Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/_g1p4GIGycWDBLGPYHOf6gwR4Q4.roa
File: _g1p4GIGycWDBLGPYHOf6gwR4Q4.roa (raw, json)
Hash identifier: +vIyLR5+kpGhA+qzdTW9S2QKLkp3mFVrKWfxHEgpw9M=
Subject key identifier: FE:0D:69:E0:62:06:C9:C5:83:04:B1:8F:60:73:9F:EA:0C:11:E1:0E
Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f
Certificate serial: 018CC64B0643B91ACA2A6564EF7F6A048D2C
Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/_g1p4GIGycWDBLGPYHOf6gwR4Q4.roa
Signing time: Mon 01 Jan 2024 18:30:54 +0000
ROA not before: Mon 01 Jan 2024 18:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200947
IP address blocks: 185.82.44.0/23 maxlen: 23
185.82.46.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:06:43:b9:1a:ca:2a:65:64:ef:7f:6a:04:8d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f
Validity
Not Before: Jan 1 18:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe0d69e06206c9c58304b18f60739fea0c11e10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ad:cb:b9:16:10:c6:90:7a:8e:6a:11:f9:e3:
06:f1:2a:e9:36:30:c2:39:be:ba:34:2a:f2:14:7a:
d9:fd:f6:78:98:bb:03:e5:6d:d8:33:ce:b1:4c:4b:
8d:eb:63:c4:9f:d4:a8:f5:d2:65:1e:f6:77:79:3f:
b4:70:9e:5c:81:51:a7:9d:95:7f:12:5d:96:c6:be:
79:89:51:06:d3:f1:ac:1f:a7:24:82:7f:e6:80:50:
f6:9d:54:eb:6d:e9:09:59:c8:32:4c:3c:76:7f:3a:
16:a7:92:6b:dc:d2:46:19:7f:c0:1d:cd:3d:5b:9c:
ad:10:40:57:1a:e9:8e:aa:97:9b:78:43:fd:63:06:
58:72:24:6c:89:f6:20:df:23:ae:bf:ac:09:7f:44:
64:81:ca:ef:f9:57:92:da:38:85:6c:87:fa:aa:88:
ff:22:c2:7e:ab:88:c2:46:ac:05:7d:5b:5d:3c:d4:
03:0d:c9:02:5e:79:77:b8:ab:4f:46:af:48:df:05:
23:f7:24:cf:be:ad:32:33:6f:af:37:87:3b:ec:71:
a3:a9:65:dc:43:2a:d4:b1:1a:2e:7e:22:ca:0d:24:
23:4f:98:fb:70:b5:f6:e4:f1:77:14:fd:26:f7:d0:
6f:ba:91:11:66:e1:8f:d2:03:15:87:b7:d8:1e:ca:
dd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0D:69:E0:62:06:C9:C5:83:04:B1:8F:60:73:9F:EA:0C:11:E1:0E
X509v3 Authority Key Identifier:
keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/_g1p4GIGycWDBLGPYHOf6gwR4Q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:b8:11:9e:77:62:0c:87:ef:01:5d:0a:23:04:c4:a5:85:43:
5d:eb:73:96:09:9f:12:51:b6:de:fa:74:a4:5c:14:b1:6d:fb:
d4:ce:71:7f:9e:e5:5f:df:94:fe:45:f6:2e:ef:56:46:98:37:
4f:a1:ab:2c:92:1f:d4:9f:8d:92:18:d4:4d:83:8d:11:92:ee:
15:59:f8:5f:94:a4:06:e0:6f:44:40:58:2f:b9:86:e6:bc:ac:
4b:cd:fc:20:6f:e9:dd:91:8a:18:70:d8:20:a8:80:de:60:c2:
1d:c6:96:dd:25:ec:fa:4e:2f:64:30:ed:1a:f0:36:6d:fc:f3:
11:e8:29:dc:36:9e:b5:e6:2a:b7:a6:08:e4:72:59:63:38:59:
07:18:b9:c2:57:9b:f8:92:56:2b:53:5c:70:c9:48:9d:8c:fc:
c8:1d:24:08:eb:de:97:56:a7:05:d1:c9:30:92:4b:3b:39:7c:
2c:86:94:14:e0:ba:cd:4d:95:32:5d:bc:48:55:bb:5a:c6:25:
4b:65:c8:27:23:b7:03:0d:76:e4:c1:4e:69:02:4f:c4:94:34:
ec:99:61:4f:a9:27:d5:ea:64:32:44:b9:0d:1a:0a:5d:7d:91:
50:37:9b:42:84:ac:7c:fe:bb:2c:e7:31:c6:76:f5:80:64:f2:
61:79:e9:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:03:19 2024 by rpki-client on console-fra.rpki-client.org