Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/vnwiRL5yNqNSqxjgehd0sHnTuzI.roa
File: vnwiRL5yNqNSqxjgehd0sHnTuzI.roa (raw, json)
Hash identifier: CU0hWBPkzXC2A4WsprW/EZr8Kabi5+GDHG6npeS/hvc=
Subject key identifier: BE:7C:22:44:BE:72:36:A3:52:AB:18:E0:7A:17:74:B0:79:D3:BB:32
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 01908D6AB3A62D02376EB7395B6D719F831D
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/vnwiRL5yNqNSqxjgehd0sHnTuzI.roa
Signing time: Sun 07 Jul 2024 13:38:18 +0000
ROA not before: Sun 07 Jul 2024 13:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44854
IP address blocks: 93.114.180.0/23 maxlen: 24
2a10:e300:26::/48 maxlen: 48
2a10:e300:27::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8d:6a:b3:a6:2d:02:37:6e:b7:39:5b:6d:71:9f:83:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jul 7 13:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be7c2244be7236a352ab18e07a1774b079d3bb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c1:4b:52:39:44:15:94:a0:a5:21:af:e5:24:
4b:c6:1b:7d:ff:8e:3c:a9:9f:7d:35:80:08:9c:b8:
a3:12:1d:4d:01:5d:87:9f:14:10:4b:2e:c0:9e:c5:
c9:a0:c8:87:de:68:dd:d5:d4:a0:69:11:1e:4e:e2:
2b:ac:a6:02:c5:6e:c3:11:81:12:91:b1:e2:76:fc:
3d:87:f9:35:b9:5a:64:ac:b6:ad:06:e0:4e:bd:49:
66:b0:a4:7b:ff:7c:93:44:92:f4:53:30:e8:1e:c4:
7e:dc:a7:10:97:42:8a:a3:54:b3:ed:45:60:41:98:
ba:8b:d4:66:5d:9e:3c:bb:6b:a4:82:2d:41:51:ea:
64:21:43:37:32:bb:87:b1:fe:bb:61:75:c9:f9:e6:
11:61:c4:8a:c2:34:2e:f9:07:97:c9:42:dd:a0:05:
a8:0e:28:ea:65:bf:45:ab:60:da:03:a4:f7:45:c7:
1c:be:1b:71:e3:1a:3f:ca:cc:45:db:8e:bd:d2:1e:
22:a7:1f:00:85:7f:43:13:f6:ff:88:c8:7d:a4:7e:
97:57:ee:5b:10:cd:a6:e1:b9:79:6c:dd:5d:ce:29:
68:5d:bb:88:a9:3b:51:f0:16:b4:93:74:cf:2a:86:
09:85:63:f7:5e:b4:b9:fb:77:32:2c:a9:fa:82:6c:
54:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7C:22:44:BE:72:36:A3:52:AB:18:E0:7A:17:74:B0:79:D3:BB:32
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/vnwiRL5yNqNSqxjgehd0sHnTuzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.180.0/23
IPv6:
2a10:e300:26::/47
Signature Algorithm: sha256WithRSAEncryption
8c:b6:92:b5:cc:c2:9a:24:a7:2a:f9:73:ea:a7:03:59:e5:e8:
1c:d3:9b:af:33:44:8f:a6:c9:75:0c:18:36:a7:78:e1:2d:cd:
98:27:00:cc:bd:1a:91:40:7f:59:76:d8:5f:12:54:c1:21:ae:
74:c8:15:08:87:70:56:9d:d7:d8:5b:9e:c0:39:7e:9b:0c:91:
1a:80:f8:9b:96:4f:ff:2c:95:57:05:73:a6:a1:22:86:5e:e3:
8e:8b:b7:3f:f2:b9:90:2a:79:de:08:8f:18:05:af:68:e8:d4:
5c:7d:08:67:36:cd:36:e4:ac:64:f6:1b:48:88:38:97:8b:5c:
85:93:4a:87:6a:05:62:11:18:8c:58:80:c5:b3:42:b1:6e:f4:
a9:f9:e7:33:2a:96:08:cb:80:c3:0f:be:71:6e:30:cd:ab:f4:
81:88:87:bd:21:4a:e9:ad:5b:b4:be:aa:d4:4a:2b:da:c6:20:
4c:9d:5b:1c:f3:1d:d7:e9:cd:78:f7:9b:3c:d4:19:b1:9a:bd:
44:79:27:9d:04:9b:b7:17:0e:c0:e5:5c:f1:be:cb:4e:ff:cb:
36:b2:86:27:70:43:f4:cc:3f:61:01:66:ae:95:55:19:63:32:
b5:27:b9:8a:cb:d6:08:83:5b:ad:24:4c:ea:33:61:08:65:91:
b0:44:cd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:25:21 2024 by rpki-client on console-ams.rpki-client.org