Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/Tb1YLER051wKWSi2muLZIaQHtTw.roa
File: Tb1YLER051wKWSi2muLZIaQHtTw.roa (raw, json)
Hash identifier: uSDFbr2ujSEH5n1T8zHbZYfV5mAKnvt0ErcR03BRxHE=
Subject key identifier: 4D:BD:58:2C:44:74:E7:5C:0A:59:28:B6:9A:E2:D9:21:A4:07:B5:3C
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018CC6B88F88F6A2EC343BB3A83E05B9213B
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/Tb1YLER051wKWSi2muLZIaQHtTw.roa
Signing time: Mon 01 Jan 2024 20:30:33 +0000
ROA not before: Mon 01 Jan 2024 20:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44380
IP address blocks: 195.93.206.0/23 maxlen: 23
195.191.146.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 14:20:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:8f:88:f6:a2:ec:34:3b:b3:a8:3e:05:b9:21:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 20:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4dbd582c4474e75c0a5928b69ae2d921a407b53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:96:9d:a6:43:8c:e5:1f:30:8a:76:21:04:9c:
02:67:0b:8a:e3:57:4e:9d:17:9d:3d:b6:50:0d:e2:
8e:30:00:c7:d2:22:53:13:ca:74:e3:f2:5a:ba:f2:
1c:97:6c:cf:af:d3:91:5c:eb:e0:37:38:19:43:0e:
96:bd:40:7b:9f:bd:c7:c2:85:99:da:6e:d5:96:5c:
ea:17:ce:72:3c:1b:5e:0c:72:27:a3:85:5c:04:58:
6c:d0:11:c1:81:b5:d7:39:63:30:11:c0:bf:d8:57:
a2:c5:38:37:e2:9e:84:79:9a:86:63:45:88:61:a0:
3d:86:73:de:97:60:ac:e2:71:76:c6:93:1f:78:57:
19:50:b2:0c:3a:9d:d2:c1:0e:42:34:01:71:7e:1d:
d7:50:ab:08:cf:ef:1a:c6:e4:5f:41:0a:5f:d3:df:
02:bf:54:e1:7d:1c:d4:56:ef:74:19:10:21:9a:92:
31:81:c4:dd:da:27:27:54:6c:f4:f2:a7:1c:e3:2a:
ea:03:be:b0:c0:49:3b:79:e0:75:70:ce:c2:e2:80:
f4:87:ac:1d:c8:ad:db:18:47:e0:54:68:b1:7c:bf:
4d:85:a3:b4:12:1e:09:8f:06:47:11:fe:37:bf:0d:
94:bc:8d:5f:da:0f:30:de:9f:42:a1:e0:35:50:23:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BD:58:2C:44:74:E7:5C:0A:59:28:B6:9A:E2:D9:21:A4:07:B5:3C
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/Tb1YLER051wKWSi2muLZIaQHtTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.206.0/23
195.191.146.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:b9:e4:18:5d:81:f0:2b:27:b9:d1:04:7e:37:e6:d2:35:a7:
aa:ae:4a:28:3f:c6:34:20:6c:30:0f:43:cc:f2:7a:18:ba:72:
36:11:b4:4d:0e:17:ae:de:e5:47:50:d0:35:26:37:9e:29:f1:
a7:8c:b8:84:49:f2:0e:9b:79:7d:58:c6:31:00:f5:02:a8:c7:
a7:2a:8b:de:80:56:05:d0:d3:98:dd:9e:48:77:cd:d9:dc:be:
f6:85:e8:1a:b0:4c:25:5f:5b:60:38:34:1d:26:ee:59:02:69:
c9:f4:73:1f:63:3b:8a:ba:81:05:31:e5:33:39:dc:52:f6:1b:
09:6a:55:38:14:96:e5:dc:8d:ed:48:4d:b3:0f:b9:72:f1:5c:
04:0f:df:09:27:dd:85:50:6e:2e:87:74:35:95:43:47:0e:97:
2b:f3:fe:12:dc:44:19:20:21:4d:1c:14:40:b3:e3:9a:ad:e7:
08:9b:d9:c8:c8:be:cf:9b:35:a5:1b:76:3b:a4:f3:52:2f:c3:
6f:d2:7a:e8:88:14:e3:ba:d0:d4:9b:18:07:bc:de:f0:9f:17:
ac:0a:5a:55:40:3b:07:7a:fa:bd:cb:5d:af:3b:fe:37:ff:dc:
e3:2d:c8:55:ab:2c:de:f0:27:3a:f7:f4:be:ba:40:e8:9e:22:
e6:56:67:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 22:52:48 2024 by rpki-client on console-ams.rpki-client.org