Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VE2xj0Adbx16cnx7LuKMcq0_M-Q.roa
File: VE2xj0Adbx16cnx7LuKMcq0_M-Q.roa (raw, json)
Hash identifier: GJ9ejFiQXuvGv1Eolcr5sg+Sc0lorqGcXEoBdaZYo8s=
Subject key identifier: 54:4D:B1:8F:40:1D:6F:1D:7A:72:7C:7B:2E:E2:8C:72:AD:3F:33:E4
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019299AAC02222132E5CAFABB07356ECEC03
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VE2xj0Adbx16cnx7LuKMcq0_M-Q.roa
Signing time: Thu 17 Oct 2024 08:49:17 +0000
ROA not before: Thu 17 Oct 2024 08:49:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212219
IP address blocks: 31.210.36.0/24 maxlen: 24
78.135.85.0/24 maxlen: 24
188.132.197.0/24 maxlen: 24
188.132.198.0/24 maxlen: 24
212.68.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:99:aa:c0:22:22:13:2e:5c:af:ab:b0:73:56:ec:ec:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 17 08:49:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=544db18f401d6f1d7a727c7b2ee28c72ad3f33e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:00:b9:21:db:01:2e:2e:00:70:19:64:64:87:
32:de:fa:8e:1d:fc:20:d7:a7:3f:58:33:eb:0a:6b:
c4:27:c8:77:7f:2c:32:4f:a4:f5:79:0a:39:db:44:
22:eb:c6:7a:61:74:e1:62:9f:b9:43:78:7f:a0:0a:
d5:f8:d3:61:de:20:27:16:bd:10:95:73:93:53:ed:
9f:a6:87:d8:73:dd:e0:bb:6b:d6:6f:75:c6:30:f9:
f3:8b:9f:20:f7:30:17:9b:43:f0:25:e5:00:4f:18:
d8:c1:08:06:18:b5:a1:1e:46:3b:c0:d2:70:6e:bb:
f8:81:20:91:db:c4:c8:06:c5:b1:52:3a:45:da:50:
4f:73:c0:52:c1:a8:31:c3:28:d7:89:47:27:5c:eb:
85:8f:86:06:21:8b:08:22:c9:b0:20:d5:8c:5b:1b:
bd:15:29:22:6b:9b:f9:6f:e6:1a:16:af:e3:79:43:
f6:08:e3:80:eb:0a:04:97:af:fa:43:53:d2:f8:fd:
d3:dd:b4:f0:76:0f:45:9a:8c:f0:cb:d4:4e:b3:d7:
d9:90:f7:24:b9:f9:a4:f4:55:f0:9c:e2:29:c5:0e:
a1:42:df:e7:9c:76:b3:48:5f:1d:f2:43:54:bf:cd:
9e:3d:7c:c8:be:8b:aa:3f:13:de:d3:6c:18:f6:93:
2c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4D:B1:8F:40:1D:6F:1D:7A:72:7C:7B:2E:E2:8C:72:AD:3F:33:E4
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/VE2xj0Adbx16cnx7LuKMcq0_M-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.36.0/24
78.135.85.0/24
188.132.197.0-188.132.198.255
212.68.34.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:e3:62:3f:dd:3d:97:e6:72:ed:e9:28:bc:7a:75:c0:2a:f9:
73:53:d0:52:ec:d5:72:ce:9b:23:73:a5:ff:d9:6c:25:a6:34:
a6:c8:d1:2b:e6:22:01:93:f5:7f:4e:38:9e:df:6a:97:e4:40:
86:0d:49:17:c0:13:7e:66:a0:c9:8a:44:a2:ec:af:5a:4c:21:
a9:7a:67:64:33:a1:cc:16:b9:8c:8a:27:31:5c:ec:33:32:fe:
54:3a:7d:96:49:aa:27:75:89:b5:72:b9:38:97:80:3b:47:d4:
fd:88:94:27:37:ef:0a:14:97:ef:18:5e:27:19:92:dc:1a:d8:
ec:1e:86:c7:ae:db:e1:ae:c8:b7:2c:45:68:3b:ba:1d:b7:bc:
66:62:55:60:0f:e0:37:65:a7:94:17:91:5b:92:fa:39:44:16:
8e:17:c6:09:51:e6:a4:bf:35:13:eb:9a:bc:73:85:9c:80:52:
df:8e:46:e5:8f:22:ca:4d:84:de:f1:3e:9f:23:d7:7b:94:dd:
12:24:ea:8c:dc:0f:43:9b:35:e1:4c:c2:82:cd:b7:ad:19:85:
97:f0:f2:e1:5e:5b:e1:ff:61:55:50:a4:d2:e8:cd:19:53:ff:
fe:e6:d3:f8:95:fe:13:d4:27:ff:cc:9f:89:a1:d8:e8:41:58:
2f:d4:52:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:29:51 2024 by rpki-client on console-ams.rpki-client.org