Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/q7k-W6x6dOnCdVXA78sps5viTqQ.roa
File: q7k-W6x6dOnCdVXA78sps5viTqQ.roa (raw, json)
Hash identifier: pt0WQRgxp+dj8oX3L0U4VxN/ESekK9fwVuCf3jIDtvg=
Subject key identifier: AB:B9:3E:5B:AC:7A:74:E9:C2:75:55:C0:EF:CB:29:B3:9B:E2:4E:A4
Certificate issuer: /CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Certificate serial: 018E18A1F03DF5FE5952A548BD2FB1BDCAC4
Authority key identifier: 55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/q7k-W6x6dOnCdVXA78sps5viTqQ.roa
Signing time: Thu 07 Mar 2024 11:17:29 +0000
ROA not before: Thu 07 Mar 2024 11:17:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44814
IP address blocks: 46.253.8.0/24 maxlen: 24
46.253.10.0/24 maxlen: 24
46.253.15.0/24 maxlen: 24
93.94.136.0/24 maxlen: 24
93.94.137.0/24 maxlen: 24
93.94.138.0/24 maxlen: 24
93.94.141.0/24 maxlen: 24
93.94.143.0/24 maxlen: 24
95.169.208.0/20 maxlen: 20
95.169.213.0/24 maxlen: 24
95.169.218.0/24 maxlen: 24
95.169.219.0/24 maxlen: 24
95.169.222.0/24 maxlen: 24
185.7.217.0/24 maxlen: 24
2a01:4a40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:a1:f0:3d:f5:fe:59:52:a5:48:bd:2f:b1:bd:ca:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Validity
Not Before: Mar 7 11:17:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abb93e5bac7a74e9c27555c0efcb29b39be24ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:1c:59:99:2d:6d:08:82:fa:d9:b0:17:41:
ac:2f:ba:de:74:9a:02:63:94:2a:51:2c:c8:b4:80:
19:8b:21:49:ff:28:49:d2:7d:7a:29:72:bd:22:b1:
f3:ef:59:e7:46:7f:68:98:12:8e:30:d4:1c:0c:8e:
da:c0:7d:f0:d2:09:76:b8:2c:cd:73:08:19:91:c0:
40:76:21:02:14:76:38:3d:cb:4d:f0:44:60:50:b7:
c8:30:de:ed:e4:fc:fb:bc:e0:4c:20:51:2d:77:5a:
c2:2b:96:8b:13:93:94:c0:7e:86:7c:b4:05:17:1a:
5b:a0:52:d5:a9:c5:c2:0a:c2:f8:34:6a:2c:4b:21:
d0:e2:ba:31:7e:7c:be:f8:b3:e5:26:5f:d3:ca:9a:
09:52:9b:9f:da:4b:c9:af:44:18:53:2b:b1:f7:a8:
a8:2b:bd:39:7f:f6:b5:d0:90:53:29:bc:58:93:93:
2a:c1:17:57:2b:2d:a8:3f:0c:6b:fb:55:92:03:5b:
d5:e4:b6:b9:c5:ff:27:84:5e:9b:6a:70:56:76:e1:
f5:06:44:e6:bc:fe:e4:15:cc:8e:74:60:b8:53:d3:
1e:a1:a6:ba:28:54:c4:46:89:b7:37:cf:41:d8:35:
c9:95:03:b5:3b:6d:3d:e3:e0:4d:37:bb:10:70:b9:
d0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B9:3E:5B:AC:7A:74:E9:C2:75:55:C0:EF:CB:29:B3:9B:E2:4E:A4
X509v3 Authority Key Identifier:
keyid:55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/q7k-W6x6dOnCdVXA78sps5viTqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.8.0/24
46.253.10.0/24
46.253.15.0/24
93.94.136.0-93.94.138.255
93.94.141.0/24
93.94.143.0/24
95.169.208.0/20
185.7.217.0/24
IPv6:
2a01:4a40::/32
Signature Algorithm: sha256WithRSAEncryption
1f:31:68:76:9c:f6:10:2d:2a:82:91:b4:86:b3:d2:40:1d:30:
63:b1:9f:61:63:a4:fc:f2:e5:89:b1:ae:d7:cf:48:65:68:db:
ca:09:99:57:49:87:05:95:f1:4d:0a:90:b1:59:9a:f3:69:46:
48:c8:26:48:41:71:37:6e:5f:6c:f9:85:4a:29:13:6a:bc:3d:
8b:68:ba:40:eb:f9:b1:30:ab:b7:f0:35:24:fc:b7:f3:b9:d1:
70:e2:b1:49:6c:e8:a1:be:22:c5:c2:fd:a1:1e:ee:30:6c:5a:
e7:82:ed:09:cf:e9:90:95:18:24:1c:70:dc:62:e1:a8:5b:1e:
3e:0c:d9:c6:79:1e:37:ac:d3:ff:c8:98:22:02:99:47:d9:bd:
f5:d1:fd:3e:3d:43:a8:83:13:c7:d4:c5:c7:fe:79:60:aa:57:
bf:25:66:00:23:00:95:41:a3:87:51:1d:c1:01:2c:b0:70:c0:
69:4a:d4:dc:e5:57:68:80:e6:6b:7f:42:f2:57:83:f5:07:af:
39:6b:ef:8a:ac:7d:51:ed:cb:fe:bd:2f:33:5a:c9:33:72:f0:
23:03:d4:c1:3a:68:4c:2f:b0:2d:f0:0f:5c:40:ae:c4:46:17:
0f:ee:dd:a7:45:fd:32:b0:1d:70:f4:3c:77:6f:4e:27:e5:09:
17:06:e3:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:06:05 2024 by rpki-client on console-ams.rpki-client.org