Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/KVTY5YxplC72XIM9Mv_uPz7ewxo.roa
File: KVTY5YxplC72XIM9Mv_uPz7ewxo.roa (raw, json)
Hash identifier: j4a5/muxU38T3u/Vebu3/9QJIRxvmBO2fR27RHOYEzo=
Subject key identifier: 29:54:D8:E5:8C:69:94:2E:F6:5C:83:3D:32:FF:EE:3F:3E:DE:C3:1A
Certificate issuer: /CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Certificate serial: 0192A191249C001C834FF50B59524438B36D
Authority key identifier: 45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/KVTY5YxplC72XIM9Mv_uPz7ewxo.roa
Signing time: Fri 18 Oct 2024 21:38:16 +0000
ROA not before: Fri 18 Oct 2024 21:38:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201863
IP address blocks: 185.225.164.0/24 maxlen: 24
185.225.165.0/24 maxlen: 24
185.225.166.0/24 maxlen: 24
185.225.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/RUv1gRnP6Z8XSbzZvRJHArqctxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/RUv1gRnP6Z8XSbzZvRJHArqctxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a1:91:24:9c:00:1c:83:4f:f5:0b:59:52:44:38:b3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Validity
Not Before: Oct 18 21:38:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2954d8e58c69942ef65c833d32ffee3f3edec31a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e7:de:a6:eb:d6:bb:40:23:8d:46:83:a4:9f:
9a:08:d9:a3:0a:e2:cd:0e:1f:a3:88:48:66:28:58:
6c:f1:f3:a6:be:72:38:f0:14:5e:8f:67:53:9b:0b:
db:77:53:ba:2f:5f:7a:d4:a1:f2:af:93:ad:28:0d:
3a:73:7e:e5:71:d2:8b:88:06:f0:78:21:e4:5a:dc:
5e:7d:4c:33:b6:d7:76:a8:96:70:a1:0e:8b:8e:5e:
e3:f8:a7:10:fb:22:bd:7e:50:12:f1:dd:9c:53:71:
f8:ec:2f:2e:fd:81:0b:ab:16:35:c7:e3:13:4d:df:
4f:bd:d8:df:4c:ff:7c:23:ba:4e:41:36:79:58:87:
d1:d6:ec:d3:fd:d2:ae:a8:e6:5d:f6:9f:eb:2a:66:
e1:f2:60:e0:e7:0d:2f:67:73:ce:55:58:89:0a:43:
6b:30:98:db:d1:bc:cf:a1:ff:ed:22:7a:a6:2d:3e:
f1:e2:4d:02:7e:76:46:90:ec:4e:4b:87:a8:d9:97:
75:be:3f:5a:6c:cf:2c:7b:1c:a3:9a:15:94:a2:80:
01:d8:02:fb:de:5f:6e:da:88:0c:29:da:e1:80:a4:
14:62:95:19:7a:bc:45:32:35:eb:05:56:11:2e:24:
67:8b:d6:2d:bf:9e:c8:43:6c:eb:d7:9e:0e:94:4b:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:54:D8:E5:8C:69:94:2E:F6:5C:83:3D:32:FF:EE:3F:3E:DE:C3:1A
X509v3 Authority Key Identifier:
keyid:45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/KVTY5YxplC72XIM9Mv_uPz7ewxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/RUv1gRnP6Z8XSbzZvRJHArqctxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.164.0/22
Signature Algorithm: sha256WithRSAEncryption
80:e8:8f:da:84:b0:99:d8:b4:b3:6c:eb:8a:46:a8:09:c7:22:
bf:4f:31:6d:a0:d9:22:28:a3:52:b3:8c:e2:b5:77:ab:1e:71:
c1:62:78:86:2b:65:b9:6e:b3:fb:a6:d5:5c:d6:08:ef:dc:00:
59:bb:b8:48:34:b0:de:c6:33:4e:e8:ad:c4:58:78:f6:e2:67:
ed:c0:34:e9:0e:bd:a2:f6:7a:32:95:f5:de:9c:d9:6a:aa:f3:
40:13:bb:24:0a:9e:31:8f:f7:1a:7f:ef:d5:9a:1c:36:1c:ae:
76:87:d6:c3:8a:c8:0f:cb:4b:7e:b6:77:dc:1b:bd:ff:b5:2f:
86:a4:b7:b8:46:67:0f:35:93:3f:4b:a1:c7:50:ed:60:d7:46:
f2:14:0a:eb:15:80:b8:d2:54:05:22:6b:e0:da:12:1c:43:b5:
f9:83:88:72:56:3e:32:fe:c3:94:19:81:de:00:44:49:62:ad:
cf:e5:98:ef:ce:d3:cf:94:07:33:cb:76:7e:a7:36:a3:7d:c5:
e1:3b:ca:53:bb:bd:4a:5d:13:02:4c:ef:fd:5d:0c:ff:cc:dc:
48:9e:1d:f2:8c:93:d5:ab:db:58:47:6d:af:37:c1:7f:ec:5c:
84:d5:cb:8b:69:51:45:42:48:3e:9f:02:b1:dc:cb:e1:31:dc:
e2:89:79:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:41:36 2024 by rpki-client on console-ams.rpki-client.org