Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/KVTelATikecHl2EjnoTqXX-_CG0.roa
File: KVTelATikecHl2EjnoTqXX-_CG0.roa (raw, json)
Hash identifier: 9QnvkFLkbi1WJoXsSbQSvvnAzwt2wfdurqbPqy+mNgg=
Subject key identifier: 29:54:DE:94:04:E2:91:E7:07:97:61:23:9E:84:EA:5D:7F:BF:08:6D
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 018CC802F3036DD402C8CF4BDEAF7DD28FF3
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/KVTelATikecHl2EjnoTqXX-_CG0.roa
Signing time: Tue 02 Jan 2024 02:31:25 +0000
ROA not before: Tue 02 Jan 2024 02:31:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 46.31.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:f3:03:6d:d4:02:c8:cf:4b:de:af:7d:d2:8f:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jan 2 02:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2954de9404e291e7079761239e84ea5d7fbf086d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:15:04:4a:ef:db:2d:c4:35:2f:47:3b:aa:
8a:35:bb:87:b4:e5:8c:64:85:58:d6:ff:ff:40:5c:
16:a0:08:77:e6:e0:79:e5:d2:5e:ea:0e:a9:cc:32:
15:c9:a5:46:a1:31:ba:b8:44:27:08:4e:d4:c8:87:
8e:83:e6:0d:a0:d0:e3:46:8d:98:94:8a:90:4c:57:
72:b5:de:32:be:5f:1d:92:4e:09:8f:cf:72:83:41:
43:df:09:f1:ff:0c:08:29:fe:c4:1a:7e:88:a1:65:
74:4b:b5:a1:69:d3:4c:78:07:33:36:b2:78:b2:4f:
06:49:8f:b6:62:62:64:06:f6:e0:03:2c:eb:9c:d5:
65:47:10:ea:5c:fd:b0:85:c0:f6:61:f3:61:12:01:
60:57:6b:76:d6:b5:88:14:79:21:5b:e0:5c:17:8c:
b9:97:6c:e8:f7:27:a2:af:49:40:81:4e:60:44:27:
25:0c:96:e8:81:0e:0c:21:f3:41:33:01:03:6c:6c:
a2:0f:83:7b:23:60:36:bb:b8:65:f1:2e:b8:58:25:
40:c7:e3:b5:39:7e:69:c6:d6:62:05:9e:96:9a:c3:
2d:e6:ac:53:24:be:e1:91:c2:f5:5e:25:c8:32:f8:
41:2d:23:5d:a9:65:d0:90:cf:b4:6a:88:cc:45:6e:
1d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:54:DE:94:04:E2:91:E7:07:97:61:23:9E:84:EA:5D:7F:BF:08:6D
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/KVTelATikecHl2EjnoTqXX-_CG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.78.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:eb:52:23:3c:71:29:55:14:75:27:0a:c4:61:c4:a1:ad:1b:
92:4d:d5:56:e8:3b:45:5f:d6:6f:0a:e4:12:6a:24:ec:5c:0d:
f2:49:03:40:54:b0:36:ff:5c:46:22:9c:99:a1:da:79:f6:c0:
c1:2a:e3:bf:3d:77:44:92:d1:a1:d7:fc:03:66:7e:8c:2b:4c:
0c:2b:3c:a5:74:c5:df:32:8d:d6:60:fa:2c:d0:97:c6:8a:e4:
69:29:68:4e:a0:be:d5:4b:ef:b5:52:0f:9e:32:d3:28:20:df:
ac:39:85:a6:3c:08:7c:cb:35:d1:03:de:6d:d3:2b:50:27:05:
24:86:46:40:d5:e2:de:af:22:40:4d:2a:b2:d1:b0:90:29:59:
f2:f4:84:74:71:fa:3a:9a:79:2e:28:a0:a9:de:2a:48:e6:ec:
6d:2a:a7:53:ee:a4:99:be:ae:15:33:30:53:fe:18:45:5b:a4:
59:89:c7:0e:d1:da:72:31:d9:bc:3b:02:92:02:09:3b:68:b3:
97:5a:69:d3:80:28:d5:86:5c:ed:16:ad:cf:00:46:90:45:3d:
55:86:09:7f:38:bd:81:38:86:04:e5:c0:62:87:0e:7c:0b:2c:
78:b7:d7:e4:3d:24:c8:98:8e:79:8c:92:3b:03:11:03:43:70:
df:1f:ab:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 22:33:42 2024 by rpki-client on console-ams.rpki-client.org