Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/at5BGCLJ_seHcykZ0LNvYjks3qE.roa
File: at5BGCLJ_seHcykZ0LNvYjks3qE.roa (raw, json)
Hash identifier: 4/P+gRwO+eMM7RlWB6sgTDpH6DNcPGiEG/5zSS++YJ4=
Subject key identifier: 6A:DE:41:18:22:C9:FE:C7:87:73:29:19:D0:B3:6F:62:39:2C:DE:A1
Certificate issuer: /CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Certificate serial: 018CC8DF027E8C875CD425E6E398F6742CD8
Authority key identifier: 54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/at5BGCLJ_seHcykZ0LNvYjks3qE.roa
Signing time: Tue 02 Jan 2024 06:31:47 +0000
ROA not before: Tue 02 Jan 2024 06:31:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202561
IP address blocks: 188.125.161.0/24 maxlen: 24
188.125.167.0/24 maxlen: 24
188.125.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:02:7e:8c:87:5c:d4:25:e6:e3:98:f6:74:2c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Validity
Not Before: Jan 2 06:31:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ade411822c9fec787732919d0b36f62392cdea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:3c:8a:33:77:14:d5:51:6f:ed:ac:34:e3:
fb:86:0e:ce:c3:a6:04:a5:05:9a:9c:3d:0e:c7:eb:
27:45:da:7b:e3:7b:72:2b:3c:b3:3e:04:68:ba:72:
ff:1c:2e:08:9c:33:0c:c0:87:d1:62:e4:71:ee:81:
76:1c:d3:77:70:97:5e:44:4d:c5:6c:f5:7c:cc:2f:
2c:66:34:46:c4:25:01:c5:34:04:12:2b:f0:9f:d5:
40:5d:23:e8:94:9c:88:4f:fa:87:50:22:c6:7a:9c:
27:07:87:51:24:9e:ef:0d:73:55:f2:55:32:ea:9d:
c3:50:24:22:2a:22:18:0b:27:e0:aa:b9:cf:62:d2:
a3:14:12:6a:e8:c9:5b:fa:e6:66:bc:07:6e:93:b7:
6d:9b:fd:42:e0:a0:20:34:3a:1e:70:a4:db:06:3e:
bc:56:d4:64:d0:ca:bf:42:7e:69:f0:46:b2:59:06:
65:11:af:84:26:88:51:ce:1e:99:ca:38:74:ea:91:
c2:ab:8f:be:97:03:83:0e:0f:6f:16:5d:9e:a6:06:
08:66:2e:52:fc:05:3e:a5:27:cf:1e:80:f3:94:50:
9d:44:16:46:d7:a2:6a:6c:b9:cd:3b:ce:2c:20:cb:
ae:02:0e:7e:0e:05:5d:be:6c:64:bd:42:15:6e:a9:
6c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DE:41:18:22:C9:FE:C7:87:73:29:19:D0:B3:6F:62:39:2C:DE:A1
X509v3 Authority Key Identifier:
keyid:54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/at5BGCLJ_seHcykZ0LNvYjks3qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.161.0/24
188.125.167.0/24
188.125.169.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:76:a4:d9:b8:c0:3f:8e:a2:13:65:9c:bd:67:52:5c:91:fa:
d7:4c:23:78:ea:53:42:de:4a:4d:69:39:06:6a:99:2e:dd:00:
a8:d9:19:13:f9:87:dd:3a:03:38:7e:55:2e:ff:3d:d0:dd:db:
28:d0:80:43:b6:41:1a:d3:99:67:65:65:35:21:f4:cb:ad:87:
f2:c5:34:e9:44:88:24:ae:cd:19:26:61:be:b2:d3:49:a0:00:
c4:04:18:49:c9:06:db:24:17:90:0b:87:a6:d0:59:48:f0:c0:
3c:34:71:ff:50:a0:b2:45:80:39:7e:43:cb:3b:dc:ef:94:fe:
15:fb:c1:9d:50:17:21:28:c9:ab:98:4a:71:c6:af:03:6e:67:
c3:8b:b2:3d:0c:77:b2:84:b4:81:82:5a:02:60:6e:af:cb:47:
d7:dc:da:1e:d8:e7:22:fc:a7:72:85:d1:e3:91:04:39:b0:d7:
64:da:80:b9:48:0b:9f:01:8a:7f:d6:40:6f:bb:10:27:c8:e1:
59:35:1d:1c:3a:7b:31:54:d4:dc:6b:89:43:68:92:2d:36:aa:
2b:ef:11:92:35:f9:f6:33:21:f9:b4:d2:aa:29:49:b6:5b:e5:
3f:3a:fd:23:ba:84:65:9d:56:ae:32:af:78:ac:e5:30:e4:09:
d1:a8:61:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 21:19:01 2024 by rpki-client on console-ams.rpki-client.org