Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ki4-4_6vgC9JxUtTgITql0-gK4c.roa
File: ki4-4_6vgC9JxUtTgITql0-gK4c.roa (raw, json)
Hash identifier: +048V9TSoELjwfbiWURw3JmNw1zyvDPVPe2yT/DyNDU=
Subject key identifier: 92:2E:3E:E3:FE:AF:80:2F:49:C5:4B:53:80:84:EA:97:4F:A0:2B:87
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018CC64ADD0C99BF7B1B9F00C6AEC94C8E6E
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ki4-4_6vgC9JxUtTgITql0-gK4c.roa
Signing time: Mon 01 Jan 2024 18:30:44 +0000
ROA not before: Mon 01 Jan 2024 18:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39378
IP address blocks: 94.247.44.0/24 maxlen: 24
185.90.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:dd:0c:99:bf:7b:1b:9f:00:c6:ae:c9:4c:8e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 18:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=922e3ee3feaf802f49c54b538084ea974fa02b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:72:c8:22:b5:c8:8d:88:e5:35:6e:01:a2:
71:3e:1a:e6:8a:8b:7f:f1:a8:35:e3:a7:93:d5:7c:
30:f3:75:83:36:05:02:5d:5e:7d:e4:26:e6:53:e4:
01:6c:d5:b4:d0:8c:25:e9:34:e9:44:e9:97:f9:73:
9b:87:35:54:9a:70:b2:d0:9b:8b:ce:ec:ef:19:88:
af:9d:17:d3:4b:98:7e:34:3e:a3:d4:f6:ef:a7:28:
6a:dd:32:42:a4:b3:5d:ad:ba:f5:fe:a1:d9:b8:8d:
56:18:18:ec:7b:b9:52:de:0b:c2:16:f9:f4:c4:f2:
1f:63:57:01:fb:a2:1f:45:e2:3c:c5:f0:fd:20:81:
6c:18:fd:45:d6:73:24:e3:ea:4e:c3:87:5c:41:97:
e2:97:ba:98:5e:70:f3:a3:90:92:ff:cf:c9:af:c9:
0d:17:ac:27:11:aa:fe:65:4d:1b:86:08:e0:7c:d3:
88:98:0d:84:53:78:f1:1b:be:7f:43:ba:8f:26:11:
c1:fc:27:d2:d3:95:f8:14:af:3b:8f:cc:55:73:84:
08:66:a1:11:5c:34:08:e6:8c:00:f6:3b:05:e1:00:
bd:d4:2f:cc:bd:1c:cd:38:bc:dd:1f:87:1b:24:15:
31:79:2b:f1:1e:e9:03:7f:85:75:db:51:21:a5:b0:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2E:3E:E3:FE:AF:80:2F:49:C5:4B:53:80:84:EA:97:4F:A0:2B:87
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/ki4-4_6vgC9JxUtTgITql0-gK4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.44.0/24
185.90.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:e8:c1:ee:df:10:ad:51:b6:8b:d1:48:86:8b:3d:9a:ac:f9:
e3:23:6c:5e:3d:60:1e:eb:a8:9c:d0:2c:54:89:f4:c3:40:b4:
c7:14:fd:50:09:a3:e9:99:6f:ea:c3:97:35:db:15:be:11:55:
4f:d1:af:d6:29:44:0f:7c:08:78:72:02:29:28:3c:1b:b5:0e:
4b:8f:77:cd:e9:d6:11:b6:3b:b8:64:d6:38:e1:d8:16:7a:0f:
64:de:25:ad:be:f4:9d:f3:bc:c3:09:a4:0d:c4:6a:8b:2e:6c:
41:ae:e6:21:24:6c:73:47:73:a7:43:65:12:2e:82:32:5d:3f:
ce:2d:1a:34:ec:0b:6d:19:b1:ea:e1:08:43:eb:0b:bd:a2:2f:
b2:62:77:d4:a3:98:4a:1c:b2:07:0d:21:6b:2f:d7:24:a0:de:
84:b8:42:4a:5d:79:6d:9d:a4:9a:ca:0a:f8:d8:a8:25:83:d8:
3d:04:21:2a:d9:20:55:a1:87:1a:fe:7a:c7:51:c1:17:89:84:
f6:33:1b:a1:d0:f3:5f:07:37:5c:7d:ac:af:eb:68:75:70:57:
fd:ff:ee:b2:45:3d:eb:1d:16:cf:8b:6b:78:93:3e:68:c4:84:
56:12:49:a0:77:c4:be:e6:5a:18:62:d1:26:1f:ed:ce:b9:3c:
3e:29:6a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 08:30:48 2024 by rpki-client on console-fra.rpki-client.org