Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/Vhe2foHmi5lA3C9kqHnwijb2hq0.roa
File: Vhe2foHmi5lA3C9kqHnwijb2hq0.roa (raw, json)
Hash identifier: rwZarU6bGo8n4YwwVCB0LPRlDK5ygFHRAez0Gk6cf/c=
Subject key identifier: 56:17:B6:7E:81:E6:8B:99:40:DC:2F:64:A8:79:F0:8A:36:F6:86:AD
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 018CC94DE90E585CEC554FDD82C2ED1DDB1F
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/Vhe2foHmi5lA3C9kqHnwijb2hq0.roa
Signing time: Tue 02 Jan 2024 08:32:55 +0000
ROA not before: Tue 02 Jan 2024 08:32:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47748
IP address blocks: 94.155.47.0/24 maxlen: 24
94.155.48.0/24 maxlen: 24
94.155.49.0/24 maxlen: 24
94.155.55.0/24 maxlen: 24
94.155.93.0/24 maxlen: 24
2a02:4c8:af::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:e9:0e:58:5c:ec:55:4f:dd:82:c2:ed:1d:db:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 2 08:32:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5617b67e81e68b9940dc2f64a879f08a36f686ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4c:76:03:54:ec:70:22:57:31:29:87:90:de:
a5:96:65:1c:30:d4:49:47:b1:fb:2a:3f:6d:a3:ef:
49:36:94:d0:08:57:b2:3e:b3:88:82:10:24:d5:a9:
57:a2:80:3e:e8:78:56:4f:ed:32:12:73:f9:8d:e3:
85:e5:07:3c:c3:68:92:de:83:af:f4:fc:47:c5:1f:
6b:96:38:5a:5c:c6:1d:6f:9c:3e:56:84:8f:27:30:
fb:43:6a:e5:56:f0:5b:f9:0c:7c:da:64:e3:ed:fb:
6d:9c:40:61:81:a4:b2:f3:c9:0b:63:7b:74:cc:e5:
27:28:f8:43:fd:70:aa:77:b5:66:9b:e8:69:b8:c1:
8d:4c:dd:d4:7a:3d:67:1a:c6:85:ac:2e:a8:05:8b:
a3:27:45:76:c9:bb:db:84:e0:e4:a8:7d:a5:c9:ee:
17:ef:6b:0b:33:37:f7:8e:d2:a1:7d:3f:1d:ef:25:
90:aa:97:66:99:49:77:ac:fe:68:a0:f2:8b:e9:d0:
6e:ee:f8:d2:fc:a4:1c:c8:25:4d:ea:83:d4:15:aa:
f3:30:9e:c1:b9:6f:a7:0f:0c:4a:76:13:25:8f:25:
35:0e:74:b2:37:b6:c6:96:49:6b:58:8e:f9:f5:c3:
92:58:9d:26:a3:7a:e2:46:ea:c5:46:36:da:ac:42:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:17:B6:7E:81:E6:8B:99:40:DC:2F:64:A8:79:F0:8A:36:F6:86:AD
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/Vhe2foHmi5lA3C9kqHnwijb2hq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.155.47.0-94.155.49.255
94.155.55.0/24
94.155.93.0/24
IPv6:
2a02:4c8:af::/48
Signature Algorithm: sha256WithRSAEncryption
19:2b:d9:24:76:25:0d:c9:18:af:43:f2:76:c8:37:34:11:21:
1d:75:78:97:9d:95:26:3c:29:37:77:ee:60:ba:d0:8a:32:5f:
87:d6:8e:f9:24:0d:67:7f:2d:c2:62:63:05:9a:c6:83:c3:6f:
55:23:19:46:0c:9e:1f:1b:d7:90:8f:25:e2:39:ea:5d:08:cd:
3e:8f:72:d0:0b:26:6f:62:ef:a8:1b:9f:1e:f0:ce:6d:3b:40:
37:58:83:4c:95:23:5c:b9:08:56:b7:91:d5:f6:bb:9d:f8:f7:
b6:36:57:b7:8d:4c:11:07:a6:8b:6f:7f:01:28:91:85:2c:82:
0a:60:0a:3e:83:d4:f9:eb:d3:33:4e:e8:ac:fb:a3:de:b3:ee:
c0:cf:da:5f:c0:51:fa:2f:26:d8:6a:5d:c6:d5:ba:cb:2d:6a:
cd:30:7b:cf:06:bd:44:68:f2:67:06:e7:9f:3b:da:a1:fb:07:
27:62:64:50:c2:c3:ba:c0:ee:62:61:af:ac:a1:b9:3f:6a:5d:
f2:1a:ed:47:8a:6b:29:6c:c4:50:fc:5a:43:a5:4e:6a:ee:ff:
41:26:c7:3b:aa:2c:a9:98:79:cc:47:f6:e2:db:ff:5e:6e:fe:
0d:68:a1:fd:5e:79:01:24:c9:81:eb:76:29:64:5f:d0:ec:90:
11:74:c6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:05:12 2024 by rpki-client on console-ams.rpki-client.org