Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/bVV7j90v4pFNdccG3XpSTi7oQZI.roa
File: bVV7j90v4pFNdccG3XpSTi7oQZI.roa (raw, json)
Hash identifier: 7vAFRd0E6K+DqAJw797qW39vId01gwgzkeym0i4HAMo=
Subject key identifier: 6D:55:7B:8F:DD:2F:E2:91:4D:75:C7:06:DD:7A:52:4E:2E:E8:41:92
Certificate issuer: /CN=ceb86983547113359bade1f3f38104091e3a6439
Certificate serial: 018CC26D1B3DA30B8206D5B37997AFFD7D2D
Authority key identifier: CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/bVV7j90v4pFNdccG3XpSTi7oQZI.roa
Signing time: Mon 01 Jan 2024 00:29:39 +0000
ROA not before: Mon 01 Jan 2024 00:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201935
IP address blocks: 82.85.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:1b:3d:a3:0b:82:06:d5:b3:79:97:af:fd:7d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb86983547113359bade1f3f38104091e3a6439
Validity
Not Before: Jan 1 00:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d557b8fdd2fe2914d75c706dd7a524e2ee84192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:df:76:7a:be:01:dc:66:dd:22:df:ad:dc:68:
2c:37:a7:14:9c:d5:fa:5d:56:d1:dd:d0:d0:40:2c:
7d:91:93:59:47:a4:de:55:1a:0f:b8:6d:eb:dc:70:
ed:17:ef:ca:8f:b5:b8:60:f1:17:e3:9e:01:56:e9:
a5:f8:b4:a9:b9:f5:df:f3:82:fc:f3:85:8c:af:30:
50:3f:fc:6b:71:36:e0:9a:26:0a:41:60:e7:15:3d:
cb:37:6c:5d:65:9b:7e:dc:6a:c4:85:7f:85:2a:02:
dc:14:aa:21:98:b9:0c:a1:4f:f3:ee:40:8f:fd:41:
3a:7a:9f:58:4d:04:c1:96:f3:3f:cf:65:92:81:06:
0d:92:33:9e:32:a2:d6:86:58:00:4b:92:50:65:14:
8d:f3:68:04:65:11:72:55:a1:ed:0c:23:98:6f:5f:
45:97:17:ec:62:cf:f4:77:73:46:79:fe:64:b8:ab:
dd:06:21:28:cd:61:66:be:6a:f6:fd:a3:90:2d:b7:
87:1c:50:da:f6:d6:46:8e:61:bd:3b:c1:18:69:e0:
08:f5:a8:8f:8e:5c:92:25:90:e6:1c:29:73:0a:80:
ae:69:2c:f2:89:fb:92:04:f7:a2:c2:97:54:d5:4f:
34:3e:e9:49:ef:8a:43:00:ce:4d:48:66:99:51:6c:
d0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:55:7B:8F:DD:2F:E2:91:4D:75:C7:06:DD:7A:52:4E:2E:E8:41:92
X509v3 Authority Key Identifier:
keyid:CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/bVV7j90v4pFNdccG3XpSTi7oQZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.85.176.0/24
Signature Algorithm: sha256WithRSAEncryption
58:4a:fd:f7:88:50:93:ce:79:61:01:24:09:81:95:2d:a5:21:
11:7a:15:6b:f7:78:bb:32:28:48:fc:5a:36:0e:fe:42:08:cc:
b7:58:53:28:62:ce:52:85:41:17:8e:4b:f9:62:43:9f:ac:da:
87:95:ac:72:c1:30:68:0e:c7:8e:8b:35:23:8d:bd:0f:2e:6f:
42:89:fd:c9:45:30:0e:5b:fb:cf:57:da:5d:95:4d:5d:55:f7:
2d:77:d6:ff:7d:53:ba:f3:53:35:d7:27:b5:4b:8a:50:eb:4e:
40:0c:7d:94:cf:eb:54:67:a0:a8:db:ce:82:5d:48:e8:0e:50:
a9:16:27:70:4d:ef:3e:74:c6:12:c6:6d:39:32:2e:68:ff:62:
e0:77:6f:d1:a6:e1:f0:4d:9a:57:73:23:73:8a:61:22:d8:cb:
5c:8e:31:ab:7f:5a:f1:ec:6a:ee:d3:f0:b1:27:2d:2a:c8:34:
82:63:e1:67:ea:53:c3:0d:35:03:23:2e:9d:21:19:9b:f8:96:
74:e8:78:8c:a2:8b:d7:16:e0:07:ec:1f:b9:db:04:59:c9:66:
b5:15:5f:d5:71:c7:e4:92:e4:6a:2b:15:ff:ce:0c:a2:c8:88:
73:e8:c9:05:2d:69:7a:74:df:3a:20:ef:b7:58:b3:db:80:1a:
d3:05:9e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:41:56 2024 by rpki-client on console-ams.rpki-client.org