Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/vPSGJWbqDK7AQZ7Q636MCaDn-vo.roa
File: vPSGJWbqDK7AQZ7Q636MCaDn-vo.roa (raw, json)
Hash identifier: 49GImahli7dKJ+0nDX2fmxVFZ/TWSGZYmvQBv+W1Bcg=
Subject key identifier: BC:F4:86:25:66:EA:0C:AE:C0:41:9E:D0:EB:7E:8C:09:A0:E7:FA:FA
Certificate issuer: /CN=7015ed275005408d2a86a2303701744430eda34a
Certificate serial: 018CC7272FE09E6A28B509A198BCD313D02A
Authority key identifier: 70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/vPSGJWbqDK7AQZ7Q636MCaDn-vo.roa
Signing time: Mon 01 Jan 2024 22:31:23 +0000
ROA not before: Mon 01 Jan 2024 22:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 193.25.50.0/24 maxlen: 24
193.25.49.0/24 maxlen: 24
193.25.48.0/24 maxlen: 24
193.25.51.0/24 maxlen: 24
193.25.57.0/24 maxlen: 24
193.25.56.0/24 maxlen: 24
193.25.55.0/24 maxlen: 24
193.25.54.0/24 maxlen: 24
193.25.58.0/24 maxlen: 24
193.25.53.0/24 maxlen: 24
193.25.52.0/24 maxlen: 24
193.25.60.0/24 maxlen: 24
193.25.59.0/24 maxlen: 24
193.25.63.0/24 maxlen: 24
193.25.62.0/24 maxlen: 24
193.25.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 16:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2f:e0:9e:6a:28:b5:09:a1:98:bc:d3:13:d0:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7015ed275005408d2a86a2303701744430eda34a
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcf4862566ea0caec0419ed0eb7e8c09a0e7fafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2d:06:39:0f:36:b6:33:78:a8:f9:30:a6:a0:
c5:cb:66:46:2b:06:9c:d2:b9:c3:37:cf:06:63:96:
c9:d4:22:1c:4f:84:28:46:04:b7:36:b9:e2:8d:12:
99:b6:c4:70:13:db:33:5c:f8:80:a9:14:0e:ed:9a:
f9:03:aa:1e:d6:b9:7b:7f:5a:f1:b0:92:72:5e:4f:
82:88:f5:2c:b2:aa:a9:a1:e9:4f:36:45:e8:99:31:
85:84:d8:5c:af:df:e3:54:33:a8:9f:0b:b9:39:cd:
0c:97:44:b0:d0:11:a7:33:c0:95:97:a4:ed:62:f5:
7c:9d:fc:5b:b9:88:63:c8:58:de:a6:7d:61:ce:2e:
22:43:7a:27:dd:df:76:f5:79:fa:94:30:96:ba:65:
18:f1:01:fa:66:7c:20:3e:3c:02:55:ec:a7:c4:ef:
9f:fa:38:d4:d7:00:3a:c5:05:c2:78:c6:f7:22:5d:
9d:81:10:c2:db:d4:79:67:64:23:1d:96:58:04:c8:
5a:46:55:3d:00:26:7d:66:65:e7:ab:96:d7:d6:76:
24:cb:1c:55:27:c8:52:08:a6:a2:9f:d8:f2:04:de:
a9:54:1f:58:5b:c9:ae:88:db:a9:03:67:a1:1d:72:
e2:fe:eb:6d:b1:cf:60:34:aa:da:7c:b8:06:17:00:
4d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F4:86:25:66:EA:0C:AE:C0:41:9E:D0:EB:7E:8C:09:A0:E7:FA:FA
X509v3 Authority Key Identifier:
keyid:70:15:ED:27:50:05:40:8D:2A:86:A2:30:37:01:74:44:30:ED:A3:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBXtJ1AFQI0qhqIwNwF0RDDto0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/vPSGJWbqDK7AQZ7Q636MCaDn-vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ddf529-1536-44f0-9eda-4dad48a16e42/1/cBXtJ1AFQI0qhqIwNwF0RDDto0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.48.0/20
Signature Algorithm: sha256WithRSAEncryption
29:a4:02:b0:0c:cd:d8:7d:d2:ca:e0:6b:11:20:b9:17:b0:e2:
ef:9b:76:81:2e:55:ad:c2:4d:71:fb:95:9c:ce:ee:b7:9a:e3:
ff:9c:e2:7a:a3:db:ab:1d:e9:f1:56:d7:21:77:b9:56:bd:3b:
3c:05:08:e3:c7:aa:79:44:68:e5:f4:83:e0:d3:e8:de:bb:b1:
33:d2:c3:5d:0e:5b:ee:8b:d1:48:d5:1c:9e:42:0f:c0:9a:d3:
62:d4:99:f5:78:9a:27:44:84:3c:95:33:6b:1f:4f:97:f3:b8:
2f:2e:5a:41:93:59:86:39:39:a1:76:a7:fc:79:2c:c0:c7:10:
7a:c8:0d:5b:e8:0e:0b:30:58:5b:60:4a:ed:f8:52:13:b0:d8:
14:46:43:58:5a:e1:42:18:6b:85:5e:a8:43:09:29:2f:df:13:
4f:4c:1b:b7:9c:a0:57:45:54:f3:26:6b:e8:8b:83:8b:9a:a2:
22:cb:6b:56:ec:19:51:c8:43:0f:00:4d:f1:b1:e1:b1:65:df:
10:8c:5e:3d:82:29:b4:f1:41:fb:18:67:85:77:e5:88:48:40:
5f:4d:8a:75:68:bc:87:f1:92:8f:11:8d:71:9f:1a:7e:ee:9e:
79:64:68:36:98:83:16:fc:d6:d1:f2:c0:19:1e:ce:2d:3d:9e:
24:5c:40:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:23:59 2024 by rpki-client on console-ams.rpki-client.org