Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/8cewFw2Ya_Xty0L56n6T8K_yHuY.roa
File: 8cewFw2Ya_Xty0L56n6T8K_yHuY.roa (raw, json)
Hash identifier: EOf9GOdSZWxxi0yz8EzaSRDQUy8IlAJo1LcYK2qCQzs=
Subject key identifier: F1:C7:B0:17:0D:98:6B:F5:ED:CB:42:F9:EA:7E:93:F0:AF:F2:1E:E6
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 0191925224EA2F4CAD52E3E6AC46834FA2AF
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/8cewFw2Ya_Xty0L56n6T8K_yHuY.roa
Signing time: Tue 27 Aug 2024 05:32:22 +0000
ROA not before: Tue 27 Aug 2024 05:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43212
IP address blocks: 151.247.184.0/22 maxlen: 22
151.247.193.0/24 maxlen: 24
151.247.194.0/24 maxlen: 24
151.247.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:52:24:ea:2f:4c:ad:52:e3:e6:ac:46:83:4f:a2:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Aug 27 05:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1c7b0170d986bf5edcb42f9ea7e93f0aff21ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:27:e4:c0:f0:fc:05:6c:2d:9e:04:17:1d:
2e:e2:cc:b1:d0:b3:7c:de:40:aa:24:10:f8:d6:40:
c5:ca:2a:c8:da:1e:dc:4f:6a:bc:8a:3e:7f:5d:76:
e1:ff:03:fe:eb:d8:eb:02:06:8c:61:7b:8a:b9:fa:
b8:50:3c:6f:fd:39:c7:1d:12:a9:fa:32:07:ca:88:
47:1e:22:3c:78:eb:b7:59:28:55:96:44:28:4f:81:
9e:16:b1:26:58:e6:57:44:07:b6:45:da:fc:3a:76:
11:08:fd:3a:81:f2:a6:67:b6:4b:97:ae:cb:3d:8d:
d4:f1:ed:df:f3:17:69:66:3d:78:c5:03:48:9a:14:
6b:16:32:ff:59:4f:37:1a:07:43:df:28:46:c6:e7:
1f:1e:07:a9:2a:be:24:25:1f:a9:34:f2:50:f6:01:
20:2f:41:44:9e:6b:cf:1c:f9:c1:b7:96:75:0d:b4:
5b:bb:a3:cc:41:03:e2:4e:30:33:2b:df:22:c2:af:
a3:dd:6e:a0:88:0d:7e:a2:53:0b:6a:72:a8:f9:ff:
e5:0d:a4:21:11:31:47:4b:b6:1c:b2:ff:1b:f5:cc:
86:9a:cf:e6:82:b5:bb:5f:ee:ca:16:9e:9b:34:a7:
99:bb:d5:2d:bf:05:f6:0c:b0:9d:7a:dd:80:66:41:
24:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C7:B0:17:0D:98:6B:F5:ED:CB:42:F9:EA:7E:93:F0:AF:F2:1E:E6
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/8cewFw2Ya_Xty0L56n6T8K_yHuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.247.184.0/22
151.247.193.0-151.247.195.255
Signature Algorithm: sha256WithRSAEncryption
37:c2:8b:39:b0:92:33:4e:a1:db:06:14:e6:3d:0b:43:cd:7e:
5f:52:e4:49:fc:3a:41:77:06:6e:68:95:ad:0a:73:0a:0d:ef:
8d:53:5e:70:60:c6:05:25:33:17:fe:65:64:5e:d4:47:6d:45:
ca:55:c5:0f:d6:3c:c1:a0:3c:5b:fa:c3:9c:5f:ec:ff:d3:c5:
b6:f7:fa:0c:d8:11:42:2d:06:dc:b3:c1:e4:62:4a:1f:e7:08:
ad:7d:6b:49:12:e6:a7:30:04:6f:66:11:06:7d:c4:ec:72:14:
05:d9:a6:ce:3c:5c:e7:8b:b3:63:00:db:fc:84:d7:f7:36:48:
fc:1c:2d:e7:4e:ef:09:f8:41:29:7a:44:95:d7:c7:45:f4:9f:
03:53:ec:30:53:f8:38:3d:26:77:f6:a5:e6:13:0e:ff:5f:4d:
5b:d0:a9:6f:d6:92:56:0e:38:1a:21:41:8c:71:0b:32:c6:e3:
25:bf:19:0e:d3:67:0c:ae:a0:57:ed:45:1f:6d:a9:48:ba:54:
e9:37:e1:1d:13:94:53:80:c5:5f:b1:4a:84:40:df:30:5d:19:
7c:b7:ed:ad:cd:7e:71:48:06:17:93:6e:0b:76:5b:89:be:79:
9b:c8:8a:7e:04:bd:29:42:25:20:38:44:4d:de:3c:ea:81:a4:
c5:77:df:54
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:21:14 2024 by rpki-client on console-ams.rpki-client.org