Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oBjxYOuUfbkaV17aQ1UFBL_ZEfI.roa
File: oBjxYOuUfbkaV17aQ1UFBL_ZEfI.roa (raw, json)
Hash identifier: smQmNFQmgZE51GqO1MF+3bkX+OR1d5PDT0UoL1SdhsM=
Subject key identifier: A0:18:F1:60:EB:94:7D:B9:1A:57:5E:DA:43:55:05:04:BF:D9:11:F2
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 0190DFB3777009DC49B7E25CD02D2E1A5238
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oBjxYOuUfbkaV17aQ1UFBL_ZEfI.roa
Signing time: Tue 23 Jul 2024 13:06:39 +0000
ROA not before: Tue 23 Jul 2024 13:06:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25070
IP address blocks: 81.15.246.0/24 maxlen: 24
195.136.174.0/24 maxlen: 24
195.136.180.0/23 maxlen: 23
195.136.182.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:df:b3:77:70:09:dc:49:b7:e2:5c:d0:2d:2e:1a:52:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jul 23 13:06:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a018f160eb947db91a575eda43550504bfd911f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:e3:c3:b1:8f:90:dd:21:6e:98:3c:d4:9a:
e3:0a:e3:88:9f:1c:8c:9e:bd:58:44:e0:47:ff:ac:
ce:62:5b:17:0a:66:b4:66:69:d1:31:0d:ff:4a:c6:
fa:99:97:43:66:5c:b0:92:94:87:b9:89:e5:c4:ce:
9e:5e:d5:e5:f0:85:9c:5c:79:64:45:2d:19:1d:06:
ae:34:4e:1e:96:05:ed:33:d3:0d:f8:9b:f4:85:09:
71:60:7b:cc:5a:ce:e0:20:5e:5e:c1:d3:32:e8:54:
0f:50:71:02:77:c7:4b:d0:dd:ce:b3:fe:61:4b:e8:
ab:8c:9b:9e:9c:64:8c:26:3e:22:51:76:29:5b:3f:
e1:92:41:60:1f:42:79:25:e8:88:34:c0:30:c3:27:
15:50:40:f0:98:93:da:27:99:8f:22:4a:6f:8c:47:
97:ee:eb:70:ad:ca:54:ef:04:57:42:4a:93:c7:04:
fd:e3:78:17:71:31:24:f7:a5:1e:e2:9e:2c:66:dc:
f4:59:c7:f5:1e:19:6d:a1:13:8a:7e:20:23:61:b0:
39:e6:a4:e7:69:15:1d:83:91:5d:49:7e:25:f6:d5:
16:00:cc:64:07:94:a9:d9:27:4d:e1:41:f6:5d:e2:
72:d9:80:0e:cd:bd:02:2e:3e:2f:6b:4b:04:65:9d:
9e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:18:F1:60:EB:94:7D:B9:1A:57:5E:DA:43:55:05:04:BF:D9:11:F2
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oBjxYOuUfbkaV17aQ1UFBL_ZEfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.246.0/24
195.136.174.0/24
195.136.180.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:86:3a:ec:bc:a0:b2:19:45:c4:21:b0:4a:d9:72:9e:88:fc:
48:08:27:bb:75:3a:7f:c3:b0:2b:20:e4:8b:e9:32:42:2d:7f:
af:67:67:51:ba:8e:6f:9c:ab:12:fe:07:6d:6f:3b:d8:db:32:
65:a1:f2:24:b3:ac:b9:0f:1a:cf:ff:1a:7e:b6:ca:4d:67:51:
9b:56:dd:49:64:92:5e:13:30:5c:05:b2:4c:13:a6:ef:a2:73:
ed:35:47:fd:91:a0:b9:dc:ae:fd:1c:87:40:41:93:df:6d:05:
ce:83:13:4b:db:f2:d1:21:cb:5a:20:8c:3d:cf:92:83:52:94:
76:2e:41:5a:7e:4c:1e:44:1e:53:1a:6b:2a:5a:39:4b:80:16:
7a:1f:cc:d0:8a:7b:ea:79:dc:9e:33:17:7c:e2:8e:c7:0d:f4:
11:b1:bd:56:5e:96:af:20:5b:7e:f7:fd:e2:e9:79:32:9c:4c:
17:10:ec:53:7d:b0:ec:29:c6:7b:eb:a5:83:68:e0:dc:7b:30:
2e:0d:0c:9f:21:14:24:c2:c5:ab:e7:88:67:e0:9d:a0:fc:23:
37:b7:98:96:17:40:37:c5:50:c7:42:1d:ef:78:f8:19:6f:ca:
3b:ad:6a:45:6d:47:f7:53:a7:90:45:fb:dd:b8:c7:43:71:7d:
fb:cc:7d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:47:44 2024 by rpki-client on console-fra.rpki-client.org