Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/Lxve1tsIhKwXolGkEGZ8iyWPTsM.roa
File: Lxve1tsIhKwXolGkEGZ8iyWPTsM.roa (raw, json)
Hash identifier: szc7DB424TVl1bY8aLrwi4nUzc9VMPmZRd80FIO23jg=
Subject key identifier: 2F:1B:DE:D6:DB:08:84:AC:17:A2:51:A4:10:66:7C:8B:25:8F:4E:C3
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 018CC56E44AF6088528A6275F7FB67044A47
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/Lxve1tsIhKwXolGkEGZ8iyWPTsM.roa
Signing time: Mon 01 Jan 2024 14:29:47 +0000
ROA not before: Mon 01 Jan 2024 14:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57021
IP address blocks: 194.58.200.0/24 maxlen: 24
194.58.204.0/24 maxlen: 24
194.58.203.0/24 maxlen: 24
194.58.202.0/24 maxlen: 24
194.58.206.0/24 maxlen: 24
194.58.205.0/24 maxlen: 24
194.58.207.0/24 maxlen: 24
2a01:3f7:6::/48 maxlen: 48
2a01:3f7::/48 maxlen: 48
2a01:3f7:5::/48 maxlen: 48
2a01:3f7::/32 maxlen: 48
2a01:3f7:4::/48 maxlen: 48
2a01:3f7:3::/48 maxlen: 48
2a01:3f7:2::/48 maxlen: 48
2a01:3f7:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:44:af:60:88:52:8a:62:75:f7:fb:67:04:4a:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 14:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f1bded6db0884ac17a251a410667c8b258f4ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:99:8c:a7:af:de:12:e9:04:38:2a:8f:c1:fe:
8c:93:90:b4:1e:bf:82:2a:46:31:ed:b5:ea:4d:cd:
e8:9b:e2:53:71:f8:1f:e3:71:02:c8:f7:ea:40:df:
7b:9d:14:4a:69:84:f2:63:b8:e2:bf:53:f6:23:f9:
80:3f:94:c3:df:f3:78:55:f9:2b:4d:cc:44:93:dd:
27:25:ab:97:53:c6:5d:6d:e8:ec:47:f0:68:d2:97:
e3:ac:5e:00:cd:b3:f5:c2:ea:ae:7b:45:98:9e:7b:
ef:a1:0b:9e:26:a4:26:15:55:78:9f:a4:00:1d:2b:
8c:97:0f:9b:8f:78:a1:7d:c6:df:3a:e8:cc:9a:9a:
53:89:ed:88:1a:77:12:b0:dc:58:cc:c9:40:43:96:
c8:53:2a:8a:0a:37:e6:c5:f9:ad:ff:13:c3:57:4f:
e1:6c:13:3e:38:53:14:88:65:23:41:e3:85:8c:4f:
59:8e:af:a1:4b:48:38:cc:af:b7:4a:63:88:67:74:
9c:9e:d3:b7:c6:e8:30:9e:de:78:4e:31:e7:34:ed:
03:1e:64:51:8b:99:64:e9:c7:df:8e:59:45:fb:2e:
9f:9b:c3:78:09:c8:e2:84:38:be:30:9f:d0:33:2a:
5c:69:9f:08:91:69:5c:85:6c:46:4a:71:0e:60:8c:
0d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1B:DE:D6:DB:08:84:AC:17:A2:51:A4:10:66:7C:8B:25:8F:4E:C3
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/Lxve1tsIhKwXolGkEGZ8iyWPTsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.200.0/24
194.58.202.0-194.58.207.255
IPv6:
2a01:3f7::/32
Signature Algorithm: sha256WithRSAEncryption
b4:e4:89:cc:79:f5:ad:a8:0b:80:c8:90:3f:07:78:e9:41:4d:
80:c7:e1:10:e4:df:c3:06:0c:af:59:92:0a:57:9c:39:4b:3a:
11:e6:0c:f2:79:2e:68:ab:9d:d9:c0:2d:4c:42:9a:f0:8e:9b:
f0:13:97:bd:2c:db:72:8f:dd:69:a5:92:da:0f:56:c8:f4:ef:
b4:c7:f9:1e:d5:cd:be:2a:24:f8:aa:c0:b3:7c:5a:b8:e5:dc:
80:07:58:c9:1d:a0:d3:ad:44:97:bd:63:13:34:fe:11:18:f7:
64:e1:b3:c5:6b:1a:ba:84:4c:d3:50:f5:16:da:a0:4b:2c:0b:
7b:64:b3:3a:9d:b9:31:41:59:2e:71:45:02:9f:7d:bf:84:20:
4f:b8:2b:2d:23:f5:5b:8f:08:1b:c3:dd:e6:5b:cb:82:70:68:
06:2a:1d:d3:7b:17:69:9e:90:1e:4c:a2:e7:d2:07:bb:8f:a3:
0e:b5:44:c3:05:dc:e0:36:fb:8c:1f:eb:fd:02:33:b9:b5:42:
61:d4:96:24:7d:c4:22:e2:0c:53:3f:32:f6:9c:84:26:55:c3:
98:32:f8:7f:48:f9:9b:07:04:93:dc:f0:25:26:b8:1a:2e:7e:
e7:ff:fe:1a:3c:61:70:27:78:1d:16:dd:0a:a5:dc:fb:27:ea:
87:69:61:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:31:32 2024 by rpki-client on console-ams.rpki-client.org