Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ql6KXp7PNU-jG0yxSWZ385OUfkM.roa
File: Ql6KXp7PNU-jG0yxSWZ385OUfkM.roa (raw, json)
Hash identifier: sCXzfSxg9z85kH4AyI1U2lOWn0P9sMhbdlM+aNsTWsQ=
Subject key identifier: 42:5E:8A:5E:9E:CF:35:4F:A3:1B:4C:B1:49:66:77:F3:93:94:7E:43
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DAE1217C20B1559FB2F33954004BFB
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ql6KXp7PNU-jG0yxSWZ385OUfkM.roa
Signing time: Mon 01 Jan 2024 02:29:33 +0000
ROA not before: Mon 01 Jan 2024 02:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204744
IP address blocks: 195.136.65.0/24 maxlen: 24
195.136.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:e1:21:7c:20:b1:55:9f:b2:f3:39:54:00:4b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=425e8a5e9ecf354fa31b4cb1496677f393947e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3e:5c:6d:e2:8b:fd:e7:1d:77:fd:45:84:5c:
39:12:b1:72:0d:46:45:4c:ca:4a:97:88:c5:f4:f9:
46:65:44:94:99:8e:c4:bb:24:1b:41:df:12:58:bc:
b4:90:2e:04:1b:24:0d:0f:0b:52:cc:59:71:6b:99:
e4:cf:8a:8a:57:23:a4:03:e6:9b:28:18:17:18:32:
cd:4c:26:63:b2:16:23:31:f8:ac:24:e2:c1:2c:85:
3c:c4:bf:c9:dc:6a:d4:4b:61:fd:56:b5:6d:20:9c:
42:64:ec:fa:a8:8e:86:9f:ae:81:be:b5:e3:bc:a1:
0b:a1:58:79:0b:bc:70:82:fe:6b:d3:49:72:d2:7d:
cc:4a:db:f0:6f:5e:e8:f8:be:48:d6:b3:dd:29:10:
18:91:43:3e:3b:df:59:82:2e:19:23:6a:ba:92:42:
4c:a0:dc:92:b9:37:02:bf:0f:61:80:e3:ef:ab:d9:
7c:71:a3:43:67:17:0e:10:1f:71:d9:ab:86:c7:6b:
80:00:47:34:28:28:e1:f4:ed:e5:5a:43:b4:e4:e6:
60:db:21:92:ad:1e:2d:e1:24:b4:3d:e6:19:61:26:
09:30:1c:e2:5d:63:7d:14:b5:f3:e1:9b:76:0c:7d:
c3:7f:5f:3b:5d:32:73:8d:cd:4e:1d:f0:26:4e:ce:
40:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5E:8A:5E:9E:CF:35:4F:A3:1B:4C:B1:49:66:77:F3:93:94:7E:43
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Ql6KXp7PNU-jG0yxSWZ385OUfkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.27.0/24
195.136.65.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:23:35:61:96:48:56:49:a2:1c:68:4d:9f:d6:6b:16:19:16:
5e:3f:7c:44:7b:ed:58:f1:a2:85:15:a0:3f:64:5b:a7:a8:2d:
03:ee:cd:59:72:c7:b6:df:1e:a3:4a:48:eb:d2:86:00:fc:c3:
ae:0e:19:59:ca:1b:36:7c:6b:99:97:84:be:5e:e5:99:a2:44:
96:ae:91:3d:c7:53:11:28:10:9f:bd:93:bc:38:8e:32:63:a9:
ba:47:7a:a6:bf:1c:c4:59:aa:06:b8:80:79:63:22:bd:cb:94:
d0:01:59:2a:2a:26:3b:21:57:4b:80:4f:3b:ac:4f:ff:80:e2:
a2:0a:f5:34:4e:00:d3:22:9c:35:74:29:22:fe:10:bc:37:2c:
36:22:c0:e4:b9:8f:04:65:f1:ab:5d:1a:94:b7:18:dc:4c:cc:
b3:ec:4b:ae:5d:74:27:c7:6e:54:c5:68:64:f6:8b:ea:b0:5e:
ce:b8:2f:ad:0e:28:f5:58:f5:f5:7c:6b:29:4b:d7:af:7d:e6:
d6:85:0c:35:67:d9:fc:ec:a3:8c:1f:28:80:e6:20:2e:ad:4f:
9a:9d:99:87:dd:c8:55:da:e7:b3:1f:38:d5:66:65:ee:59:4f:
5e:36:d5:d2:ab:ea:4e:1a:b0:a6:69:7f:15:63:58:e3:68:5f:
64:79:d9:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:32:45 2024 by rpki-client on console-ams.rpki-client.org