Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/V4J1HjrcRj4a0k1BgJdSSQQACVo.roa
File: V4J1HjrcRj4a0k1BgJdSSQQACVo.roa (raw, json)
Hash identifier: w3yGuLQ0nxO8cXiFWWLqO/hLtI8RkptARQZwGRlgBQI=
Subject key identifier: 57:82:75:1E:3A:DC:46:3E:1A:D2:4D:41:80:97:52:49:04:00:09:5A
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 018E882716BF14C83083907812E8C169DCB6
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/V4J1HjrcRj4a0k1BgJdSSQQACVo.roa
Signing time: Fri 29 Mar 2024 03:00:46 +0000
ROA not before: Fri 29 Mar 2024 03:00:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 46.8.100.0/22 maxlen: 24
46.8.118.0/23 maxlen: 24
46.8.195.0/24 maxlen: 24
46.8.198.0/24 maxlen: 24
188.130.224.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:88:27:16:bf:14:c8:30:83:90:78:12:e8:c1:69:dc:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Mar 29 03:00:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5782751e3adc463e1ad24d41809752490400095a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:31:1e:e4:29:1c:d9:cb:ac:5a:c9:e8:db:ae:
6f:5d:88:73:79:f2:47:05:f8:ef:8c:44:ac:33:8d:
3c:9b:14:7e:57:8e:b8:47:23:cc:5b:ba:52:13:e7:
a3:e2:e2:5f:1d:a7:6c:0c:56:07:1d:b1:c0:df:ad:
45:f8:f9:54:78:f0:2b:5c:26:57:0b:bc:c1:36:ce:
aa:39:77:78:10:42:f4:3c:db:a9:bf:1e:6f:9b:a3:
02:e9:cf:03:49:3d:0d:d6:1f:ef:49:5e:da:f3:88:
f7:de:eb:5f:85:cf:a5:ec:d2:e5:e5:32:9e:0e:05:
6e:cc:41:3d:1c:09:a2:76:e3:7a:51:7b:35:81:9f:
86:44:8c:8d:9e:98:12:16:c6:bd:2d:9d:bb:14:bd:
ed:61:13:48:96:ef:30:36:8b:ad:ab:6f:d5:64:b6:
b6:5d:c5:80:25:52:fd:04:f9:46:72:5b:c6:02:c5:
c6:db:7c:d1:80:3d:c5:7e:91:84:d6:e2:43:0b:c2:
2f:5a:e2:3e:a1:d1:29:15:ed:39:1b:1c:d4:e9:ae:
cc:62:38:19:7d:59:ae:28:92:27:ad:1b:35:65:17:
99:99:52:04:d4:2f:ee:d9:71:3b:c5:94:6d:ed:2c:
14:cc:21:f6:d8:07:8c:18:10:69:cf:cd:a6:c8:b5:
52:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:82:75:1E:3A:DC:46:3E:1A:D2:4D:41:80:97:52:49:04:00:09:5A
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/V4J1HjrcRj4a0k1BgJdSSQQACVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.100.0/22
46.8.118.0/23
46.8.195.0/24
46.8.198.0/24
188.130.224.0/22
Signature Algorithm: sha256WithRSAEncryption
09:ba:0d:df:b5:73:2e:ec:cf:16:bd:61:d5:43:44:c8:71:7e:
0e:6c:94:e3:88:33:9d:74:a7:ae:80:e3:47:fc:05:05:5e:c7:
98:ba:b8:6d:50:2e:74:7e:e7:23:8d:25:8e:39:85:d9:0c:e1:
8e:97:4a:32:0c:77:c2:25:72:16:c4:06:ef:9c:f0:88:74:13:
1c:31:f7:da:34:6c:c4:70:6a:b1:e3:0b:f7:72:f4:09:f7:c2:
45:9a:72:73:62:05:7a:2a:e9:70:e6:38:1f:f8:2a:0d:3e:53:
d2:c0:b2:2c:e2:bd:e4:40:b8:39:3d:4f:94:70:e7:a1:a2:c4:
08:fb:14:64:b3:1a:47:4e:4e:ac:2e:eb:45:31:0a:7e:0c:49:
bd:a5:c3:52:22:f0:ab:55:92:0f:6e:b4:b1:7b:17:0e:f6:22:
89:f9:cc:66:ce:88:6e:27:5c:ad:3d:09:83:19:d1:28:16:79:
ff:90:35:c8:33:b5:e2:80:85:f2:12:7b:7a:8d:01:66:ad:a7:
47:24:9c:1f:f9:36:c5:92:e8:17:2c:e1:e3:c7:0a:34:46:ef:
85:dd:04:cb:6d:cd:cb:1d:7c:ed:88:b5:5c:7f:ab:60:28:f0:
96:b0:44:09:52:63:72:c9:01:c9:c8:d6:de:a5:92:82:9a:4a:
02:53:d4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 20:53:23 2024 by rpki-client on console-ams.rpki-client.org