Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/VtmFXBd6oh8lqg78YAF4ZrUfQjE.roa
File: VtmFXBd6oh8lqg78YAF4ZrUfQjE.roa (raw, json)
Hash identifier: ly9JQyKa1vAH28V3KGeKMwQ6uczW8pQYlbTBFByjwKs=
Subject key identifier: 56:D9:85:5C:17:7A:A2:1F:25:AA:0E:FC:60:01:78:66:B5:1F:42:31
Certificate issuer: /CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e
Certificate serial: 018CC500E7295449BE1364E550E3AC49D17A
Authority key identifier: 2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/VtmFXBd6oh8lqg78YAF4ZrUfQjE.roa
Signing time: Mon 01 Jan 2024 12:30:19 +0000
ROA not before: Mon 01 Jan 2024 12:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47472
IP address blocks: 195.242.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:e7:29:54:49:be:13:64:e5:50:e3:ac:49:d1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e
Validity
Not Before: Jan 1 12:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56d9855c177aa21f25aa0efc60017866b51f4231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:ed:95:ca:e9:19:ef:b4:98:a9:8d:71:21:
66:5d:7b:ae:0c:f8:c3:f9:f9:89:4f:15:0f:30:d6:
44:bc:71:00:07:f7:7a:03:c6:14:7e:ff:13:2e:23:
1e:58:e1:5a:29:15:af:4e:e5:4c:1b:b6:1c:46:2b:
84:3f:c4:7b:0e:04:82:d5:4d:bd:5d:60:8f:87:63:
08:99:f2:d9:2c:40:54:d0:05:56:e9:35:da:5c:27:
27:b6:52:0e:f4:b4:d3:77:c1:50:60:3e:79:69:7d:
e7:24:9b:30:c0:ba:b6:46:5f:6b:7f:d9:b7:48:77:
3c:a1:44:d6:ae:0e:ac:30:5c:b3:dd:dc:c3:6a:42:
b4:aa:f2:40:23:d8:26:03:03:1e:89:21:5f:71:c2:
c4:f5:ce:61:8f:d1:01:6b:74:cf:e2:a7:6d:0c:59:
e1:a9:d4:5a:11:b4:9c:35:99:aa:d3:81:f0:67:7e:
7a:0a:33:b8:a5:0e:9f:80:0f:fc:82:ae:8c:c4:49:
45:0f:b3:4f:5b:1a:0d:dc:3b:db:03:40:2d:45:0e:
e0:a2:7f:8e:74:00:7f:d7:f5:58:50:aa:f9:21:7f:
90:da:92:f7:9a:5b:38:7e:64:6a:aa:57:21:38:5b:
eb:01:1e:a6:8f:63:84:d1:33:18:1b:8d:b5:34:59:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D9:85:5C:17:7A:A2:1F:25:AA:0E:FC:60:01:78:66:B5:1F:42:31
X509v3 Authority Key Identifier:
keyid:2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/VtmFXBd6oh8lqg78YAF4ZrUfQjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.180.0/24
Signature Algorithm: sha256WithRSAEncryption
56:bf:a4:b3:92:81:9a:40:d9:5b:ff:4e:78:b6:29:25:6e:01:
27:79:2b:8f:2b:95:3e:6c:e2:40:ed:76:22:38:20:a7:ea:8d:
d3:b5:ad:60:44:b5:b1:38:d3:91:66:72:85:da:99:1b:b9:4b:
1b:41:20:71:92:f2:3c:aa:32:db:b3:89:66:36:36:30:6d:6a:
3b:b9:ed:fa:b9:64:4d:af:2f:02:ae:5f:de:c0:0a:d9:90:8e:
bb:ab:b7:cb:75:ec:9d:53:7a:5d:49:3d:73:bd:ae:bf:90:20:
60:be:96:f0:c5:a5:8e:f4:13:73:63:82:94:83:6c:6e:5b:3a:
c9:55:00:b4:46:5a:a8:2c:c7:45:f1:1e:f4:0b:6d:ba:b2:c1:
d5:2e:40:20:17:97:b9:33:0d:c9:78:90:41:59:6e:42:86:51:
17:dd:0f:b3:e2:3d:0d:b2:08:3a:d6:28:b9:f6:21:2d:79:83:
cf:aa:de:66:1d:32:ac:21:0d:2c:5c:21:ad:27:b8:30:de:b5:
e2:9a:4b:2c:4d:64:c6:d0:55:91:9e:a1:cf:34:26:8c:77:6c:
7c:58:90:43:70:d1:d4:bb:58:c4:c3:6b:cc:52:ad:71:48:c7:
fa:e1:94:19:55:4e:fd:0f:5f:72:b5:27:9c:8b:c1:55:63:af:
35:14:c7:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:13:11 2024 by rpki-client on console-fra.rpki-client.org