Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/GX1i90V5fZ7TIOE5ejx1mDuskJ4.roa
File: GX1i90V5fZ7TIOE5ejx1mDuskJ4.roa (raw, json)
Hash identifier: KS2V7aOuu+oEXDN5DnW1JeP/GZ7JqC+pOxQ4MkKD3wM=
Subject key identifier: 19:7D:62:F7:45:79:7D:9E:D3:20:E1:39:7A:3C:75:98:3B:AC:90:9E
Certificate issuer: /CN=46efb53f266e11e6ed5a13eb3e97f4b9601dd6e0
Certificate serial: 018CC94E51DB8CF3C443BE24430B096EBF27
Authority key identifier: 46:EF:B5:3F:26:6E:11:E6:ED:5A:13:EB:3E:97:F4:B9:60:1D:D6:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ru-1PyZuEebtWhPrPpf0uWAd1uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/GX1i90V5fZ7TIOE5ejx1mDuskJ4.roa
Signing time: Tue 02 Jan 2024 08:33:22 +0000
ROA not before: Tue 02 Jan 2024 08:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19875
IP address blocks: 185.156.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/Ru-1PyZuEebtWhPrPpf0uWAd1uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/Ru-1PyZuEebtWhPrPpf0uWAd1uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ru-1PyZuEebtWhPrPpf0uWAd1uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:51:db:8c:f3:c4:43:be:24:43:0b:09:6e:bf:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46efb53f266e11e6ed5a13eb3e97f4b9601dd6e0
Validity
Not Before: Jan 2 08:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=197d62f745797d9ed320e1397a3c75983bac909e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:20:80:8c:b2:23:19:96:84:f5:91:f2:d4:68:
0a:32:a8:ce:7b:ee:8f:1c:8b:c7:56:fc:78:cf:2c:
a5:83:15:52:5c:82:9c:94:49:19:11:4c:56:6a:fd:
4a:1d:f0:e1:9b:d5:2c:02:0a:ac:ec:82:4a:ae:d9:
42:eb:c8:80:89:e8:09:3f:15:9c:47:55:92:67:8c:
d6:38:06:83:cf:f0:4b:3e:17:47:cd:88:f2:69:3e:
18:48:37:7e:4d:cb:9a:ec:45:8c:e7:6f:dd:60:07:
0f:27:17:98:62:05:84:62:e0:96:9f:ce:e6:22:18:
de:16:bd:fc:53:dc:68:1d:2b:ca:dc:6f:4d:0d:7e:
00:d8:d5:01:b3:2f:0b:36:ff:9c:9c:61:08:77:db:
e9:94:a0:ea:7e:68:52:a2:53:28:61:4d:11:fb:b0:
83:4a:b1:66:db:3a:3f:d4:ac:86:dc:f6:0d:8e:ea:
32:4f:49:c3:55:d4:72:0b:13:9d:0d:bb:4a:53:bd:
78:7e:17:53:e0:d7:63:43:e1:49:ab:0a:82:7e:34:
00:7c:c8:cb:0d:ca:84:03:b8:61:e3:d8:f6:b3:48:
e8:5d:b6:79:b8:84:e2:c3:18:84:cc:65:f9:9c:09:
56:e6:90:80:ec:86:59:84:d4:7d:54:81:a3:fe:7e:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7D:62:F7:45:79:7D:9E:D3:20:E1:39:7A:3C:75:98:3B:AC:90:9E
X509v3 Authority Key Identifier:
keyid:46:EF:B5:3F:26:6E:11:E6:ED:5A:13:EB:3E:97:F4:B9:60:1D:D6:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ru-1PyZuEebtWhPrPpf0uWAd1uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/GX1i90V5fZ7TIOE5ejx1mDuskJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/7bfb11-be26-4c4e-9c35-d7c6708414fa/1/Ru-1PyZuEebtWhPrPpf0uWAd1uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.184.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:04:a5:d7:27:23:76:a8:eb:5a:c7:65:4a:91:0f:c1:4f:e8:
dc:41:07:e2:cc:3e:d7:40:12:24:8e:b4:7e:39:ef:e6:fc:b0:
5b:9a:fa:d8:83:1c:b3:40:f0:2c:8a:85:b6:b8:7a:cd:19:67:
65:9f:58:03:d3:f9:c2:c9:e8:cc:67:66:82:93:3f:3b:ca:3f:
de:f3:58:ec:a2:b5:25:af:4a:e6:d8:d7:3a:04:35:63:8e:eb:
98:a1:ee:8a:86:33:7f:69:b5:83:e0:3e:5c:9e:c4:94:45:2b:
d9:3d:68:64:c3:3a:60:fc:3f:26:c5:6a:a3:6d:c5:97:00:67:
9d:e9:c8:2c:c5:2e:c1:19:a6:ee:4a:13:fd:a6:de:46:97:52:
5d:f9:47:ea:dd:1e:ff:f7:44:d7:b9:9e:06:64:40:36:a5:25:
28:e7:c4:66:63:c8:25:e3:21:27:6b:05:7e:61:7c:18:16:29:
ad:d7:94:49:ad:b8:64:01:b8:3d:80:c4:6b:af:64:ad:f3:f1:
40:1a:2d:e6:3e:45:07:df:62:16:8d:7e:cb:72:49:c8:31:c5:
1a:a8:e1:e4:3e:8f:97:ac:d7:cd:ae:3e:d5:54:a1:81:5e:3a:
2f:35:59:e8:40:3a:b7:28:78:16:64:c2:ec:42:a0:db:84:32:
8f:79:f5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:15:37 2024 by rpki-client on console-fra.rpki-client.org