Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LvQkmVoCnh2PMgIYPo_HDl4373Q.roa
File: LvQkmVoCnh2PMgIYPo_HDl4373Q.roa (raw, json)
Hash identifier: b1eW9VsJ9DP4aqFQtmdoLVvjSSATyhK8alm4V8U8DbA=
Subject key identifier: 2E:F4:24:99:5A:02:9E:1D:8F:32:02:18:3E:8F:C7:0E:5E:37:EF:74
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018E762BCBB0486CCB6F4E54960E0B3E1EDA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LvQkmVoCnh2PMgIYPo_HDl4373Q.roa
Signing time: Mon 25 Mar 2024 15:12:45 +0000
ROA not before: Mon 25 Mar 2024 15:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61112
IP address blocks: 185.126.80.0/24 maxlen: 24
185.214.103.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:2b:cb:b0:48:6c:cb:6f:4e:54:96:0e:0b:3e:1e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 25 15:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ef424995a029e1d8f3202183e8fc70e5e37ef74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:23:fc:03:4d:b3:04:94:f7:d4:22:a6:3a:
e4:37:f1:a0:d6:ca:8a:d6:79:db:28:e5:61:58:8f:
3b:ab:c8:db:06:e9:e4:ac:59:b9:d6:c4:38:28:f8:
d1:ad:f5:91:2c:3d:37:0c:47:47:77:75:b4:b7:f4:
2d:2a:81:43:47:6c:07:5a:39:a1:b1:1d:c6:84:76:
e8:fb:e2:a3:f4:6c:f8:42:23:e2:c3:06:0c:40:85:
36:18:b1:8e:4e:f5:11:12:53:a8:7c:52:c7:86:7e:
0d:60:80:74:1e:5d:64:2a:ea:1f:4b:53:3f:eb:78:
3d:6c:dd:67:38:68:ad:35:e7:a6:fc:b3:4a:01:6c:
4b:4e:2e:63:ce:f7:f0:ca:40:69:42:85:01:44:32:
78:ab:b4:5f:52:9c:92:04:49:b0:3e:8d:d5:13:44:
02:82:16:f2:04:9c:78:50:54:e8:3a:67:e2:8d:e7:
52:e9:f5:40:a4:a8:43:ad:d8:da:20:c5:41:29:9f:
8f:46:9f:bd:37:ea:ca:ad:68:fa:87:d4:87:43:46:
ce:82:b2:ed:97:76:45:29:c3:8b:b9:39:17:1c:25:
a0:fe:d2:bf:21:5b:38:bf:e4:68:f7:1d:ca:ca:32:
89:99:20:a7:7f:4e:29:f0:ca:36:bd:0f:79:62:77:
a2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F4:24:99:5A:02:9E:1D:8F:32:02:18:3E:8F:C7:0E:5E:37:EF:74
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LvQkmVoCnh2PMgIYPo_HDl4373Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.80.0/24
185.214.103.0/24
185.225.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:74:c9:fa:d5:2d:17:93:91:bb:14:ad:fa:21:08:cb:fa:2b:
de:6d:3a:2b:98:c0:4f:b3:61:9c:96:d0:b0:ac:e5:e8:7c:87:
27:cb:62:98:35:dd:b0:dc:33:5d:82:4a:bb:11:b5:89:fd:d6:
ed:7a:33:b8:84:64:c1:c4:8f:12:d8:f2:a0:70:0f:22:f7:4c:
fa:b0:57:2b:db:31:f8:0e:a6:76:20:76:9a:41:2d:66:aa:18:
00:aa:95:8a:1c:2b:0c:9e:67:28:1b:29:cc:95:52:b9:21:15:
71:a0:87:ba:d8:18:d2:a4:94:29:9e:dc:24:20:50:8d:25:14:
95:b5:8f:ff:69:51:8e:d5:43:aa:ee:f0:ad:c1:56:60:d7:8b:
64:ed:60:2a:7f:6d:a2:5d:bb:7a:98:a7:23:0b:df:15:1d:b8:
14:04:06:ff:b8:51:10:cc:bb:b1:65:9b:d2:b9:e1:6f:72:71:
a9:6d:ef:dd:e7:a0:c4:ca:95:f5:1b:c3:25:5e:12:b9:9e:26:
75:45:fb:78:de:8f:5e:cd:c3:91:71:16:03:ad:fa:ec:6f:67:
69:4f:6d:38:4e:8b:52:58:d2:8f:03:71:a9:f8:18:f8:39:3c:
41:e4:5d:7c:65:dd:33:22:9b:39:2a:29:30:80:0a:74:a5:9d:
e9:cf:96:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:55:31 2024 by rpki-client on console-fra.rpki-client.org