Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/Vw5NlYfbcmMSMDa-4amPrkJkBFI.roa
File: Vw5NlYfbcmMSMDa-4amPrkJkBFI.roa (raw, json)
Hash identifier: rmHkVA1lO8JP8sCA2n5daYb0tIwLSZNtk1e6Aot2Akk=
Subject key identifier: 57:0E:4D:95:87:DB:72:63:12:30:36:BE:E1:A9:8F:AE:42:64:04:52
Certificate issuer: /CN=996a5f948435acb112a66e2563792263ec8b657e
Certificate serial: 018CCA29344EF28EE83AFE3D80BD533A8452
Authority key identifier: 99:6A:5F:94:84:35:AC:B1:12:A6:6E:25:63:79:22:63:EC:8B:65:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWpflIQ1rLESpm4lY3kiY-yLZX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/Vw5NlYfbcmMSMDa-4amPrkJkBFI.roa
Signing time: Tue 02 Jan 2024 12:32:27 +0000
ROA not before: Tue 02 Jan 2024 12:32:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203616
IP address blocks: 185.129.80.0/24 maxlen: 24
185.129.80.0/23 maxlen: 23
185.129.83.0/24 maxlen: 24
185.129.82.0/23 maxlen: 23
185.129.82.0/24 maxlen: 24
185.129.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/mWpflIQ1rLESpm4lY3kiY-yLZX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/mWpflIQ1rLESpm4lY3kiY-yLZX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mWpflIQ1rLESpm4lY3kiY-yLZX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:34:4e:f2:8e:e8:3a:fe:3d:80:bd:53:3a:84:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996a5f948435acb112a66e2563792263ec8b657e
Validity
Not Before: Jan 2 12:32:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=570e4d9587db7263123036bee1a98fae42640452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:e4:ed:94:7c:79:a1:d6:5d:e3:e6:69:89:
a7:4d:5f:7e:77:07:fc:dd:ab:06:9c:f0:03:e3:e0:
86:17:34:5f:a3:93:95:62:47:e3:d1:fb:be:77:71:
ce:7f:38:b8:34:d9:0b:e9:26:65:be:93:1b:3f:60:
d4:b6:d1:b6:8d:9a:d9:ef:70:e4:56:e4:9f:35:ee:
da:2b:8f:c4:57:89:9f:a5:01:c4:94:50:11:b3:98:
e5:22:64:80:7a:70:9f:54:c5:5f:d3:7f:a9:c1:4a:
eb:62:64:28:b0:a3:d2:d5:a8:ee:c5:d2:2c:6e:a3:
22:5b:fa:a3:ff:53:ad:f4:ae:97:98:6a:67:e7:d6:
47:19:43:2e:73:0d:c3:ea:63:59:26:20:a3:e0:95:
89:33:f1:85:57:d5:bc:ac:b5:81:17:72:f7:92:36:
a4:db:92:ab:ac:30:82:f0:d6:d5:23:de:ef:c5:6c:
b6:46:29:62:23:a1:8a:dd:23:43:d9:1e:2f:6f:4b:
77:6b:28:7d:d0:8f:cd:9c:30:10:71:2d:38:62:6a:
13:22:d8:ef:88:cc:9a:90:c7:9c:35:e4:64:07:bf:
1d:c2:53:9d:c9:58:91:6f:51:42:bc:0a:6a:51:d2:
31:97:87:f9:a3:a5:b5:16:db:21:b1:ad:c5:58:d3:
c6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0E:4D:95:87:DB:72:63:12:30:36:BE:E1:A9:8F:AE:42:64:04:52
X509v3 Authority Key Identifier:
keyid:99:6A:5F:94:84:35:AC:B1:12:A6:6E:25:63:79:22:63:EC:8B:65:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWpflIQ1rLESpm4lY3kiY-yLZX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/Vw5NlYfbcmMSMDa-4amPrkJkBFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/mWpflIQ1rLESpm4lY3kiY-yLZX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.80.0/22
Signature Algorithm: sha256WithRSAEncryption
62:d8:64:02:e4:1c:f0:2c:e6:80:48:9a:a6:11:0e:22:45:24:
ab:b5:93:87:6a:37:e6:1d:8d:d3:ed:5e:d4:fe:13:57:98:06:
9e:5e:61:97:d3:88:4c:37:d1:7e:09:bf:7d:d4:f4:24:26:b7:
7d:d0:68:99:ee:f9:d9:9a:52:b7:cd:e0:6d:6e:68:33:78:ac:
10:cd:17:91:21:c4:0f:5a:08:3c:f7:05:50:a4:3b:8a:f0:4e:
3a:b9:7b:98:20:85:bd:df:04:59:2a:3a:7d:73:28:e4:22:17:
34:3c:97:00:f0:21:a1:c8:9c:a4:6a:75:f3:f4:a4:23:f9:2c:
58:4c:a1:6f:7d:07:76:0a:0f:89:32:11:12:f0:2c:a3:c4:ae:
d6:7f:8c:6c:d3:e6:23:ad:f7:ed:79:58:d0:1d:32:07:01:93:
91:69:41:58:8a:23:ed:e7:b4:7d:ed:63:37:90:0c:eb:43:41:
b1:44:24:b7:84:20:32:c0:b5:a4:81:ef:05:61:98:e5:1d:a8:
e0:a0:3a:0d:79:fb:e0:81:3a:13:c3:b4:0a:c0:ec:10:aa:9b:
7b:e7:a2:64:e9:f3:7c:d8:1a:fb:1c:75:25:eb:37:8f:67:4a:
70:70:0a:89:a0:21:f0:26:e3:5d:aa:42:fe:1f:99:77:a1:62:
03:bb:77:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:50:49 2024 by rpki-client on console-ams.rpki-client.org