Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/AGhPvUpSo_bEBJ7h43A-bnXo7vQ.roa
File: AGhPvUpSo_bEBJ7h43A-bnXo7vQ.roa (raw, json)
Hash identifier: rL5RxaapTAcORzgBcfHebbbU1JAJJ53TSk7ArF0KtwM=
Subject key identifier: 00:68:4F:BD:4A:52:A3:F6:C4:04:9E:E1:E3:70:3E:6E:75:E8:EE:F4
Certificate issuer: /CN=c1eb076d16702c7dbea972e2972ef576a1f2c873
Certificate serial: 018CC727641D828D53C78A22915C1450E96B
Authority key identifier: C1:EB:07:6D:16:70:2C:7D:BE:A9:72:E2:97:2E:F5:76:A1:F2:C8:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wesHbRZwLH2-qXLily71dqHyyHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/AGhPvUpSo_bEBJ7h43A-bnXo7vQ.roa
Signing time: Mon 01 Jan 2024 22:31:36 +0000
ROA not before: Mon 01 Jan 2024 22:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43573
IP address blocks: 185.32.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/wesHbRZwLH2-qXLily71dqHyyHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/wesHbRZwLH2-qXLily71dqHyyHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/wesHbRZwLH2-qXLily71dqHyyHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:64:1d:82:8d:53:c7:8a:22:91:5c:14:50:e9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1eb076d16702c7dbea972e2972ef576a1f2c873
Validity
Not Before: Jan 1 22:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00684fbd4a52a3f6c4049ee1e3703e6e75e8eef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c5:54:fa:c8:f3:91:f3:a3:28:f2:95:10:e1:
e9:11:0b:4c:1c:cd:68:6f:9b:31:5d:96:0c:22:df:
76:f7:60:ea:f3:a0:2b:6f:03:3f:98:57:01:c7:04:
0d:96:c5:e8:ee:db:2b:11:64:88:89:48:0b:4c:94:
29:7e:19:74:25:13:63:de:9f:54:40:17:01:00:d3:
eb:f9:51:5d:a1:7e:9c:7c:42:8a:16:9b:5c:4a:11:
be:67:0f:6f:26:32:71:52:06:7d:f3:d5:d6:9c:65:
95:a8:85:d0:26:74:5c:a5:d2:f0:05:8e:7b:f9:93:
4b:42:9f:f5:c9:ef:ae:fa:57:3a:0a:cb:46:95:54:
bb:41:22:69:7e:78:5c:34:ac:c8:5a:2a:12:05:cd:
66:5c:6b:8b:6b:1c:54:07:3a:a0:74:3d:74:39:c7:
56:ad:3b:81:f5:2c:aa:9f:fa:b6:8a:d9:79:b0:a1:
ae:1c:96:18:48:45:a2:2d:49:5e:3a:61:c6:78:ce:
3a:0b:f4:2c:b6:c8:fb:05:11:f6:6c:06:1e:3b:f3:
5e:53:4b:5f:53:42:aa:4d:96:65:82:ef:ab:9f:0c:
10:d8:2e:2b:79:9d:17:ee:5a:4a:2b:c7:0f:44:cb:
ef:1c:1d:29:98:6f:cd:00:74:55:1c:35:69:2c:fd:
a1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:68:4F:BD:4A:52:A3:F6:C4:04:9E:E1:E3:70:3E:6E:75:E8:EE:F4
X509v3 Authority Key Identifier:
keyid:C1:EB:07:6D:16:70:2C:7D:BE:A9:72:E2:97:2E:F5:76:A1:F2:C8:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wesHbRZwLH2-qXLily71dqHyyHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/AGhPvUpSo_bEBJ7h43A-bnXo7vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/a43c6e-349c-4914-8da3-6c32a6ab1ef2/1/wesHbRZwLH2-qXLily71dqHyyHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.103.0/24
Signature Algorithm: sha256WithRSAEncryption
70:32:4c:24:39:b5:be:60:70:e8:cb:2b:1c:58:15:c8:49:00:
20:a8:ba:b9:1a:9d:c7:98:5d:1d:25:c2:6c:29:6b:41:9b:29:
0b:55:a8:19:af:f4:84:ab:4e:ae:bd:68:8e:e4:13:51:af:ff:
78:8d:37:8f:0e:36:63:8c:a5:6d:0c:2c:fe:9e:46:00:db:a0:
0e:7b:95:13:8c:9a:28:4a:61:56:d7:72:96:e0:99:3e:c8:71:
4f:07:0a:80:e5:c8:ad:18:de:79:b9:d7:80:7e:56:89:e7:4a:
25:5f:5f:db:4d:cb:1f:3f:ef:4e:04:08:2f:f8:82:52:94:3e:
1f:15:f5:24:8c:39:fe:8e:02:c4:b3:fc:43:8f:7a:46:c6:59:
30:bf:87:dc:29:4d:7d:72:d2:12:cb:5d:a5:a6:e0:10:61:70:
32:7e:60:bd:7e:39:ac:24:95:e4:0c:cc:5a:be:ca:67:60:12:
21:b4:9b:75:63:b2:3d:55:f8:05:54:f8:c8:21:ba:1b:92:23:
92:f9:5c:2e:d5:c4:5d:54:c7:66:68:d8:39:0f:4a:91:da:2e:
88:24:e1:16:69:8e:73:e7:1b:4c:98:f8:19:8e:f1:95:2a:94:
a6:27:ac:ee:e5:9d:ba:5c:7a:7d:47:c7:d7:16:53:d9:01:28:
7c:18:ec:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 18:34:00 2024 by rpki-client on console-ams.rpki-client.org