Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/sbB9abaNNShwCtjBi7sCXMQHHH8.roa
File: sbB9abaNNShwCtjBi7sCXMQHHH8.roa (raw, json)
Hash identifier: u9apZm03A1D7nkJyje6bzYTGPJFAOqU+2ZXs7HC+tqE=
Subject key identifier: B1:B0:7D:69:B6:8D:35:28:70:0A:D8:C1:8B:BB:02:5C:C4:07:1C:7F
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 018FD9C612A96235490DEC88521472493D59
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/sbB9abaNNShwCtjBi7sCXMQHHH8.roa
Signing time: Sun 02 Jun 2024 16:26:27 +0000
ROA not before: Sun 02 Jun 2024 16:26:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207574
IP address blocks: 31.24.249.0/24 maxlen: 32
2a12:4946:46::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d9:c6:12:a9:62:35:49:0d:ec:88:52:14:72:49:3d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jun 2 16:26:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1b07d69b68d3528700ad8c18bbb025cc4071c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bc:b4:05:b5:20:38:09:1c:bb:d7:d8:b4:de:
f3:f2:c2:11:59:6d:5b:cb:22:5e:c0:9b:e8:59:31:
18:97:38:dc:9b:90:2d:0e:26:f9:79:c9:31:29:c7:
61:d4:46:b3:34:f9:b8:df:d7:eb:39:e9:0e:41:e7:
87:7f:1f:f2:44:da:30:05:78:56:5a:57:15:80:d9:
49:b8:f2:2b:b8:06:18:d2:a3:c8:bb:6a:6b:f5:7b:
8f:f2:7d:8c:30:42:50:5b:39:66:f7:c0:91:70:da:
93:43:ed:05:2c:c7:05:07:4c:bd:a0:29:ef:49:05:
c9:9c:1a:5a:d9:58:0a:d6:27:8b:70:d5:55:5b:fa:
c3:e3:7b:5b:b8:3a:1c:08:f3:7b:6f:ec:dc:46:ad:
2a:b8:af:52:76:b6:cf:8e:68:70:71:57:ee:fa:3c:
42:48:be:18:e2:ef:50:18:d3:d0:96:b6:ff:86:8b:
60:a4:82:e8:16:f2:94:78:10:f7:3b:e7:01:99:67:
fe:f3:57:c8:1e:d8:16:0c:de:e1:fc:9c:e0:d9:38:
76:43:03:e6:42:64:b5:a7:95:61:90:94:14:f1:a5:
16:e1:bf:84:f1:95:f3:d0:c2:98:46:60:18:f4:df:
ad:f7:38:1e:b7:05:6c:e0:95:a5:24:71:7b:1b:0c:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B0:7D:69:B6:8D:35:28:70:0A:D8:C1:8B:BB:02:5C:C4:07:1C:7F
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/sbB9abaNNShwCtjBi7sCXMQHHH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2a12:4946:46::/48
2a12:4946:3000::/48
Signature Algorithm: sha256WithRSAEncryption
50:3f:b8:92:94:90:02:12:f2:f8:c6:f2:ac:71:2b:d7:c1:56:
f6:9f:cb:31:06:ea:22:eb:10:95:e0:d6:28:8f:b5:52:7a:3e:
d1:94:4b:b3:48:73:ec:57:e4:f7:08:30:94:d3:65:b1:84:72:
3d:9b:78:65:67:44:fc:ae:8e:07:79:11:57:05:a4:17:7f:14:
40:08:eb:49:13:8c:49:d8:dc:2d:13:6f:93:ad:2a:84:b7:bc:
88:43:5b:b9:70:3f:f6:aa:61:cf:42:c8:f3:a1:a9:76:ba:32:
4f:c0:68:d4:74:d6:6d:23:33:0f:18:8f:ae:85:22:70:c4:fe:
07:0d:b6:46:a3:55:a6:37:96:8b:c9:43:50:e3:3b:0a:58:16:
c1:ca:85:4a:9b:75:c5:73:ee:2b:f7:70:ce:bb:e3:5b:0c:ef:
18:1c:df:71:a2:91:93:d9:bc:0d:d1:87:ac:99:5b:00:03:5e:
4a:f1:ec:41:a6:1c:09:de:50:b0:68:2c:5a:5f:e0:0d:f0:2b:
f8:6e:78:83:cc:6d:95:c6:2e:c7:8a:9b:c9:e2:d9:e0:02:8e:
70:e2:92:3f:d9:98:00:7c:bd:0e:ca:88:bb:2e:23:ab:a1:62:
55:d3:7d:b1:56:e5:e7:e0:0d:91:6d:ad:77:17:6b:07:4a:50:
16:06:34:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:10:36 2024 by rpki-client on console-fra.rpki-client.org