Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/61-lIA2DfZgaqEbjQuIWT9y6En4.roa
File: 61-lIA2DfZgaqEbjQuIWT9y6En4.roa (raw, json)
Hash identifier: XBAGHtrNn9J5qdU3EzD1hh/f7HJGth71cqDmQ24ZBPc=
Subject key identifier: EB:5F:A5:20:0D:83:7D:98:1A:A8:46:E3:42:E2:16:4F:DC:BA:12:7E
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBD6A608C2CF5A6CB9E8509EBA8A6F
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/61-lIA2DfZgaqEbjQuIWT9y6En4.roa
Signing time: Tue 02 Jan 2024 10:32:59 +0000
ROA not before: Tue 02 Jan 2024 10:32:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212807
IP address blocks: 46.107.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d6:a6:08:c2:cf:5a:6c:b9:e8:50:9e:ba:8a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb5fa5200d837d981aa846e342e2164fdcba127e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:b2:ff:2f:62:6a:37:32:8f:ec:24:cc:58:
cf:f2:8d:0e:35:74:39:29:1f:3d:1d:bc:e4:af:7f:
48:e4:bb:c5:d0:0b:e4:3c:c2:3c:8a:6f:25:59:08:
57:67:2b:4e:91:c8:1d:62:10:9d:0c:56:57:1d:d9:
f4:93:3b:a7:e2:d6:bd:86:b3:1d:52:ab:bc:6b:e3:
d3:5b:64:42:c4:40:01:3b:c6:e5:39:e5:c7:a9:11:
6e:1d:96:dd:ec:b9:b8:4f:08:33:cc:db:00:26:82:
41:40:74:4d:0c:7e:43:c1:96:35:f6:a3:38:55:12:
e6:5f:48:87:76:02:6e:e3:73:62:40:cf:93:25:01:
c8:33:02:67:bc:ab:80:89:3b:f6:b5:7c:d9:07:67:
13:51:04:ed:e5:ec:b0:45:34:e6:da:ae:33:21:4c:
0d:ec:18:1d:0d:0c:de:0e:69:e7:32:ec:7e:13:a1:
21:ae:2c:2b:82:0d:76:d6:d8:f5:d3:a5:e3:71:22:
9a:5a:ea:23:78:1d:01:15:d1:86:cb:16:94:4a:c7:
49:b4:2e:8b:60:c8:ec:94:a4:f8:2a:d3:ae:fd:d8:
54:c0:e1:c2:45:74:53:3a:0f:14:7d:f4:9c:5f:e6:
2d:fe:36:d0:86:5c:e4:3d:6c:b0:77:83:40:3b:c6:
46:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5F:A5:20:0D:83:7D:98:1A:A8:46:E3:42:E2:16:4F:DC:BA:12:7E
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/61-lIA2DfZgaqEbjQuIWT9y6En4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.107.220.0/24
Signature Algorithm: sha256WithRSAEncryption
36:22:ee:35:80:5a:43:db:7d:97:6b:68:fb:5f:19:e1:75:97:
2f:97:8e:10:93:25:0a:d2:95:ee:00:c8:3c:13:83:62:cc:f0:
65:88:3c:02:24:11:65:3e:04:fb:6b:6a:09:b0:9e:7a:4f:14:
b3:83:71:13:3a:1d:76:1f:13:47:73:d3:85:75:e4:3f:f8:ba:
8a:8a:f0:1a:2b:7f:b6:6f:66:9e:a6:ce:dc:53:29:76:0e:b9:
c0:33:7f:d0:c8:22:0e:ec:26:c9:4a:f5:79:c7:53:b0:a2:06:
50:8c:08:96:85:8f:53:45:f2:e8:96:15:c7:68:dd:1d:4e:3a:
13:94:09:af:bc:7d:04:6c:09:c8:6f:01:7f:3c:43:e0:a8:fd:
de:8d:19:1b:98:2d:54:4a:0b:eb:ad:0f:39:6d:1e:b9:04:0b:
f9:6d:7e:14:26:56:9b:95:fe:58:85:ce:98:2b:ed:f4:1c:df:
6f:65:91:4e:26:b9:a8:c5:09:25:d4:60:0b:53:f9:5f:b1:58:
07:ad:d0:b0:0a:e2:89:42:52:ee:ac:af:34:4e:f1:73:07:8d:
b6:89:52:53:c6:51:d3:72:7e:42:23:e8:da:8b:6d:aa:b0:ca:
b9:36:07:01:6e:7f:b6:2a:79:fd:c6:a1:1e:f0:8e:13:1a:85:
6a:84:12:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:43:46 2024 by rpki-client on console-fra.rpki-client.org