Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/96yEqn-5r16uf84AwwZSttqRJ7g.roa
File: 96yEqn-5r16uf84AwwZSttqRJ7g.roa (raw, json)
Hash identifier: mhD19QYylXCmoOYGtisHYSc98JnM/oTfkeOTiq9jcFY=
Subject key identifier: F7:AC:84:AA:7F:B9:AF:5E:AE:7F:CE:00:C3:06:52:B6:DA:91:27:B8
Certificate issuer: /CN=05da7571c5eb13b1ae4f4417cefec2bd77902e2d
Certificate serial: 018CC64ACC55D9E26133F52570A8C766FE85
Authority key identifier: 05:DA:75:71:C5:EB:13:B1:AE:4F:44:17:CE:FE:C2:BD:77:90:2E:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/96yEqn-5r16uf84AwwZSttqRJ7g.roa
Signing time: Mon 01 Jan 2024 18:30:39 +0000
ROA not before: Mon 01 Jan 2024 18:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13335
IP address blocks: 185.112.245.0/24 maxlen: 24
185.112.244.0/24 maxlen: 24
185.112.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 07:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:cc:55:d9:e2:61:33:f5:25:70:a8:c7:66:fe:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05da7571c5eb13b1ae4f4417cefec2bd77902e2d
Validity
Not Before: Jan 1 18:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7ac84aa7fb9af5eae7fce00c30652b6da9127b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:78:39:28:bb:de:c5:3a:4f:4f:55:0c:18:6e:
e1:4d:e2:58:01:5a:71:41:c0:77:fa:43:59:cb:8d:
c7:d3:e5:eb:c7:4f:8a:13:ce:52:48:4c:6e:e0:ed:
05:a5:02:b6:f8:e1:40:f1:ab:51:96:9e:c9:8b:bf:
7a:de:de:78:87:0c:d4:9e:40:1e:be:71:63:90:49:
e5:20:d5:95:d2:88:64:32:f2:cf:f5:36:94:63:8c:
fd:32:c0:80:18:e8:62:04:fa:50:42:09:f6:29:e6:
41:c2:62:d4:1d:08:44:9c:3d:cb:da:33:53:8e:1f:
b2:1a:49:f2:65:ec:5a:89:b0:fa:83:ab:d9:de:25:
b0:e4:dd:b4:2c:8c:3f:2c:63:4a:7c:31:1e:39:1e:
0d:21:c0:08:50:ab:1b:5c:2d:84:eb:a0:21:ca:20:
01:e3:f4:53:97:b5:ac:a2:75:e5:06:6d:3c:e4:60:
cf:4e:28:ca:46:55:a5:b7:9d:2a:bd:9f:d0:f8:99:
86:f7:aa:ac:e1:36:09:16:db:85:2d:02:70:be:ab:
d6:10:b3:64:e4:e0:41:aa:28:56:57:c6:87:19:2e:
5d:fd:7d:b8:4a:8c:0f:77:ee:7a:b2:bb:81:b3:ac:
77:1c:b0:82:e9:85:aa:c8:c8:66:ad:d4:e7:89:04:
9f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AC:84:AA:7F:B9:AF:5E:AE:7F:CE:00:C3:06:52:B6:DA:91:27:B8
X509v3 Authority Key Identifier:
keyid:05:DA:75:71:C5:EB:13:B1:AE:4F:44:17:CE:FE:C2:BD:77:90:2E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/96yEqn-5r16uf84AwwZSttqRJ7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f64f83-370a-4901-8bfa-3655302bf005/1/Bdp1ccXrE7GuT0QXzv7CvXeQLi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.244.0-185.112.246.255
Signature Algorithm: sha256WithRSAEncryption
4e:57:e7:74:9a:d0:6c:46:53:8b:f6:89:ee:bb:5b:40:aa:43:
03:e5:af:44:e3:52:f6:ef:51:ee:38:22:7b:2b:f4:3a:a1:66:
6c:01:19:e0:bd:6d:da:67:28:77:10:75:72:68:37:fa:50:91:
c9:48:6c:44:20:bc:51:b4:cd:a3:0a:f1:7a:5d:a2:52:b8:29:
d3:19:70:f9:51:df:9b:cd:3d:3e:70:06:88:29:25:05:59:05:
87:7a:0b:48:60:34:8b:f2:f0:fd:f3:6d:b4:7c:b8:b1:98:47:
c1:2f:bd:d4:89:57:80:11:d1:12:a4:27:aa:11:f5:1f:b3:c9:
88:0c:06:43:71:49:6d:98:c2:36:49:be:dd:f3:ce:b8:6b:b5:
41:f8:26:ff:c1:43:79:d5:bd:e2:2e:74:89:ae:90:8f:62:7c:
48:b6:8d:da:2c:65:a6:80:5d:89:f3:55:2c:3c:37:ab:d4:1b:
57:18:b6:aa:ac:b6:41:32:4e:50:05:ec:4c:9b:bd:f0:be:5f:
2a:64:cb:5a:6d:26:f8:d9:76:43:0d:58:e7:47:0b:38:7f:f5:
5d:76:27:6a:cb:67:ab:ba:38:13:c1:c4:8e:03:2f:2b:0a:6c:
86:a2:4c:54:68:d3:d9:e4:56:b3:9d:60:ef:0c:41:36:fe:62:
88:f6:3e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 16:30:28 2024 by rpki-client on console-ams.rpki-client.org