Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/G4SmZTGSVxmbG6ScerUw03dAJSA.roa
File: G4SmZTGSVxmbG6ScerUw03dAJSA.roa (raw, json)
Hash identifier: XEF56sItv9VfKGCLVSFgnPltvM89sYgviiBZtfEWpmc=
Subject key identifier: 1B:84:A6:65:31:92:57:19:9B:1B:A4:9C:7A:B5:30:D3:77:40:25:20
Certificate issuer: /CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Certificate serial: 019121969ED78EC58B4D2C2397095FDA5D7B
Authority key identifier: 34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/G4SmZTGSVxmbG6ScerUw03dAJSA.roa
Signing time: Mon 05 Aug 2024 08:10:04 +0000
ROA not before: Mon 05 Aug 2024 08:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215655
IP address blocks: 185.145.184.0/22 maxlen: 22
185.186.48.0/24 maxlen: 24
185.186.49.0/24 maxlen: 24
185.186.50.0/24 maxlen: 24
185.186.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/NE_a0Q7lWzKCpkJGpB3GGoki0l0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/NE_a0Q7lWzKCpkJGpB3GGoki0l0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:21:96:9e:d7:8e:c5:8b:4d:2c:23:97:09:5f:da:5d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=344fdad10ee55b3282a64246a41dc61a8922d25d
Validity
Not Before: Aug 5 08:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b84a665319257199b1ba49c7ab530d377402520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:e0:2c:6a:0d:2a:24:f5:b2:98:03:46:d8:
2e:bb:28:df:64:89:eb:5d:83:e2:dd:16:88:e5:ca:
69:3a:ea:5e:ab:ba:d6:29:b7:48:cf:97:77:14:31:
c2:be:a3:24:b8:59:0d:e0:b9:11:45:69:8c:ad:76:
24:fc:62:4d:10:f0:89:60:33:92:08:3a:50:77:f5:
68:86:e8:59:15:9c:00:f1:e8:05:25:6c:a2:39:56:
8f:4b:5d:11:88:33:53:8a:c2:6d:42:d4:dd:bf:29:
30:0d:a9:79:33:d3:ac:4d:87:ae:48:c8:33:38:fb:
a5:7a:51:56:4e:d4:38:34:09:9a:13:70:9a:cf:bf:
fb:c1:6d:14:fd:f5:69:67:d4:b2:b2:4b:bc:44:6d:
b5:46:1e:d8:3d:60:65:f9:83:57:4b:2b:25:28:ff:
e9:12:8c:d8:26:1c:2a:45:54:50:a8:86:e7:d9:ab:
8d:49:cd:1c:81:0e:65:c2:ea:be:38:94:a9:16:0b:
ff:59:7d:a6:7f:bc:b7:27:ef:58:c0:be:a1:6b:08:
21:54:d5:76:d0:4a:54:30:82:84:69:19:02:2a:54:
1d:96:37:1e:49:4b:c2:9e:dc:94:a6:2d:03:1f:c1:
9c:4c:bb:d4:4d:21:95:c4:c9:b7:1e:5e:00:0c:9e:
11:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:84:A6:65:31:92:57:19:9B:1B:A4:9C:7A:B5:30:D3:77:40:25:20
X509v3 Authority Key Identifier:
keyid:34:4F:DA:D1:0E:E5:5B:32:82:A6:42:46:A4:1D:C6:1A:89:22:D2:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NE_a0Q7lWzKCpkJGpB3GGoki0l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/G4SmZTGSVxmbG6ScerUw03dAJSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/067630-306e-4c37-8bcc-4f021c73ef74/1/NE_a0Q7lWzKCpkJGpB3GGoki0l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.184.0/22
185.186.48.0/22
Signature Algorithm: sha256WithRSAEncryption
79:4e:9a:d3:96:cc:38:fe:a8:86:da:9c:ca:05:74:9c:3d:38:
31:3b:96:1c:ff:62:43:29:65:0b:2f:d5:6a:a8:e6:ea:bf:a3:
b6:5f:9c:d9:30:ad:75:5d:26:2d:15:96:de:b1:37:22:0a:cd:
6e:a4:94:ed:31:59:2f:cc:48:d3:d3:d6:ee:44:a5:c8:7e:0e:
11:d6:76:00:01:e6:d8:91:48:d9:83:fe:f2:97:07:c1:f4:11:
a2:b9:49:67:a9:06:ee:47:ad:61:c1:70:3a:d3:3e:d1:d2:51:
a0:ee:a7:ea:97:f4:fd:15:9a:53:2c:15:3c:92:e8:63:cb:ec:
06:c6:45:cc:c3:33:e0:ce:ae:f6:f1:4d:96:6d:a7:30:26:a1:
68:00:67:37:da:c1:d6:01:b8:b3:83:05:bd:43:1a:e8:88:89:
a9:1f:5d:09:f1:65:e7:e5:12:48:77:95:90:cb:78:be:f5:2d:
84:cf:d5:e2:c3:e0:29:32:56:02:40:b0:21:26:d0:e0:b3:46:
1d:2f:92:3b:ca:65:2c:b3:3c:00:bc:cd:21:e5:c8:f4:e7:2b:
6f:47:44:f6:49:20:f0:5d:cd:16:1c:16:41:33:81:9e:06:ff:
d0:ae:7f:82:54:61:cf:fb:bc:8d:4c:15:d6:86:f7:8a:fa:2c:
10:9e:77:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:08:16 2024 by rpki-client on console-ams.rpki-client.org