Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/cv3SlCn_WTLRaqwKxhoyDL7WXWQ.roa
File: cv3SlCn_WTLRaqwKxhoyDL7WXWQ.roa (raw, json)
Hash identifier: koOyxXB3JCQtnHKqv+ARFSOkTrNNm2nGmcOwn5j/cik=
Subject key identifier: 72:FD:D2:94:29:FF:59:32:D1:6A:AC:0A:C6:1A:32:0C:BE:D6:5D:64
Certificate issuer: /CN=7482b017717ca83a05e4cbc3f266f12a5359d5e5
Certificate serial: 018CC34958154A7051D37DBA5EA5F1383C59
Authority key identifier: 74:82:B0:17:71:7C:A8:3A:05:E4:CB:C3:F2:66:F1:2A:53:59:D5:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/cv3SlCn_WTLRaqwKxhoyDL7WXWQ.roa
Signing time: Mon 01 Jan 2024 04:30:12 +0000
ROA not before: Mon 01 Jan 2024 04:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2200
IP address blocks: 192.44.66.0/24 maxlen: 24
134.246.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:58:15:4a:70:51:d3:7d:ba:5e:a5:f1:38:3c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7482b017717ca83a05e4cbc3f266f12a5359d5e5
Validity
Not Before: Jan 1 04:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72fdd29429ff5932d16aac0ac61a320cbed65d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:35:1d:cb:94:23:c4:92:13:9f:40:c2:09:
e2:06:83:d3:82:59:8b:d3:0d:3d:d9:db:96:c5:68:
3a:bb:2f:45:0c:41:7c:4d:59:b0:10:ae:02:68:81:
f1:d5:9e:47:80:d8:86:01:48:79:b1:10:37:5f:13:
6b:a1:5b:3d:8b:3d:33:a8:0e:17:25:08:dc:4c:38:
58:17:47:8e:77:ca:0c:bb:21:4d:e7:38:73:a8:6f:
41:ce:d8:c1:30:37:17:59:50:7c:27:7c:bc:87:1b:
08:44:9b:d9:85:af:55:f7:08:05:0b:c4:ba:33:5f:
a1:3a:e3:6f:8d:1e:28:de:30:e8:d2:52:25:2f:55:
78:fc:ea:92:de:81:b3:e7:ea:b9:4a:81:f4:40:69:
ed:16:1a:fe:15:1d:49:56:ae:6f:3d:8a:5e:d6:28:
e4:a4:9b:21:5f:75:c3:30:71:3b:6c:b7:c2:cb:c4:
0d:17:42:ae:9d:03:e5:5b:8c:26:1d:d6:0f:2a:67:
54:f6:12:5b:69:63:90:dd:a9:90:40:73:65:30:36:
75:4c:37:03:15:47:e5:8a:96:55:e6:d0:b5:be:69:
b6:67:df:d0:16:d8:28:17:62:67:35:01:0d:8a:0c:
d5:05:7c:f4:f1:5b:62:ad:a6:85:66:1f:33:96:0a:
1e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FD:D2:94:29:FF:59:32:D1:6A:AC:0A:C6:1A:32:0C:BE:D6:5D:64
X509v3 Authority Key Identifier:
keyid:74:82:B0:17:71:7C:A8:3A:05:E4:CB:C3:F2:66:F1:2A:53:59:D5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/cv3SlCn_WTLRaqwKxhoyDL7WXWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.246.0.0/16
192.44.66.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d3:48:56:0c:ab:9e:d9:a8:a6:b1:a7:73:5f:d8:95:61:7c:
2f:52:9b:c2:40:9c:7f:d6:f7:fa:50:ca:66:fa:88:56:c3:b4:
52:81:2e:97:2b:47:de:40:4f:31:7b:e6:7b:ed:a8:36:ce:ba:
33:76:f6:c5:3b:e7:4a:57:71:7e:7f:44:3d:85:92:3f:f5:e2:
85:f1:0b:31:81:dc:fa:24:04:2f:16:03:f4:99:13:36:d9:24:
16:2f:f7:c3:71:04:81:ea:b0:dd:71:10:c7:40:d1:eb:15:32:
a7:98:a1:60:52:6e:9e:a8:94:a7:c8:55:5a:8c:d1:9d:50:ca:
e2:fd:6d:0f:85:e5:be:95:24:97:f8:d9:61:58:fb:88:e4:a4:
4a:21:c2:b6:35:01:e0:7a:3a:ee:96:f5:a7:ce:5f:0a:ad:d2:
c4:7b:89:a6:fa:50:da:88:eb:6c:fd:b4:3c:92:df:3e:af:8a:
98:37:28:51:58:1c:a0:83:a4:bb:64:79:6c:8e:42:a9:2d:d7:
c1:af:11:31:9c:68:bf:98:02:4f:0e:95:ab:15:6f:58:69:76:
21:be:e5:82:ae:6c:b2:0c:50:f9:df:7b:0a:c7:95:c8:2d:a3:
dc:58:d2:05:b7:28:23:15:46:9b:19:77:4f:e1:f3:f7:1c:2c:
c2:5d:39:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:44:31 2024 by rpki-client on console-ams.rpki-client.org