Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/VC0laYmiB_Avx3b4GfJJ9hqNU-g.roa
File: VC0laYmiB_Avx3b4GfJJ9hqNU-g.roa (raw, json)
Hash identifier: vnBPthGbiyPRId39EV8TLmvnmTSHmO65I88qSl7UzAc=
Subject key identifier: 54:2D:25:69:89:A2:07:F0:2F:C7:76:F8:19:F2:49:F6:1A:8D:53:E8
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01933468976556F3373D59CAD94B3FD2D754
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/VC0laYmiB_Avx3b4GfJJ9hqNU-g.roa
Signing time: Sat 16 Nov 2024 09:58:09 +0000
ROA not before: Sat 16 Nov 2024 09:58:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49556
IP address blocks: 5.159.49.0/24 maxlen: 24
5.159.54.0/24 maxlen: 24
45.94.213.0/24 maxlen: 24
185.239.0.0/24 maxlen: 24
185.239.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:34:68:97:65:56:f3:37:3d:59:ca:d9:4b:3f:d2:d7:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Nov 16 09:58:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=542d256989a207f02fc776f819f249f61a8d53e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b2:73:6d:18:4d:ac:39:a6:42:3b:d5:9d:c8:
a0:fd:1d:10:73:36:4c:2a:ac:31:c8:6f:9f:0f:91:
12:26:e2:f9:ed:f4:2e:82:64:14:42:6e:69:7c:e9:
9f:83:59:3b:4d:7c:b5:c3:ea:7f:30:93:c2:01:e8:
56:fb:b8:2f:3b:d0:3e:10:12:92:3a:40:32:d3:09:
9b:48:8d:d6:e5:55:d6:76:c6:d7:59:40:48:f7:47:
95:55:66:3c:24:28:ef:91:c3:28:32:e3:b3:e5:39:
1e:a9:be:1d:70:3e:44:c1:ae:de:16:3e:40:2f:6d:
cd:b3:36:85:fd:ae:bc:59:6f:3f:dc:cc:98:7f:05:
64:71:fb:f1:d5:9e:b5:f4:71:32:f5:10:d9:a3:ab:
6d:48:cd:fd:fa:8f:05:bd:6b:54:09:b1:21:f6:fa:
bd:e3:c9:54:a8:48:ed:02:c7:e9:ea:5d:a9:39:89:
ee:b7:39:33:3b:c7:e2:bd:db:4c:bf:ff:9f:0b:c5:
a2:b8:7b:04:e5:49:b4:ec:fd:d4:8a:47:85:d2:cd:
35:36:fc:3b:75:56:0c:f0:d9:58:88:74:e5:69:7c:
02:80:d6:f8:ef:c1:b2:27:88:ba:c0:e0:82:92:2b:
f0:42:ee:ca:06:ca:46:75:62:5b:88:87:9c:78:88:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2D:25:69:89:A2:07:F0:2F:C7:76:F8:19:F2:49:F6:1A:8D:53:E8
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/VC0laYmiB_Avx3b4GfJJ9hqNU-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.49.0/24
5.159.54.0/24
45.94.213.0/24
185.239.0.0/24
185.239.2.0/24
Signature Algorithm: sha256WithRSAEncryption
12:52:37:c8:d3:14:33:67:06:a1:7d:91:11:10:58:ca:4d:80:
d6:f4:10:94:a6:42:ea:8a:53:ba:80:2f:94:b3:47:60:fe:6e:
a3:29:2f:ba:5d:1f:1e:46:67:0b:6b:2e:84:ef:0d:73:96:24:
cc:c1:89:12:7f:a8:3d:af:19:e1:78:94:a1:a0:4f:fe:b4:43:
c2:1d:eb:fd:7a:0c:56:74:0a:76:8b:ef:bc:3d:71:c9:01:b2:
ff:66:f2:8a:9e:51:06:83:b9:d1:22:f3:8f:40:ca:bf:51:f1:
8f:5f:9d:3a:2a:4f:5f:ad:d7:b4:12:8f:80:d8:8f:f8:74:c4:
42:0f:dc:34:ce:6d:00:7e:e2:fa:13:51:88:05:4b:7e:d7:bc:
fa:f8:a7:2d:5b:43:1f:a4:4c:60:73:bb:eb:74:99:ec:7c:75:
c2:cf:3b:2c:bc:34:ac:09:ad:d7:7c:7e:51:13:9c:a5:a0:57:
7f:1d:9a:c8:84:65:c5:16:18:c7:3e:b5:c0:34:34:57:97:7b:
33:17:0c:f9:93:ff:5f:66:39:93:70:22:98:44:17:f5:6e:49:
08:c0:63:95:74:75:5f:c0:6a:67:6b:a8:e4:3f:0d:41:b9:97:
1b:84:ba:da:cf:53:1c:6b:40:6a:5c:0f:3c:1c:0b:63:7f:3e:
88:0e:f0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:25:08 2024 by rpki-client on console-ams.rpki-client.org