Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/qpjiwTkDS1ctlqN_n_0uju4Hy_s.roa
File: qpjiwTkDS1ctlqN_n_0uju4Hy_s.roa (raw, json)
Hash identifier: lRyHJaYz5sqjP7v9ZdZzua/Wn+BjV89oiBAtw3Wu4l8=
Subject key identifier: AA:98:E2:C1:39:03:4B:57:2D:96:A3:7F:9F:FD:2E:8E:EE:07:CB:FB
Certificate issuer: /CN=04aaff87f6dc0d3699bc2937a34dc717f94f007e
Certificate serial: 01928B4E86567C07A237762068E2255414ED
Authority key identifier: 04:AA:FF:87:F6:DC:0D:36:99:BC:29:37:A3:4D:C7:17:F9:4F:00:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKr_h_bcDTaZvCk3o03HF_lPAH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/qpjiwTkDS1ctlqN_n_0uju4Hy_s.roa
Signing time: Mon 14 Oct 2024 13:53:52 +0000
ROA not before: Mon 14 Oct 2024 13:53:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16236
IP address blocks: 151.88.0.0/16 maxlen: 16
151.88.22.0/24 maxlen: 24
151.88.35.0/24 maxlen: 24
151.88.40.0/24 maxlen: 24
151.88.41.0/24 maxlen: 24
151.88.48.0/24 maxlen: 24
151.88.77.0/24 maxlen: 24
151.88.109.0/24 maxlen: 24
151.88.113.0/24 maxlen: 24
151.88.176.0/24 maxlen: 24
151.92.0.0/16 maxlen: 16
151.92.2.0/24 maxlen: 24
151.92.4.0/24 maxlen: 24
151.92.12.0/24 maxlen: 24
151.92.83.0/24 maxlen: 24
151.92.91.0/24 maxlen: 24
151.92.154.0/24 maxlen: 24
151.92.155.0/24 maxlen: 24
151.92.158.0/24 maxlen: 24
151.92.166.0/24 maxlen: 24
151.92.176.0/24 maxlen: 24
151.92.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/BKr_h_bcDTaZvCk3o03HF_lPAH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/BKr_h_bcDTaZvCk3o03HF_lPAH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/BKr_h_bcDTaZvCk3o03HF_lPAH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:4e:86:56:7c:07:a2:37:76:20:68:e2:25:54:14:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04aaff87f6dc0d3699bc2937a34dc717f94f007e
Validity
Not Before: Oct 14 13:53:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa98e2c139034b572d96a37f9ffd2e8eee07cbfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:03:1e:24:45:f7:6c:65:bd:97:50:0e:38:89:
2d:04:d6:12:08:1f:5d:33:39:f0:51:6b:c7:65:19:
87:63:ad:20:b9:ba:45:3a:bd:d3:c5:a9:b1:31:ac:
a0:9d:e5:e3:aa:d4:91:6a:18:e7:d3:75:20:93:22:
78:ae:f1:6d:0b:2f:18:9d:26:90:7f:cd:2b:47:37:
8f:e2:ba:3b:a2:30:44:a0:a2:b9:2b:42:ff:c9:af:
33:35:b2:1e:0b:09:b6:4e:08:50:dd:24:16:0a:5b:
c9:dd:78:23:4d:da:e0:62:7d:88:8e:ef:23:50:ad:
95:94:14:38:f6:ce:9b:65:84:e9:02:62:04:3c:c9:
df:0c:b0:0f:c4:22:06:08:65:32:af:20:1f:fc:78:
d9:26:c7:3e:a8:e3:99:cb:d9:09:51:9d:ea:bc:61:
84:c6:c5:83:3a:b0:58:8b:2b:61:58:63:bd:99:c5:
88:6c:00:5f:2c:cb:46:80:87:ca:83:b5:dc:d7:52:
d8:7f:8d:4c:25:f6:e1:99:b1:22:56:c5:51:f6:b3:
5e:8f:40:76:71:36:59:50:e1:c4:92:30:9d:48:d4:
75:47:54:49:ce:a5:0f:e6:de:56:e8:95:79:6f:57:
27:0e:91:76:58:49:fc:04:db:a1:32:42:4c:69:c8:
44:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:98:E2:C1:39:03:4B:57:2D:96:A3:7F:9F:FD:2E:8E:EE:07:CB:FB
X509v3 Authority Key Identifier:
keyid:04:AA:FF:87:F6:DC:0D:36:99:BC:29:37:A3:4D:C7:17:F9:4F:00:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKr_h_bcDTaZvCk3o03HF_lPAH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/qpjiwTkDS1ctlqN_n_0uju4Hy_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/5f2e31-9ad6-438e-ad7c-e3e0c2dbf067/1/BKr_h_bcDTaZvCk3o03HF_lPAH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.88.0.0/16
151.92.0.0/16
Signature Algorithm: sha256WithRSAEncryption
06:78:1e:29:ae:fa:5a:1c:60:ef:6c:4f:e6:fa:af:dc:a0:78:
7e:ea:de:8b:a4:a3:75:f1:f3:48:74:f5:f0:2f:90:28:c5:14:
00:ac:b7:15:4a:37:40:86:6f:ad:fe:5f:9c:15:41:e9:4d:db:
e7:c0:3a:da:6b:9e:fc:52:14:96:70:b5:d1:c1:57:61:cf:bf:
e1:a8:08:d4:36:94:cf:b3:4f:a6:a8:df:97:d6:9b:2c:13:2d:
84:30:50:6d:dc:71:10:51:ee:86:6e:a5:1d:6f:09:83:e7:5c:
d5:da:0e:f3:a6:f1:bb:d2:c8:19:0f:54:cb:fd:07:93:60:e7:
94:29:6f:dc:63:b6:5d:60:a9:9e:bb:84:7b:b0:ae:f2:e1:39:
f4:a0:fb:7f:b1:ae:a2:8e:2b:f1:04:01:29:cc:c8:be:70:5d:
86:bb:d6:8c:82:ae:9a:00:4d:7e:25:1c:91:1d:44:73:41:84:
c7:62:82:64:1c:cb:22:9d:4f:3f:1a:50:81:5f:32:52:09:0f:
92:34:8e:7e:83:a9:6a:ad:ed:93:ea:ce:f3:8b:ad:2d:8e:09:
33:68:6f:e8:bb:7a:45:d1:bd:81:79:ec:6b:db:bb:e6:a2:19:
b9:91:6a:60:c0:ee:65:bd:a3:df:33:77:b6:52:a7:47:6c:83:
c0:c7:f3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:40 2024 by rpki-client on console-fra.rpki-client.org