Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/yxvy1WWyrDcEm68sYiJCsaCFMaI.roa
File: yxvy1WWyrDcEm68sYiJCsaCFMaI.roa (raw, json)
Hash identifier: QwstWVmD2yZapZMke/ftXGCQmr/4vQX7ER7VinOSnF4=
Subject key identifier: CB:1B:F2:D5:65:B2:AC:37:04:9B:AF:2C:62:22:42:B1:A0:85:31:A2
Certificate issuer: /CN=b7ac780eb2042c8c57001b65ef156e6f5931239b
Certificate serial: 018CC72752A88DBF9B1DAEB346BE254C4528
Authority key identifier: B7:AC:78:0E:B2:04:2C:8C:57:00:1B:65:EF:15:6E:6F:59:31:23:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6x4DrIELIxXABtl7xVub1kxI5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/yxvy1WWyrDcEm68sYiJCsaCFMaI.roa
Signing time: Mon 01 Jan 2024 22:31:32 +0000
ROA not before: Mon 01 Jan 2024 22:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198622
IP address blocks: 185.167.164.0/22 maxlen: 24
2a0b:7e00:1000::/36 maxlen: 48
2a0b:7e00::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/t6x4DrIELIxXABtl7xVub1kxI5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/t6x4DrIELIxXABtl7xVub1kxI5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/t6x4DrIELIxXABtl7xVub1kxI5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:52:a8:8d:bf:9b:1d:ae:b3:46:be:25:4c:45:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7ac780eb2042c8c57001b65ef156e6f5931239b
Validity
Not Before: Jan 1 22:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb1bf2d565b2ac37049baf2c622242b1a08531a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:14:98:c6:8d:8e:81:7f:2f:d7:be:be:ed:86:
b7:93:be:ac:8f:f5:24:39:3f:d0:d2:c4:d2:93:65:
ed:6a:ee:5f:ec:f3:6a:2b:56:b6:d3:d3:ca:84:7e:
39:3c:56:9a:31:37:07:ed:34:0c:cf:3a:21:c8:1b:
be:71:ea:9f:27:bd:85:c0:32:41:80:59:22:63:a9:
df:a5:7c:65:82:68:79:a3:ea:da:d9:a2:41:f5:48:
70:d0:e3:70:3d:25:29:a6:5e:9e:04:26:0f:aa:14:
dd:2f:82:d2:45:d9:5c:64:08:5c:79:b9:4f:12:fc:
9b:fb:a6:f5:76:ff:da:36:07:86:3f:6f:2f:5a:79:
69:8c:5f:5c:2b:3c:b7:1c:ee:de:ff:3c:3a:20:06:
8d:88:7d:5b:cb:45:b6:fb:ad:63:bc:06:f3:17:01:
7e:8f:86:d2:00:ff:2a:1a:cb:d3:b6:04:3a:0b:da:
2f:d4:4a:7f:25:0b:f1:2d:df:05:f4:06:46:8f:1d:
43:69:50:0d:d1:cb:11:72:b0:c9:29:47:40:80:d0:
b3:4b:5c:5b:a6:cb:13:09:85:3a:22:7a:62:ad:fd:
a2:0c:b9:cf:4d:e3:a7:a6:ae:0f:65:5a:9e:1f:e4:
21:17:5b:ff:fe:e0:72:3f:54:09:53:c3:15:eb:a4:
d7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1B:F2:D5:65:B2:AC:37:04:9B:AF:2C:62:22:42:B1:A0:85:31:A2
X509v3 Authority Key Identifier:
keyid:B7:AC:78:0E:B2:04:2C:8C:57:00:1B:65:EF:15:6E:6F:59:31:23:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6x4DrIELIxXABtl7xVub1kxI5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/yxvy1WWyrDcEm68sYiJCsaCFMaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/190d47-68da-44d2-950e-37664d75b254/1/t6x4DrIELIxXABtl7xVub1kxI5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.164.0/22
IPv6:
2a0b:7e00::/35
Signature Algorithm: sha256WithRSAEncryption
58:93:d7:62:9f:7e:8b:1e:65:35:fe:62:a6:15:42:ac:f8:cb:
fd:5c:1e:c8:c7:f2:78:93:88:f7:10:02:e6:0a:17:dc:af:6a:
91:df:41:d1:5c:95:f9:ef:77:e9:0c:3f:74:f1:3c:6b:ed:d4:
72:f2:69:9b:67:42:a4:98:b3:cd:1d:59:5a:34:7f:e1:a6:0e:
54:1c:1a:5e:31:45:86:06:23:92:58:f4:71:1f:9d:7b:62:0d:
7a:28:34:9f:75:ad:2a:7c:03:74:11:0e:66:f5:58:25:1b:f5:
62:32:52:3f:c4:ca:0a:c4:bd:e1:1e:5e:5e:7e:80:4d:60:32:
23:71:d8:11:e4:11:7d:66:2f:f4:f4:aa:c2:f2:8f:82:7a:fb:
e5:a8:9f:50:f3:0b:c5:36:07:de:22:df:45:c5:a1:07:cb:8a:
68:37:9a:e5:67:a1:5e:4e:df:97:2a:c7:b7:83:26:7a:34:20:
a1:67:44:33:ff:56:de:f3:92:d7:fc:82:af:d1:19:e5:a1:24:
fb:f2:d4:e3:3b:91:ed:4c:5d:50:6f:68:a8:0f:c8:a0:63:23:
e1:00:1c:19:3a:35:c2:16:82:34:9e:f5:90:8b:0f:9f:f1:9c:
3f:4a:fa:11:1c:7a:89:f8:7f:f4:57:ee:9c:bc:db:4c:e2:76:
b2:1a:df:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:11:36 2024 by rpki-client on console-ams.rpki-client.org