:17:a0:99:6d:26:a3:f8:05:76:
89:04:f7:c7:42:e6:26:0a:38:0c:3e:a5:d6:83:41:
74:91:05:56:bf:71:0b:94:b9:4f:1e:cd:aa:ed:48:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BD:26:5E:28:62:18:4A:F8:96:F0:10:32:30:00:C0:A3:05:68:51
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/Yr0mXihiGEr4lvAQMjAAwKMFaFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.38.0/24
46.148.41.0/24
46.148.43.0-46.148.44.255
Signature Algorithm: sha256WithRSAEncryption
80:03:ad:e4:7b:f5:c2:ce:ed:92:2a:ae:65:e2:55:be:ed:93:
98:2f:a2:fc:ea:4d:fe:21:8b:d0:36:3b:ef:e0:bc:1e:a8:a0:
ac:aa:76:b2:3a:9e:3f:80:67:d4:64:58:e6:0e:a6:5d:32:0e:
c9:02:26:fd:8d:6f:21:69:ac:a6:b0:48:83:69:c3:ca:17:ca:
a6:ba:13:6e:ef:f0:19:c3:86:3a:cf:86:e6:6d:37:69:2d:71:
73:91:88:66:e1:b9:59:66:44:ff:e5:e9:67:58:68:db:7c:49:
b2:a8:50:f8:42:6c:85:ce:53:5d:c7:7b:13:bf:24:31:f0:1e:
b9:92:b6:7c:72:65:0f:d9:6e:9f:a8:1a:6c:97:e8:20:d5:b6:
5d:9b:35:aa:d5:b4:f5:73:1f:8c:f5:b4:59:ae:57:e6:08:a3:
f5:c7:b8:f9:3b:57:8f:b9:e2:b3:fa:55:09:80:7f:c9:80:c3:
24:f0:33:e8:6e:b9:bc:94:43:98:61:62:af:f0:b0:64:6f:aa:
df:60:3e:82:d9:d4:8c:74:6b:bc:f6:fc:7e:60:3a:af:de:7d:
bc:ce:61:b4:e9:5b:43:4d:ce:ea:d1:28:b4:d7:b3:af:e1:06:
87:c0:9f:bd:4b:54:6e:a7:27:73:dc:58:f6:4b:e2:af:ef:bb:
b6:23:c1:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:44:27 2024 by rpki-client on console-fra.rpki-client.org