Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/LX6pKVJ_4Bq-HbHzP3zezb6G84c.roa
File: LX6pKVJ_4Bq-HbHzP3zezb6G84c.roa (raw, json)
Hash identifier: TTwQflZWxs/Q5UypIaAn3DkI+5zdN3YIitIKau96cBg=
Subject key identifier: 2D:7E:A9:29:52:7F:E0:1A:BE:1D:B1:F3:3F:7C:DE:CD:BE:86:F3:87
Certificate issuer: /CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Certificate serial: 018CC5008F78AB920703C3CAE0964B2703A4
Authority key identifier: 52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/LX6pKVJ_4Bq-HbHzP3zezb6G84c.roa
Signing time: Mon 01 Jan 2024 12:29:57 +0000
ROA not before: Mon 01 Jan 2024 12:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200418
IP address blocks: 185.107.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 03:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:8f:78:ab:92:07:03:c3:ca:e0:96:4b:27:03:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Validity
Not Before: Jan 1 12:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d7ea929527fe01abe1db1f33f7cdecdbe86f387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:79:4b:33:a3:55:a5:15:2a:4d:e7:b3:52:15:
b5:0c:27:c6:27:6c:19:49:3c:c2:0a:27:4f:fe:c0:
62:68:c3:7b:e5:38:94:4f:40:35:2c:e4:0a:38:fb:
03:7a:d7:90:ea:50:07:99:ce:df:41:06:cf:5f:04:
16:5f:c4:ba:3e:09:63:5d:b2:64:c1:9e:8a:8b:0c:
26:5e:24:a8:a6:b8:86:19:09:8b:ae:4c:27:70:bc:
f2:84:5b:a6:7f:be:7b:8b:fb:af:71:31:fe:5f:7a:
1e:68:32:2a:73:dc:fa:88:4a:5f:72:3d:ef:0d:e7:
24:99:9a:dc:9f:69:11:bf:bc:47:88:5d:5a:fd:de:
6f:ca:58:7a:20:b8:ca:95:d4:c6:89:c7:d1:4e:0b:
37:8f:e5:25:21:4c:0b:90:46:a9:94:42:96:88:96:
a6:99:05:57:49:e4:f6:f1:ad:ad:94:a1:9b:3c:7c:
8a:81:50:e2:4a:71:56:42:ff:93:3c:a0:ea:3e:45:
b0:40:ac:b8:5f:c5:74:33:0f:aa:f7:67:4c:5f:96:
46:f6:8a:23:a3:a1:e0:a0:c5:b7:61:49:2b:75:64:
43:ee:33:c0:71:84:39:5c:a0:47:37:07:7a:77:9d:
bc:87:45:2e:25:23:0e:c4:5c:13:c0:a4:18:d9:3e:
c9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7E:A9:29:52:7F:E0:1A:BE:1D:B1:F3:3F:7C:DE:CD:BE:86:F3:87
X509v3 Authority Key Identifier:
keyid:52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/LX6pKVJ_4Bq-HbHzP3zezb6G84c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.228.0/22
Signature Algorithm: sha256WithRSAEncryption
17:8c:26:e0:ec:09:69:87:97:5c:bf:8f:73:b4:1d:b4:e6:4c:
e9:02:d9:6d:b6:78:68:ed:45:28:65:b1:af:f1:33:3b:4d:39:
c8:2d:fe:da:57:0b:c1:97:ec:96:7e:be:20:0e:23:d1:f5:0e:
4d:bd:27:04:95:ef:cd:e5:6a:c5:0d:23:7d:09:f3:0e:7e:bc:
81:4f:e4:24:4d:b3:7a:73:57:55:45:c6:0c:b3:09:61:28:cc:
19:63:56:79:ad:a9:fe:1b:3f:e3:a8:a0:f3:53:c8:66:94:0e:
7d:07:2e:ff:8d:20:2a:28:1a:46:e4:4e:39:83:63:8b:8e:3d:
d3:af:77:69:83:16:0b:92:09:09:4b:f0:ee:04:39:06:87:e7:
7a:c3:5a:d6:88:4e:c0:d8:2b:78:ae:9c:db:41:91:af:e2:70:
e7:c1:69:da:9e:00:40:79:7d:f0:15:f4:bd:4d:8d:9a:46:9d:
e5:24:7b:3f:3a:e5:0b:9e:66:41:65:47:03:2f:7a:51:6c:3f:
82:d4:81:6d:19:5d:89:bf:b2:0e:e1:35:10:4a:2c:62:e7:1a:
05:7c:5a:a2:91:23:3a:b4:71:70:69:c0:69:66:82:16:8a:23:
4d:18:e2:ad:b1:11:97:07:1b:eb:cb:41:c6:67:05:96:54:b5:
79:13:24:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 11:42:41 2024 by rpki-client on console-fra.rpki-client.org