Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/dpdaviLdeBEn4Up97gedIEDjnhg.roa
File: dpdaviLdeBEn4Up97gedIEDjnhg.roa (raw, json)
Hash identifier: yeoMVX7uRaruIz1QLG4YY2YpD9H9MMR9CjzQBIptflA=
Subject key identifier: 76:97:5A:BE:22:DD:78:11:27:E1:4A:7D:EE:07:9D:20:40:E3:9E:18
Certificate issuer: /CN=54f87b5a62c1ff0f522812e9add1756bc73384c5
Certificate serial: 018CC26CF2C7AA4E534C5D75C6FFB41B1D4D
Authority key identifier: 54:F8:7B:5A:62:C1:FF:0F:52:28:12:E9:AD:D1:75:6B:C7:33:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VPh7WmLB_w9SKBLprdF1a8czhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/dpdaviLdeBEn4Up97gedIEDjnhg.roa
Signing time: Mon 01 Jan 2024 00:29:29 +0000
ROA not before: Mon 01 Jan 2024 00:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47372
IP address blocks: 185.192.168.0/22 maxlen: 32
93.191.160.0/21 maxlen: 32
2a06:5d00::/30 maxlen: 48
2a06:5d04::/31 maxlen: 48
2a06:5d00::/29 maxlen: 48
2a06:5d06::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/VPh7WmLB_w9SKBLprdF1a8czhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/VPh7WmLB_w9SKBLprdF1a8czhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/VPh7WmLB_w9SKBLprdF1a8czhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f2:c7:aa:4e:53:4c:5d:75:c6:ff:b4:1b:1d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54f87b5a62c1ff0f522812e9add1756bc73384c5
Validity
Not Before: Jan 1 00:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76975abe22dd781127e14a7dee079d2040e39e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:54:07:fe:22:d4:29:65:94:f2:26:63:f5:17:
e5:f3:a1:e5:68:8b:7e:a5:36:c4:26:2d:a1:88:b0:
7b:08:66:b9:e5:47:01:bb:48:16:3d:be:ec:93:a1:
af:8c:de:8c:68:8f:35:6f:e6:1c:ee:af:0b:29:c9:
4d:c0:32:c3:46:11:83:4d:11:c8:0e:99:2d:21:2e:
95:11:3f:04:c7:f0:8c:4a:b4:be:f3:80:a8:f7:52:
b1:21:1e:3f:0a:a2:26:89:35:ee:6b:e5:c3:d9:08:
53:57:19:14:ad:2f:ec:12:bb:93:4b:dc:1a:83:34:
a1:67:ff:2f:83:8b:37:ff:a6:df:67:cb:36:b1:60:
2d:49:e8:a8:99:97:35:fa:ab:ec:ba:78:46:72:7b:
56:42:cb:78:7d:32:78:19:55:2b:4a:12:48:4a:6b:
61:57:ff:cc:f2:ff:cf:0f:57:ea:00:dc:f9:08:d8:
7c:92:f2:98:57:1e:0e:ed:2e:3d:64:c5:4d:b7:2b:
39:56:e5:c8:44:ee:c2:13:9c:5e:30:a0:8f:59:b3:
9d:5c:f1:8f:7b:62:52:c0:75:70:30:6b:17:bf:11:
93:96:07:dd:67:de:93:16:7d:29:18:1d:92:fe:0e:
03:5d:61:96:44:2c:37:5b:cb:01:9a:d8:9e:a3:45:
ad:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:97:5A:BE:22:DD:78:11:27:E1:4A:7D:EE:07:9D:20:40:E3:9E:18
X509v3 Authority Key Identifier:
keyid:54:F8:7B:5A:62:C1:FF:0F:52:28:12:E9:AD:D1:75:6B:C7:33:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VPh7WmLB_w9SKBLprdF1a8czhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/dpdaviLdeBEn4Up97gedIEDjnhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/VPh7WmLB_w9SKBLprdF1a8czhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.160.0/21
185.192.168.0/22
IPv6:
2a06:5d00::/29
Signature Algorithm: sha256WithRSAEncryption
a8:76:a3:8e:7d:46:5e:2f:4a:12:39:e1:32:24:71:2f:26:3f:
7b:37:d0:3e:66:50:a4:54:9c:0a:51:6f:aa:8b:84:a2:ad:77:
40:fe:c9:3e:6c:73:8e:59:39:a4:72:f9:32:33:c7:f5:00:3c:
52:04:25:b0:d8:34:21:d6:e5:1b:11:63:35:e0:a7:02:d9:0f:
61:77:a3:37:c0:fb:e7:ff:a2:d3:82:7a:57:3b:79:59:30:9d:
57:6d:13:0a:f4:60:65:7e:50:77:5b:de:ae:fb:a5:50:9c:de:
7d:39:70:a6:cd:ff:3f:f8:e4:76:da:87:be:b6:98:3e:25:ef:
75:3d:7a:89:08:b1:da:18:73:5b:2b:5c:02:c6:62:fb:8b:62:
0f:17:ba:34:a3:19:c7:14:24:64:54:7d:e6:ed:23:a9:20:bd:
d1:22:51:a3:51:0d:79:7b:fd:97:ba:ea:be:84:15:6a:f8:9a:
ec:93:d7:07:85:4d:49:de:2a:19:c5:ca:14:e5:1b:78:30:6b:
6e:9c:e1:19:22:1d:8a:bc:e3:3a:c9:e8:37:ca:a8:5f:80:5d:
82:2b:65:8c:08:8f:c9:5c:a4:e4:62:a3:c5:4a:8c:95:be:e8:
86:59:ca:4c:0c:b2:4e:8c:ec:90:68:50:7f:a2:7d:f2:81:00:
3a:4f:99:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 14:37:54 2024 by rpki-client on console-ams.rpki-client.org