Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/4Ck9bZMBGWcnKQRA848-GfiU8jQ.roa
File: 4Ck9bZMBGWcnKQRA848-GfiU8jQ.roa (raw, json)
Hash identifier: nOeQAjUXGG4jUR7zsVZSTCmiapClHvV6ZL4tcnrFBg4=
Subject key identifier: E0:29:3D:6D:93:01:19:67:27:29:04:40:F3:8F:3E:19:F8:94:F2:34
Certificate issuer: /CN=191a96a28c65d584c8dd234d3db444cf4b337ba2
Certificate serial: 018CC50126E247FCEB5E76BA6B569E4B458A
Authority key identifier: 19:1A:96:A2:8C:65:D5:84:C8:DD:23:4D:3D:B4:44:CF:4B:33:7B:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GRqWooxl1YTI3SNNPbREz0sze6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/4Ck9bZMBGWcnKQRA848-GfiU8jQ.roa
Signing time: Mon 01 Jan 2024 12:30:36 +0000
ROA not before: Mon 01 Jan 2024 12:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16552
IP address blocks: 46.31.232.0/21 maxlen: 24
185.165.54.0/24 maxlen: 28
185.165.52.0/24 maxlen: 28
185.165.55.0/24 maxlen: 28
185.165.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/GRqWooxl1YTI3SNNPbREz0sze6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/GRqWooxl1YTI3SNNPbREz0sze6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/GRqWooxl1YTI3SNNPbREz0sze6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 20:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:26:e2:47:fc:eb:5e:76:ba:6b:56:9e:4b:45:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=191a96a28c65d584c8dd234d3db444cf4b337ba2
Validity
Not Before: Jan 1 12:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0293d6d9301196727290440f38f3e19f894f234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:ff:f0:bb:cf:9e:83:3b:73:e8:69:fa:7f:
30:99:eb:6d:3e:ff:fc:dd:1c:94:e3:1a:2e:77:37:
8f:d3:09:58:4e:50:14:c7:55:3e:1b:0d:ae:40:ce:
ce:8f:10:9e:e3:59:b0:c4:4d:55:5f:db:86:01:a8:
49:20:96:2e:c5:a3:0d:ef:82:d5:97:6c:21:df:26:
a0:35:f2:8c:d7:b0:f4:b6:48:8a:4a:12:c8:ca:70:
36:e4:90:67:ab:3a:60:e3:6d:cb:59:93:20:b5:93:
7f:05:18:fe:68:9a:69:a0:88:90:64:21:c4:69:d8:
e4:ec:52:d7:12:16:62:d6:68:ff:57:dd:20:1c:45:
00:56:f7:0b:96:77:e5:97:e1:5a:ae:9f:09:98:a4:
34:7c:b5:68:bc:24:a3:43:80:a1:dc:fe:70:0a:a3:
de:4d:76:96:88:0b:f7:3a:92:45:29:19:0c:e5:4a:
a3:2c:5e:ee:80:7b:7c:29:42:31:d3:8c:da:db:06:
93:17:22:ef:3b:d6:d6:f8:12:4b:32:ee:a2:79:89:
2e:90:ae:1c:2c:50:3c:a2:b6:b8:3f:63:a4:72:ff:
7f:23:a4:66:84:8f:75:9b:77:47:42:d0:6e:bf:94:
a8:cc:b0:d8:45:7f:20:9c:9c:11:47:f5:9f:e7:65:
0a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:29:3D:6D:93:01:19:67:27:29:04:40:F3:8F:3E:19:F8:94:F2:34
X509v3 Authority Key Identifier:
keyid:19:1A:96:A2:8C:65:D5:84:C8:DD:23:4D:3D:B4:44:CF:4B:33:7B:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GRqWooxl1YTI3SNNPbREz0sze6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/4Ck9bZMBGWcnKQRA848-GfiU8jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/5e0298-0d6b-41b4-88f6-9185199a18c0/1/GRqWooxl1YTI3SNNPbREz0sze6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.232.0/21
185.165.52.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:bf:8d:7c:ed:fe:af:e9:39:d2:62:d4:87:78:7e:0f:8c:75:
44:75:e9:bd:f7:61:9d:9d:06:c9:72:51:37:e1:8d:da:51:25:
d6:bc:32:2d:c0:c8:53:f9:7d:d6:5f:06:dc:a1:f7:95:64:8d:
c6:47:b2:06:1b:b8:c3:92:a8:46:a7:56:fd:f7:39:a2:b7:a1:
8f:c1:db:a9:19:f0:f7:d5:c2:5b:5a:7f:7b:bc:f6:fa:26:7b:
de:82:4f:46:25:3f:5d:1e:a8:8e:7c:88:82:eb:19:68:c4:ac:
fd:17:4e:ec:61:e0:c0:be:83:c1:66:1e:00:98:0d:fc:10:32:
1c:d1:75:64:9f:07:f1:4a:9e:bf:8d:17:af:0e:20:9d:ef:a0:
7d:85:44:1d:0d:9d:f9:66:e4:43:5a:c6:90:cc:02:35:30:4b:
20:d5:02:ea:14:78:9f:c2:a4:8c:80:33:36:f2:66:fc:4b:97:
1c:ea:3b:fb:cb:e1:c6:76:b4:3b:00:1b:1e:d1:25:ed:c1:2c:
37:3f:8e:82:d0:28:a5:28:57:f8:4c:5f:e8:47:04:80:9f:49:
66:6e:67:97:f7:8c:3e:46:84:33:2c:3f:72:8c:f2:50:43:35:
02:3c:8e:b8:44:d5:e7:ff:5e:6b:cd:ac:f0:d3:40:8d:dc:3b:
a5:74:a7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:26:55 2024 by rpki-client on console-ams.rpki-client.org