Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/jEVLVtHeGZ5kA-UP9tTmuQJyZl8.roa
File: jEVLVtHeGZ5kA-UP9tTmuQJyZl8.roa (raw, json)
Hash identifier: 03fMx5vQg2kgIfqIK8vU+d9ikJ3qb0FY5wEFXPqu0OM=
Subject key identifier: 8C:45:4B:56:D1:DE:19:9E:64:03:E5:0F:F6:D4:E6:B9:02:72:66:5F
Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Certificate serial: 018CC726967DA7DDF0173C2E6244AAF5E33D
Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/jEVLVtHeGZ5kA-UP9tTmuQJyZl8.roa
Signing time: Mon 01 Jan 2024 22:30:43 +0000
ROA not before: Mon 01 Jan 2024 22:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30848
IP address blocks: 185.116.62.0/29 maxlen: 29
185.116.62.0/32 maxlen: 32
185.116.62.0/24 maxlen: 24
185.116.62.0/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:96:7d:a7:dd:f0:17:3c:2e:62:44:aa:f5:e3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67
Validity
Not Before: Jan 1 22:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c454b56d1de199e6403e50ff6d4e6b90272665f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:a1:90:a6:5f:b0:5a:3f:ba:1b:e8:1a:3e:
bc:e7:8f:06:1b:49:f5:f0:e1:ac:18:b7:fc:97:96:
25:12:d0:3e:d5:8f:ab:18:cb:6c:cd:70:82:54:db:
52:57:b6:39:d6:84:7c:9a:dc:d7:fb:e7:71:a5:27:
66:c4:99:29:44:d5:dd:23:48:05:4b:70:ce:bc:df:
87:0a:43:1b:df:8e:38:fc:3a:3b:27:17:da:68:26:
48:31:fc:65:27:d1:93:31:4a:dd:88:fb:ca:aa:c2:
90:07:a3:0b:b5:1d:77:df:95:61:04:a2:cf:9e:90:
45:dd:40:ba:95:a9:60:0d:ab:42:b7:61:f7:fe:8f:
19:87:d8:c4:43:17:1f:5c:2a:cf:9d:7d:04:e1:e7:
0e:ca:92:19:01:bf:a1:13:63:66:fd:45:bc:cf:f5:
f4:30:52:31:5b:04:37:b0:af:63:f2:fb:b4:6b:60:
27:bc:1d:86:7f:9f:1a:48:fd:8f:34:ff:b7:1f:5c:
d8:7a:37:53:8a:c7:3d:35:4b:4b:6b:b3:ca:fa:95:
1a:d0:4b:81:5d:fc:16:eb:3a:46:a0:b3:52:b4:aa:
08:59:8b:5c:59:de:ca:89:74:1a:4c:af:ea:11:13:
51:d9:a6:56:f2:86:b5:45:e6:8f:4e:29:04:4d:ab:
15:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:45:4B:56:D1:DE:19:9E:64:03:E5:0F:F6:D4:E6:B9:02:72:66:5F
X509v3 Authority Key Identifier:
keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/jEVLVtHeGZ5kA-UP9tTmuQJyZl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.62.0/24
Signature Algorithm: sha256WithRSAEncryption
51:df:4d:e0:e9:eb:f7:9e:81:58:77:c8:71:ba:c4:ee:48:72:
d0:1a:1b:af:2f:a0:cc:a2:ce:10:f9:03:2d:29:63:23:b5:84:
d0:28:14:7a:f6:ad:38:c9:1c:a7:21:99:8f:bf:5c:0b:b9:8d:
fd:4e:ef:c1:ac:52:fe:82:bb:ab:37:77:20:eb:f9:ca:30:d3:
49:d8:23:11:55:72:0d:87:a5:99:61:a6:20:68:4c:5a:ef:9d:
0b:17:94:7d:da:8e:cb:8e:57:16:2d:09:b4:c0:51:3f:0b:8d:
1f:50:37:e1:63:20:1b:81:af:95:9b:bd:bc:fb:18:7b:6d:d4:
4e:d5:ba:5e:cb:00:9c:f4:e6:4a:91:2c:43:1f:ae:69:f8:3b:
f2:09:14:b8:ef:92:33:a2:bc:ac:f2:fa:be:2e:7f:c7:43:b1:
5e:b6:49:07:58:d3:a3:2a:95:03:76:cf:4d:6a:cb:66:6f:cc:
5a:81:77:a6:a2:87:5b:ff:f9:b1:37:ea:5f:1d:2a:64:39:6e:
1d:38:39:ed:98:40:d1:ca:74:c6:fe:4a:06:4f:c7:f4:d7:86:
86:97:60:80:29:41:d6:bd:9d:3b:18:db:39:94:f9:c5:1f:c1:
55:0a:11:ae:0d:db:a7:e6:e6:20:af:3b:22:87:a2:9c:88:65:
f7:00:ed:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:34:02 2024 by rpki-client on console-ams.rpki-client.org