Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/VRLooAuNDUdh-wSutITLeYLqpnc.roa
File: VRLooAuNDUdh-wSutITLeYLqpnc.roa (raw, json)
Hash identifier: /x7ItC88yuLZKgYkv/Au8BExfWdqpe2Hr+9tAx9YpiM=
Subject key identifier: 55:12:E8:A0:0B:8D:0D:47:61:FB:04:AE:B4:84:CB:79:82:EA:A6:77
Certificate issuer: /CN=536c4c94fed4fa8b903f6f6fb5340484c0e4a4d3
Certificate serial: 018CC2DABE00E5D84829CC7F7397CC465C70
Authority key identifier: 53:6C:4C:94:FE:D4:FA:8B:90:3F:6F:6F:B5:34:04:84:C0:E4:A4:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2xMlP7U-ouQP29vtTQEhMDkpNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/VRLooAuNDUdh-wSutITLeYLqpnc.roa
Signing time: Mon 01 Jan 2024 02:29:24 +0000
ROA not before: Mon 01 Jan 2024 02:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64427
IP address blocks: 212.114.90.0/24 maxlen: 24
185.181.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/U2xMlP7U-ouQP29vtTQEhMDkpNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/U2xMlP7U-ouQP29vtTQEhMDkpNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2xMlP7U-ouQP29vtTQEhMDkpNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 01:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:be:00:e5:d8:48:29:cc:7f:73:97:cc:46:5c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536c4c94fed4fa8b903f6f6fb5340484c0e4a4d3
Validity
Not Before: Jan 1 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5512e8a00b8d0d4761fb04aeb484cb7982eaa677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:e1:8e:c9:a0:4a:89:7e:d5:ad:5a:3d:de:
73:ae:09:cb:d9:42:8d:dd:7d:fb:c7:6b:d4:50:fb:
11:24:58:07:e2:8b:09:59:11:98:9a:5c:18:c3:d0:
41:7d:69:14:9d:a9:4b:93:51:38:65:10:dc:38:27:
53:47:6a:66:51:12:63:e2:13:28:65:78:02:8e:4a:
d9:ed:9d:17:fb:9f:01:3b:5e:a5:71:1e:2d:b3:15:
c4:f0:de:d9:0a:f4:f7:dd:d5:53:43:c9:06:f8:58:
1c:8e:b7:44:6e:1d:a6:39:6c:2e:74:0b:c3:7d:9d:
08:4c:a8:34:1c:43:49:d6:24:09:16:12:22:1c:d9:
5b:76:72:2d:f9:37:b9:d5:4e:30:d4:f6:ac:ce:61:
8f:8d:e8:63:52:2a:ff:f7:e6:84:1c:b7:3d:d9:47:
bf:6f:c6:4b:24:c4:c4:3d:42:3f:85:c9:06:e0:88:
fb:ca:02:3c:fb:3a:cd:15:0a:95:d4:a2:ae:ff:15:
53:0a:1f:aa:fb:b6:c7:b6:61:ac:c4:2f:bc:44:5f:
e0:9c:b8:16:32:ed:03:6d:14:a1:b8:0a:e6:11:c1:
33:ac:fa:a5:79:98:1b:28:48:2c:e8:e6:1a:13:d2:
57:e8:d2:dc:7e:d7:a1:23:62:d8:c9:3a:22:ea:0b:
73:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:12:E8:A0:0B:8D:0D:47:61:FB:04:AE:B4:84:CB:79:82:EA:A6:77
X509v3 Authority Key Identifier:
keyid:53:6C:4C:94:FE:D4:FA:8B:90:3F:6F:6F:B5:34:04:84:C0:E4:A4:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2xMlP7U-ouQP29vtTQEhMDkpNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/VRLooAuNDUdh-wSutITLeYLqpnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/U2xMlP7U-ouQP29vtTQEhMDkpNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.188.0/24
212.114.90.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:71:08:b4:4c:32:b4:05:fb:cd:b3:62:85:ed:11:85:9b:de:
f6:62:b0:0d:92:0b:68:72:2b:f0:63:b8:b6:04:96:92:85:1c:
43:d5:d0:20:d5:15:b4:d9:ef:49:2c:b7:47:f4:cd:0c:49:fc:
5a:42:f2:2c:7b:40:c4:b4:83:4d:6a:52:39:54:20:18:fa:da:
09:30:d1:5b:c7:f2:00:86:7f:87:21:ce:e8:8a:b2:11:ab:5b:
13:24:f4:e2:aa:af:3e:1b:c0:b3:ca:e3:9d:1d:f6:1e:c5:53:
36:0b:38:14:f5:3f:73:e4:bf:73:0b:e7:b0:cf:11:b2:89:8a:
f1:6c:e1:5f:85:cc:2f:0a:d3:ec:f6:f9:3a:f2:d5:15:39:fb:
a9:58:d9:bd:e9:02:77:e8:22:6c:3f:c9:1b:35:09:15:2f:83:
fc:cf:94:67:4e:08:aa:33:9d:3d:2b:b7:b1:85:24:85:25:3a:
8d:ad:61:36:0d:2b:b4:37:82:c4:04:8f:ee:00:17:a9:69:ea:
9f:41:0d:f5:7d:5b:30:20:ed:02:ce:14:c7:40:f6:8a:40:16:
d0:76:07:97:b8:bd:34:e3:f5:09:ac:67:12:29:bd:7f:91:dc:
00:99:e6:35:db:ae:f3:1a:f8:e3:ad:af:dd:08:c3:41:76:14:
73:36:41:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 06:35:45 2024 by rpki-client on console-ams.rpki-client.org