Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/ASwlDul39PG8j4x52ooSTz5VcaI.roa
File: ASwlDul39PG8j4x52ooSTz5VcaI.roa (raw, json)
Hash identifier: /1/LfhksHNmhifCBbdPkU8E0bnPeD/YdIT0/qpjomHw=
Subject key identifier: 01:2C:25:0E:E9:77:F4:F1:BC:8F:8C:79:DA:8A:12:4F:3E:55:71:A2
Certificate issuer: /CN=335e725cacf83c97f457a56762cf846d643117cd
Certificate serial: 01942826EC9C80DEBBCAAF7BA9CF3199BD2E
Authority key identifier: 33:5E:72:5C:AC:F8:3C:97:F4:57:A5:67:62:CF:84:6D:64:31:17:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/ASwlDul39PG8j4x52ooSTz5VcaI.roa
Signing time: Thu 02 Jan 2025 17:53:46 +0000
ROA not before: Thu 02 Jan 2025 17:53:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 46.231.120.0/24 maxlen: 24
46.231.121.0/24 maxlen: 24
185.192.220.0/24 maxlen: 24
185.192.221.0/24 maxlen: 24
185.192.222.0/24 maxlen: 24
185.192.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.mft
rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:ec:9c:80:de:bb:ca:af:7b:a9:cf:31:99:bd:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335e725cacf83c97f457a56762cf846d643117cd
Validity
Not Before: Jan 2 17:53:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=012c250ee977f4f1bc8f8c79da8a124f3e5571a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bb:16:3c:6d:60:c3:9f:a2:e9:ac:b5:1a:8d:
22:07:bd:f8:c5:3a:3a:12:83:d3:2a:00:53:35:99:
e9:81:88:86:03:f3:47:60:1b:3b:29:a8:8c:3d:c1:
48:b8:f5:2d:47:e6:de:7f:9d:6b:64:13:52:26:9f:
57:71:41:19:f0:e7:54:3c:c5:68:8d:af:45:7e:72:
ed:4c:99:83:b3:32:1a:0e:61:23:a7:18:81:29:dc:
6f:4f:14:a6:19:9b:51:bb:12:d5:00:93:d2:7b:ef:
df:58:fd:06:28:2b:08:fd:b8:7f:8d:e4:8a:28:07:
eb:d8:61:ee:17:5b:40:10:71:34:30:3d:88:5c:6f:
15:3e:db:3c:29:9a:24:25:aa:6b:ca:e1:02:28:a6:
e9:d5:5c:db:76:00:00:7c:ec:44:2e:57:2b:fc:ac:
3b:64:69:e6:5d:29:e7:1e:8e:db:77:7a:48:e4:1f:
35:a8:3a:da:74:f0:0c:42:0e:5d:07:c1:c6:0d:53:
d9:13:ca:b3:2e:26:6c:6f:e1:f4:e1:81:a1:ad:cc:
1b:c6:99:55:89:14:7f:03:11:52:86:fe:81:33:34:
17:d9:e0:ba:2d:ba:8f:b6:47:c6:ea:0c:02:1f:69:
bb:f6:04:6a:af:8b:2f:13:de:4a:c1:2f:d1:f5:4b:
29:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2C:25:0E:E9:77:F4:F1:BC:8F:8C:79:DA:8A:12:4F:3E:55:71:A2
X509v3 Authority Key Identifier:
keyid:33:5E:72:5C:AC:F8:3C:97:F4:57:A5:67:62:CF:84:6D:64:31:17:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M15yXKz4PJf0V6VnYs-EbWQxF80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/ASwlDul39PG8j4x52ooSTz5VcaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/026548-5012-4ad0-a5bb-82c0560595cd/1/M15yXKz4PJf0V6VnYs-EbWQxF80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.120.0/23
185.192.220.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:28:f7:33:e6:3b:26:38:1e:1d:a1:af:b4:79:ea:5d:9c:ce:
aa:a1:d4:63:52:41:48:94:0c:8e:e0:08:7f:6c:a0:30:89:b9:
df:57:d6:0d:cb:52:d0:3a:58:df:3a:8a:30:ce:72:91:d2:89:
92:c5:15:b5:f9:00:62:d3:3b:3c:69:32:43:f2:9c:fd:3c:47:
a2:e5:bf:c6:6d:32:8e:ab:2a:a6:bf:4f:6a:a4:b1:c7:df:2d:
37:ed:60:7f:1f:cc:dc:bf:34:2c:47:6b:8b:e1:fa:e0:74:fa:
69:58:fb:f6:8c:6f:e4:81:03:85:8e:a6:bd:87:62:58:33:79:
e6:37:99:01:d1:45:e1:fd:0f:1c:65:d6:69:81:42:49:a2:28:
67:17:c0:9d:ed:6f:a2:59:53:ad:5c:a6:44:c2:0a:c1:be:c5:
dd:91:32:c8:95:23:37:ef:3e:c8:6b:2e:24:bb:f4:3d:22:5d:
58:04:0e:67:8b:21:94:f4:ec:f4:58:3b:24:42:52:45:13:ac:
fe:04:e5:2b:cf:a0:e1:0e:af:ae:a7:90:ff:ed:42:4a:9a:73:
83:88:74:3f:4b:28:38:b9:b1:f6:7d:e4:a0:44:c0:ba:45:5e:
fe:3d:5e:8f:63:cd:b2:b5:d1:be:5e:c7:6a:dd:d5:67:14:c4:
8e:0e:ba:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:11:51 2025 by rpki-client