Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/Q1mE2HU0yHkeyasA-WhW1ASHmoo.roa
File: Q1mE2HU0yHkeyasA-WhW1ASHmoo.roa (raw, json)
Hash identifier: LeHqA6HM0OSVHdIafLPhzOnsmb+AJYWXyyQEDhiBuUI=
Subject key identifier: 43:59:84:D8:75:34:C8:79:1E:C9:AB:00:F9:68:56:D4:04:87:9A:8A
Certificate issuer: /CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf
Certificate serial: 01929F76D0EF8943D1BF58B8FB73B1373518
Authority key identifier: A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/Q1mE2HU0yHkeyasA-WhW1ASHmoo.roa
Signing time: Fri 18 Oct 2024 11:50:16 +0000
ROA not before: Fri 18 Oct 2024 11:50:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35197
IP address blocks: 185.103.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9f:76:d0:ef:89:43:d1:bf:58:b8:fb:73:b1:37:35:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf
Validity
Not Before: Oct 18 11:50:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=435984d87534c8791ec9ab00f96856d404879a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0f:36:d6:a7:f9:38:bb:ca:2c:a0:53:94:6f:
eb:97:36:2b:19:f1:7b:26:c7:0d:67:4a:af:c4:4e:
6f:5c:b7:0f:a9:9c:f6:ad:da:33:0e:d1:89:ae:14:
ef:9e:0b:7d:ab:2c:0e:36:1f:e4:b7:69:1d:63:08:
9f:31:3d:d5:9a:91:4d:62:98:a7:7e:fc:b0:6e:34:
a2:61:94:5a:e5:67:a5:9e:d9:72:91:9e:35:0a:a5:
59:cf:1a:1b:5b:59:fa:8b:2e:4e:1c:ca:12:4e:ac:
67:32:49:53:f8:ce:0b:e7:2a:da:bd:ea:e0:1f:af:
47:08:af:44:d0:10:b8:a1:c8:bf:d7:2a:11:ba:30:
b8:19:25:d6:74:c9:ba:af:6c:bb:db:88:b3:53:31:
0c:d6:a9:2a:f5:6f:39:11:d0:c9:bc:39:2b:25:02:
ce:b4:c5:3d:16:92:1c:75:ee:f5:1b:28:f7:d0:ef:
01:2e:01:cb:15:e0:ca:86:8f:bf:ca:23:a3:ab:eb:
42:94:06:b5:4c:72:0b:ec:52:2f:76:bc:3c:bf:bc:
36:56:2b:f4:3d:bb:74:8c:cd:85:1b:2c:74:62:52:
a6:25:d0:17:b0:53:5c:d7:2d:4b:d2:87:9c:3e:2e:
bb:6b:3d:30:41:30:25:c9:ee:91:ba:29:71:d8:7c:
43:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:59:84:D8:75:34:C8:79:1E:C9:AB:00:F9:68:56:D4:04:87:9A:8A
X509v3 Authority Key Identifier:
keyid:A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/Q1mE2HU0yHkeyasA-WhW1ASHmoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.21.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:d5:2a:4d:f2:4d:83:c3:d0:75:ff:14:fb:07:e2:f6:3f:09:
5b:51:3a:fa:cb:a1:94:f2:d6:3a:ac:a3:ee:dc:65:d6:d5:19:
8b:56:7d:86:5a:ad:94:ba:a0:c0:3c:54:5c:96:bc:bb:c5:86:
99:92:fb:19:a7:2f:69:e9:9a:94:bb:af:28:3d:a2:7e:78:8e:
39:cf:51:ab:ba:63:d2:81:bd:ce:53:5a:34:05:56:cb:6b:85:
49:b6:d4:38:64:7c:52:a6:29:a0:c0:a8:ab:ce:ce:76:0f:a5:
91:ae:dc:8d:f0:44:1a:ae:cd:01:06:02:66:cc:b1:2b:62:e2:
79:88:2f:08:35:57:af:b4:08:bc:30:78:28:eb:08:19:ce:2b:
48:fa:19:7b:b6:95:f2:1e:31:4d:fe:b9:42:cc:f6:04:46:73:
b2:cd:7a:a5:58:77:c9:99:b1:d0:e4:3a:2c:db:d0:97:a2:a4:
9a:a6:bd:cd:96:46:3d:b7:9d:dd:53:5f:0e:2e:1b:d3:0e:08:
1a:d0:8f:d9:1c:22:78:d7:69:4b:29:cb:90:b9:a6:ab:2f:cc:
75:82:ae:65:88:f3:63:32:70:9e:34:98:55:b3:8c:a1:88:de:
7c:e8:df:eb:b0:dd:39:b0:c1:70:35:15:aa:c5:49:50:80:3e:
80:0a:2d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:25:48 2024 by rpki-client on console-ams.rpki-client.org