Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/vGMqzTlvGVZ5g8ubwCe49mZu9hg.roa
File: vGMqzTlvGVZ5g8ubwCe49mZu9hg.roa (raw, json)
Hash identifier: FVmDDLNRo2hJHLiOuY6L9PD/JVapeGYbXxU4D+Nebr8=
Subject key identifier: BC:63:2A:CD:39:6F:19:56:79:83:CB:9B:C0:27:B8:F6:66:6E:F6:18
Certificate issuer: /CN=5403e5f8405d6085b8df4bfce1dd9bb3e78c2199
Certificate serial: 018CC9CB930B659854955E74CF5170612D3F
Authority key identifier: 54:03:E5:F8:40:5D:60:85:B8:DF:4B:FC:E1:DD:9B:B3:E7:8C:21:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/vGMqzTlvGVZ5g8ubwCe49mZu9hg.roa
Signing time: Tue 02 Jan 2024 10:50:11 +0000
ROA not before: Tue 02 Jan 2024 10:50:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213023
IP address blocks: 185.189.180.0/24 maxlen: 24
2a0b:f380:a::/48 maxlen: 48
2a0b:f380::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:cb:93:0b:65:98:54:95:5e:74:cf:51:70:61:2d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5403e5f8405d6085b8df4bfce1dd9bb3e78c2199
Validity
Not Before: Jan 2 10:50:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc632acd396f19567983cb9bc027b8f6666ef618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d0:52:6e:a3:82:17:02:52:ab:d8:86:1f:58:
6c:92:ab:11:52:61:8d:44:a2:6e:17:e7:78:3d:1b:
b0:d1:30:3a:ae:63:80:a1:64:d3:14:38:3b:bd:42:
d0:40:91:fa:a6:a4:89:44:52:26:03:68:99:64:a7:
d7:8f:b7:4a:87:48:06:0a:14:ea:e3:64:c0:01:7b:
92:e2:b5:2d:f2:c4:6e:5f:66:2b:c9:02:0b:37:39:
68:e6:dd:f0:fd:eb:93:ac:2a:94:d8:f3:a1:3c:d3:
f4:47:48:24:e3:49:03:6d:cc:a2:e3:8d:24:5b:6d:
8f:7a:27:86:ae:d3:6f:d9:36:6a:74:b7:e2:59:b8:
ef:8f:9d:95:0c:f9:17:47:b3:ae:7b:46:d5:61:24:
85:b6:a9:6f:a0:1e:a2:9b:2b:a6:6e:5a:55:8f:a6:
9a:57:a7:31:ac:20:2e:3e:d4:73:bf:88:9a:0c:3e:
2f:a2:a4:2e:b8:ed:44:ea:f1:d4:05:de:94:5d:46:
34:fe:58:47:d8:17:33:b7:12:b1:81:09:45:d4:e3:
83:2e:0f:58:1b:af:0d:4e:b0:31:64:17:65:bc:86:
42:0d:33:a8:0c:76:3d:29:1e:f7:95:cc:31:40:22:
da:0f:69:a2:27:13:7d:ff:f3:e3:e1:b3:12:cc:1a:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:63:2A:CD:39:6F:19:56:79:83:CB:9B:C0:27:B8:F6:66:6E:F6:18
X509v3 Authority Key Identifier:
keyid:54:03:E5:F8:40:5D:60:85:B8:DF:4B:FC:E1:DD:9B:B3:E7:8C:21:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAPl-EBdYIW430v84d2bs-eMIZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/vGMqzTlvGVZ5g8ubwCe49mZu9hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/aee8d9-21ed-4db7-bd70-15a42ac9efa8/1/VAPl-EBdYIW430v84d2bs-eMIZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.180.0/24
IPv6:
2a0b:f380::/48
2a0b:f380:a::/48
Signature Algorithm: sha256WithRSAEncryption
be:42:5f:b8:d8:31:b6:36:f0:10:dd:e1:ae:f7:c1:2c:0a:a8:
2c:25:d3:ef:ee:91:21:e0:e0:fc:45:30:3e:ba:5e:71:97:6f:
b2:08:64:c4:3f:e9:3b:37:a4:c4:36:fb:23:5d:ec:ad:cd:75:
b3:64:1f:dd:91:b5:99:a6:8a:8e:ae:ae:19:63:37:5a:e5:7c:
ea:f9:cb:29:f9:c6:c8:6c:25:79:83:5a:78:b5:da:e1:ac:61:
dc:8a:34:7d:62:09:e7:66:a7:af:da:89:af:1d:de:f3:18:e6:
84:d5:c3:51:a2:f5:0d:f3:ab:c1:4a:24:dc:aa:2f:e3:e3:0b:
28:86:76:49:74:30:21:c5:6e:0d:06:d7:90:7b:46:d5:63:f1:
40:ab:b4:c4:76:0d:9f:05:aa:e5:8b:c2:9d:bc:0b:97:96:01:
3d:ba:54:57:23:c8:67:34:41:6e:6f:21:1f:ad:15:b7:8b:b7:
25:bc:57:e2:c7:bc:7d:f7:25:b8:e4:72:5d:94:48:29:c3:ab:
76:21:d5:ba:f6:6c:eb:7b:65:2b:82:a2:1d:32:c1:4d:5e:f4:
07:77:ce:cf:22:88:df:91:33:6a:80:a7:08:fa:77:85:1d:f9:
b5:36:9b:91:ab:c9:b4:71:2a:ff:d8:ff:f3:d6:f1:2b:e4:62:
2f:3e:3e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:31:39 2024 by rpki-client on console-ams.rpki-client.org