Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/bVeymKLxtpELbJ8sJ4B3QOpDJAU.roa
File: bVeymKLxtpELbJ8sJ4B3QOpDJAU.roa (raw, json)
Hash identifier: I6/f08wZJ2Mcp70358zp2AApgcrdcL7XiUXplHO7LPk=
Subject key identifier: 6D:57:B2:98:A2:F1:B6:91:0B:6C:9F:2C:27:80:77:40:EA:43:24:05
Certificate issuer: /CN=b4e576a0fd748c899e64d5fbf5fd7388c68ee044
Certificate serial: 018CC6499F3C9CD687DD49616C64FC178C5F
Authority key identifier: B4:E5:76:A0:FD:74:8C:89:9E:64:D5:FB:F5:FD:73:88:C6:8E:E0:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOV2oP10jImeZNX79f1ziMaO4EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/bVeymKLxtpELbJ8sJ4B3QOpDJAU.roa
Signing time: Mon 01 Jan 2024 18:29:22 +0000
ROA not before: Mon 01 Jan 2024 18:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202681
IP address blocks: 185.153.57.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/tOV2oP10jImeZNX79f1ziMaO4EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/tOV2oP10jImeZNX79f1ziMaO4EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tOV2oP10jImeZNX79f1ziMaO4EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:9f:3c:9c:d6:87:dd:49:61:6c:64:fc:17:8c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e576a0fd748c899e64d5fbf5fd7388c68ee044
Validity
Not Before: Jan 1 18:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d57b298a2f1b6910b6c9f2c27807740ea432405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:9f:9c:fd:b4:6d:eb:42:b2:06:c1:a9:2d:
0e:4c:6a:c7:9c:e5:14:23:19:2a:d4:73:ec:b1:8b:
c8:f2:50:54:f9:cb:01:a4:11:54:68:4c:63:6f:23:
0c:04:a3:59:04:61:e7:20:fb:45:ef:d4:7c:b9:a1:
b9:ce:3a:38:c1:de:49:67:0d:38:ac:b0:8b:9a:80:
3a:86:60:eb:c0:0e:5d:6a:b1:a2:79:06:a5:5d:74:
49:c1:09:57:2f:4e:92:a2:23:30:78:03:5f:db:1e:
56:54:07:16:51:3f:5f:53:ae:1f:ba:40:21:75:ad:
85:e9:8f:92:de:91:49:b0:7a:79:21:06:55:12:42:
f7:19:45:6d:d5:c8:37:8f:0e:d3:5f:9d:49:2b:d0:
51:9a:35:2d:bf:83:ca:61:4d:ae:1f:63:37:0e:80:
a7:fd:7d:a4:2e:a4:58:5c:cc:92:3b:ba:3a:38:40:
3b:a0:87:99:a1:28:6a:c7:3a:b4:b3:4e:32:43:39:
60:f1:e0:50:52:bb:de:07:a8:14:27:87:7d:d7:58:
b4:fc:4e:9c:93:25:8c:83:9d:a9:7b:7d:b2:5f:97:
39:83:ee:d1:c2:20:37:de:62:00:7c:57:78:d0:39:
9d:03:a1:41:81:6e:c6:2d:d8:55:bd:bd:45:39:b7:
83:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:57:B2:98:A2:F1:B6:91:0B:6C:9F:2C:27:80:77:40:EA:43:24:05
X509v3 Authority Key Identifier:
keyid:B4:E5:76:A0:FD:74:8C:89:9E:64:D5:FB:F5:FD:73:88:C6:8E:E0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOV2oP10jImeZNX79f1ziMaO4EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/bVeymKLxtpELbJ8sJ4B3QOpDJAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/tOV2oP10jImeZNX79f1ziMaO4EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.57.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a9:b2:a0:ea:58:11:68:f5:b5:e9:cb:b3:bc:63:ae:0f:a8:
b6:5f:dc:77:14:e5:5d:05:b0:ab:04:b0:c1:f1:eb:e4:58:6d:
47:a9:31:b6:8a:d1:2f:1a:b2:99:b6:7b:86:c7:df:bf:ec:f3:
54:99:12:65:0c:e6:4a:99:9d:db:6c:10:ae:78:5d:fd:0c:36:
e1:08:42:ca:92:9f:a2:95:22:4f:b9:d4:01:88:d1:5b:a7:bf:
7a:f7:75:d9:8c:b4:9c:40:4d:be:ce:1b:53:01:fb:c8:56:39:
48:ee:34:b4:b2:02:6a:79:24:9c:1b:d0:1f:50:7d:4e:06:78:
52:65:9f:2a:46:3c:8a:6c:00:e0:1e:f5:6a:c5:f0:8e:d9:ed:
ea:3b:ea:18:5b:5f:df:9a:f4:f4:12:af:2f:f9:8b:1a:f4:8b:
00:d2:a6:51:77:ff:b3:e9:a8:da:39:4b:aa:59:e1:4f:3d:8f:
56:b7:d6:78:d1:35:9d:01:23:ee:0d:94:af:08:10:8a:41:19:
1a:ce:4e:bf:1a:6b:23:6a:af:3a:56:5e:c8:5e:fe:aa:60:8d:
c8:0d:73:b8:8b:f1:e5:e1:c2:60:37:a4:90:4e:8a:d0:3d:70:
0a:b6:e3:81:0d:f7:bc:1d:3f:06:bf:bf:1f:c0:9f:df:47:d7:
f7:05:69:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:11:16 2024 by rpki-client on console-fra.rpki-client.org