Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/1-4jzbmtSTcBAUlg6orQYcyRoMBQ.roa
File: 1-4jzbmtSTcBAUlg6orQYcyRoMBQ.roa (raw, json)
Hash identifier: SofyizN4KaphZCwQJ4t4941TXk7OTJH0ZUFH7zBDgT0=
Subject key identifier: FB:88:F3:6E:6B:52:4D:C0:40:52:58:3A:A2:B4:18:73:24:68:30:14
Certificate issuer: /CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Certificate serial: 019293E2DE5A4D39A906738A919A7ACAF7A5
Authority key identifier: A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/1-4jzbmtSTcBAUlg6orQYcyRoMBQ.roa
Signing time: Wed 16 Oct 2024 05:52:51 +0000
ROA not before: Wed 16 Oct 2024 05:52:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 185.157.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:93:e2:de:5a:4d:39:a9:06:73:8a:91:9a:7a:ca:f7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71a2a2db4d7418e9bf4f93c8c046a0161663c62
Validity
Not Before: Oct 16 05:52:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb88f36e6b524dc04052583aa2b4187324683014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ca:2c:71:b9:d8:bf:81:a2:da:89:47:40:c7:
11:73:fd:66:92:1b:1b:83:4c:2a:96:8f:1f:4b:39:
78:12:1f:92:47:10:c0:c7:25:c7:74:e0:c4:09:f1:
12:8c:03:8e:8c:90:93:29:ed:78:b1:03:e4:20:7a:
e9:73:b1:e7:f8:bd:96:97:d3:7b:27:6a:3d:4f:3b:
96:6c:14:ec:f3:d1:a8:ba:1f:0d:90:bc:1a:89:d8:
95:67:f5:5b:8d:46:f9:f2:59:ea:3a:35:9c:9d:19:
0b:27:5b:11:53:22:c9:be:9f:12:e7:8e:b0:3c:e6:
a8:6f:e8:15:86:52:97:d8:8e:7a:b3:33:dc:b9:ab:
09:00:84:02:14:aa:c8:d8:5e:43:7b:02:b6:67:56:
3c:61:58:a7:f5:f4:39:ce:f3:af:e2:0f:38:6f:18:
be:1c:2f:cf:c0:b0:1f:78:85:52:8f:38:0a:57:a3:
d9:3b:5d:fc:48:fb:29:c7:45:e3:2b:db:b0:e2:a2:
6c:4e:cf:42:de:2e:7e:3f:7e:8f:11:a2:4e:11:37:
26:fd:3c:26:be:e6:16:a0:92:7c:b8:c4:c0:c6:a1:
58:32:9e:35:d5:f6:10:d6:8d:33:45:38:f2:21:ec:
03:39:f4:47:23:0f:39:db:f9:94:64:54:52:b8:fa:
27:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:88:F3:6E:6B:52:4D:C0:40:52:58:3A:A2:B4:18:73:24:68:30:14
X509v3 Authority Key Identifier:
keyid:A7:1A:2A:2D:B4:D7:41:8E:9B:F4:F9:3C:8C:04:6A:01:61:66:3C:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxoqLbTXQY6b9Pk8jARqAWFmPGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/1-4jzbmtSTcBAUlg6orQYcyRoMBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/b7abdf-3be1-4642-9f3e-f1f0b9598f32/1/pxoqLbTXQY6b9Pk8jARqAWFmPGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.51.0/24
Signature Algorithm: sha256WithRSAEncryption
44:70:16:93:da:f0:50:33:e2:56:00:93:11:80:06:ac:7b:d2:
8a:d8:03:b2:c7:e0:de:d2:91:bc:11:7e:05:b8:72:af:35:23:
17:40:77:b6:51:b6:5b:b8:a8:8a:45:6a:36:3f:94:be:2d:be:
69:4d:77:1f:c1:34:d5:f4:2a:6d:da:a0:57:c5:d5:2c:12:68:
92:86:c1:c0:ae:dc:92:7d:24:6b:e7:9a:5f:fb:2f:3a:cd:a3:
ae:7d:d4:07:99:b9:15:ed:cb:4c:70:3b:e4:50:66:80:54:ce:
c9:23:34:ef:2f:90:80:dc:5a:da:70:24:db:5f:ff:8e:74:b7:
86:76:39:cf:48:ea:54:74:67:fe:6a:70:0c:55:ba:95:3e:a7:
f8:18:03:8f:d7:e9:6b:e8:44:84:28:ef:66:30:03:62:81:c5:
46:13:da:c6:fc:aa:3d:e6:76:b5:9b:68:74:70:eb:16:e4:9e:
ce:d1:51:e1:72:11:51:45:8f:1c:d0:50:79:2e:6e:32:d2:0e:
a1:c8:b8:64:aa:c9:50:55:5a:b8:8b:1a:96:74:15:43:f3:60:
4f:6f:bf:d9:f4:ef:c0:8e:58:70:33:84:a4:dd:62:c8:cc:e0:
58:ac:42:92:af:a3:f5:06:dd:21:3c:fd:19:df:8e:65:42:2a:
37:c9:9f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:56:08 2024 by rpki-client on console-fra.rpki-client.org