Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/quLcMqv2fJluceTzJXZsSXmyILo.roa
File: quLcMqv2fJluceTzJXZsSXmyILo.roa (raw, json)
Hash identifier: o+3wYkHAQbwy6/djem9k/zvZJuzbNqZbLkWzuQaSuws=
Subject key identifier: AA:E2:DC:32:AB:F6:7C:99:6E:71:E4:F3:25:76:6C:49:79:B2:20:BA
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018CC8DCE08DAEF5AA7AFCF49AC1F06791E5
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/quLcMqv2fJluceTzJXZsSXmyILo.roa
Signing time: Tue 02 Jan 2024 06:29:27 +0000
ROA not before: Tue 02 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212527
IP address blocks: 94.188.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:e0:8d:ae:f5:aa:7a:fc:f4:9a:c1:f0:67:91:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Jan 2 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aae2dc32abf67c996e71e4f325766c4979b220ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:00:81:16:12:f8:66:30:e7:06:02:15:91:2c:
64:2c:58:c3:c1:e0:06:c9:ef:48:7a:75:8c:78:2d:
34:46:45:64:2c:f5:62:39:0c:18:bd:f6:d0:d2:78:
1a:6a:f6:21:f6:ad:65:fb:40:31:73:80:59:1b:e2:
40:c4:23:67:1d:80:fd:24:76:76:b8:a4:1a:02:8b:
24:30:13:29:2c:06:45:c2:cb:7f:b6:80:a8:93:db:
f3:e4:e9:2f:1c:02:40:3b:7d:05:a2:d1:29:93:8d:
4b:13:dd:8c:5c:1f:07:bb:46:1b:8d:aa:be:67:63:
c6:33:f2:76:8f:2e:44:fd:00:16:d4:5f:48:31:50:
9a:bb:cb:d8:19:3d:82:6a:cd:88:9c:19:f3:91:90:
88:82:99:8c:46:fd:14:ba:d8:11:40:08:42:f7:13:
8c:23:94:25:5d:b9:95:d7:18:f6:62:d4:87:2b:10:
ef:a5:87:8b:05:d1:0e:f5:d3:82:db:cd:d3:7b:94:
16:c0:47:46:6f:15:d9:24:5f:11:74:02:b1:1c:4b:
31:6b:74:bb:53:a7:9f:78:e6:7b:e7:a9:0b:87:1d:
f7:7a:1b:2f:cb:b3:c1:95:50:7f:12:fd:1a:46:f6:
71:5f:d1:c3:8d:29:ed:ec:a2:30:2e:69:ac:78:8f:
96:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E2:DC:32:AB:F6:7C:99:6E:71:E4:F3:25:76:6C:49:79:B2:20:BA
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/quLcMqv2fJluceTzJXZsSXmyILo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.245.0/24
Signature Algorithm: sha256WithRSAEncryption
09:18:10:4e:c9:35:e8:01:b7:dd:1a:a0:74:2c:1d:4a:6c:d4:
5c:38:32:19:e0:a7:76:fe:42:f3:f9:45:44:a6:21:a4:91:df:
1e:e6:cc:f7:86:ae:60:1a:77:16:ff:0d:24:37:a6:ce:64:96:
a4:b4:95:df:56:7f:e3:bf:29:93:f9:63:82:a6:9b:6a:47:5e:
61:69:0b:bb:92:05:c1:c2:58:26:e7:50:44:82:f8:4e:2b:06:
ff:1b:bb:ce:79:07:22:f9:f0:f1:4d:df:0f:32:36:7e:6a:e1:
f3:23:5e:15:d4:b6:3b:e1:01:99:1f:8b:4f:51:6e:4d:2e:17:
de:d4:73:e4:66:5a:52:09:9e:67:35:79:08:c2:bb:8e:b9:59:
61:16:e4:4d:bf:95:a6:2d:c9:0e:b3:e9:fc:ba:90:70:fa:47:
bb:c4:b5:fd:a0:11:ff:76:58:5e:20:b1:04:cc:54:58:90:14:
14:47:a4:28:01:57:1e:fb:ea:a2:a5:5e:d4:81:eb:40:81:ae:
76:09:65:9e:fd:34:fb:eb:d5:cc:9f:e9:9c:8a:07:5c:4a:7f:
1c:6d:79:62:12:f9:ad:2a:18:4c:29:27:e7:6f:bd:ee:a3:a0:
f7:b1:ad:ce:bc:23:42:9d:e0:6c:a0:39:5a:c7:aa:ed:aa:30:
c6:56:3a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:31:10 2024 by rpki-client on console-ams.rpki-client.org