Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/_qrbCVdMGcRKkOTEEvE9NE62t-I.roa
File: _qrbCVdMGcRKkOTEEvE9NE62t-I.roa (raw, json)
Hash identifier: F7B/WAvpUSkEasRjuq+Dk3ZMpbpX/r1Nh4q3EQvk/44=
Subject key identifier: FE:AA:DB:09:57:4C:19:C4:4A:90:E4:C4:12:F1:3D:34:4E:B6:B7:E2
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 018F8710520D5B050052B9FB0A8F6BFDE5C2
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/_qrbCVdMGcRKkOTEEvE9NE62t-I.roa
Signing time: Fri 17 May 2024 14:59:04 +0000
ROA not before: Fri 17 May 2024 14:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 185.167.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Dec 2024 20:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:10:52:0d:5b:05:00:52:b9:fb:0a:8f:6b:fd:e5:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: May 17 14:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=feaadb09574c19c44a90e4c412f13d344eb6b7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:8b:bd:e4:d0:18:00:e0:33:3e:15:af:6e:
ef:5c:f7:fd:2c:f8:29:8f:c3:ea:73:98:4f:30:ad:
45:a5:a7:f8:cc:ee:17:85:c7:de:76:c6:79:5f:9d:
ad:7e:a5:1d:0b:63:ac:c8:ca:19:33:04:96:65:d8:
77:f2:21:4c:30:14:0b:5e:34:bd:03:0f:ed:56:38:
9b:cb:86:6b:8c:43:5e:6c:14:4c:96:1d:bc:ec:80:
44:61:6e:a7:4c:a5:5d:01:56:5c:5b:d3:f9:37:f2:
90:45:f6:07:5e:8b:6d:b7:55:51:11:94:b0:82:4d:
af:70:e1:78:ea:6f:07:a3:71:f4:05:48:21:6c:14:
f4:52:b7:40:13:40:80:f4:d5:23:3a:95:3f:5c:0c:
86:98:da:81:d9:d1:8e:c4:f9:69:7d:45:a0:93:dc:
04:e7:5e:c2:b8:16:19:c8:a8:f5:16:a0:77:b5:82:
1c:ce:6e:ac:8c:df:30:75:22:20:82:68:38:3f:b1:
b6:59:85:0d:10:20:4e:46:ba:e5:24:4f:1c:32:90:
74:6b:69:2a:8b:42:a4:a4:e6:9d:06:68:69:7b:25:
c9:ab:10:61:d8:3d:3d:bf:96:09:dc:c2:69:c7:a7:
08:53:e2:81:90:6b:5f:97:83:b2:89:27:c5:43:c8:
ef:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AA:DB:09:57:4C:19:C4:4A:90:E4:C4:12:F1:3D:34:4E:B6:B7:E2
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/_qrbCVdMGcRKkOTEEvE9NE62t-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.233.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d1:87:cf:1c:fb:d2:43:47:5b:2c:4a:d4:96:46:19:39:c9:
63:a4:12:ae:0c:e0:d9:33:ab:95:7c:9e:d9:f3:89:d5:4d:c1:
5f:1e:ff:f5:3c:32:28:c4:31:c1:60:fd:32:b3:c0:86:5c:9c:
6a:27:98:1b:53:d3:5f:8d:48:6e:69:28:5b:a9:2d:88:5e:1d:
a2:bd:3b:28:12:d9:fc:c0:db:92:c0:ca:2c:72:d6:76:82:2a:
69:00:b3:79:f2:0d:a7:7b:db:a8:b4:54:06:d0:9e:ef:5b:11:
29:90:e1:39:ff:bb:fa:d5:7c:a0:12:cf:82:b5:90:ec:c1:0e:
1c:b8:c4:e3:d4:a6:26:c2:c1:79:73:39:1e:13:c8:a5:e1:2d:
d0:2c:04:34:02:f7:4a:f3:49:63:2d:c0:1b:a9:39:f5:e3:1a:
70:a7:2f:8b:37:b8:a1:a2:73:a3:57:ff:ec:3b:09:d4:ab:77:
6f:dc:11:01:e1:b4:6f:f6:6a:4e:c3:2b:bf:22:0c:bb:dd:e4:
2d:53:73:bc:37:0b:b1:15:c4:de:e1:88:98:46:25:bc:a3:5f:
82:f8:3a:30:87:99:13:55:cc:dc:5a:f5:aa:44:28:67:9b:04:
e1:88:1c:9d:b9:35:1e:0d:10:ff:e9:a0:34:c3:60:93:35:13:
1e:aa:e6:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 11 05:40:30 2024 by rpki-client on console-ams.rpki-client.org