Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/guQTixey6alHiygZ1vz05gReRlc.roa
File: guQTixey6alHiygZ1vz05gReRlc.roa (raw, json)
Hash identifier: MQ3HXkur67eEG3T6s3OpuLZMhQg/UL0EEHXsdrkUCtg=
Subject key identifier: 82:E4:13:8B:17:B2:E9:A9:47:8B:28:19:D6:FC:F4:E6:04:5E:46:57
Certificate issuer: /CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Certificate serial: 018CC56EB0BD9D7AAB7A296F61571D5285D3
Authority key identifier: BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/guQTixey6alHiygZ1vz05gReRlc.roa
Signing time: Mon 01 Jan 2024 14:30:14 +0000
ROA not before: Mon 01 Jan 2024 14:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201011
IP address blocks: 185.247.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/v-b8dorUe5aOCiWf7Mij2jL6xeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/v-b8dorUe5aOCiWf7Mij2jL6xeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b0:bd:9d:7a:ab:7a:29:6f:61:57:1d:52:85:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe6fc768ad47b968e0a259fecc8a3da32fac5ea
Validity
Not Before: Jan 1 14:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82e4138b17b2e9a9478b2819d6fcf4e6045e4657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:56:70:ef:f3:59:a5:83:82:99:15:a4:0a:72:
55:ab:94:38:00:11:ce:e5:c3:12:fb:93:2a:48:93:
45:e0:13:1b:52:af:3e:ec:5a:a0:cd:c1:7e:b8:76:
69:b7:83:c5:5d:b2:b1:23:42:61:a5:b4:4e:5e:96:
63:36:c2:04:a7:39:21:84:4b:85:3b:7d:6f:79:58:
b3:55:5d:04:27:25:83:70:27:cf:ee:7d:08:f1:d5:
8a:3b:aa:af:dd:7a:e8:42:6e:d3:20:bd:96:49:fc:
6e:be:50:97:0e:6d:cd:56:d4:c5:8a:4c:80:6f:fa:
15:eb:25:2f:0a:0e:2e:28:fe:59:13:22:2b:d5:47:
f2:42:a3:4b:ab:3b:24:a2:05:2c:fc:5e:54:7d:07:
39:bf:58:64:68:b6:86:a1:34:f4:b8:96:7b:03:00:
28:9f:d8:eb:1d:df:f7:06:c0:c4:d0:bc:6c:5a:36:
98:f4:8d:2c:95:14:0a:a6:4c:ff:fa:32:de:5f:d6:
fd:97:c2:c3:f1:18:b6:a7:41:ec:d9:ca:93:c1:e0:
14:8b:99:ac:3c:6b:b3:34:85:6e:38:38:d2:bf:5b:
ad:63:95:99:8e:c3:bd:ee:07:f7:f4:6e:e5:42:4d:
bb:e6:99:36:d6:a1:b1:9d:25:06:a5:9f:d0:6d:5e:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E4:13:8B:17:B2:E9:A9:47:8B:28:19:D6:FC:F4:E6:04:5E:46:57
X509v3 Authority Key Identifier:
keyid:BF:E6:FC:76:8A:D4:7B:96:8E:0A:25:9F:EC:C8:A3:DA:32:FA:C5:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-b8dorUe5aOCiWf7Mij2jL6xeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/guQTixey6alHiygZ1vz05gReRlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/00c711-0c29-4301-94bc-ea57cbe36811/1/v-b8dorUe5aOCiWf7Mij2jL6xeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.150.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:9e:55:34:f6:87:9f:f0:18:f9:84:63:72:23:a6:64:92:82:
a9:ab:cd:36:cc:35:be:a6:b8:e5:f3:c0:58:63:61:55:e0:31:
5c:4a:6a:df:44:a1:7b:ed:64:74:6f:00:84:05:fd:af:2b:d6:
7b:75:99:e0:9d:e2:97:1a:42:f6:fb:69:78:dc:fc:cc:bc:c8:
ae:89:39:7d:52:59:30:8d:14:ab:5b:58:06:e1:bc:80:e8:20:
7d:38:18:69:0c:1c:bd:3a:fc:4b:65:b9:63:a3:19:65:cf:c0:
2a:84:a3:e1:31:86:29:41:9f:23:e9:f4:0a:c7:3e:2e:8e:0c:
d5:95:15:1f:d2:bd:19:95:cb:3c:3a:48:4e:71:b8:b1:ea:8b:
c3:57:3b:44:0d:0f:d7:7a:c7:cc:7b:71:1e:df:3c:6d:02:c7:
46:da:c7:27:2d:b1:ca:3a:62:ca:04:18:70:c5:38:18:73:61:
cc:4d:86:26:87:66:af:71:35:48:ab:70:e8:bd:6d:a3:50:ff:
1a:68:d9:63:dd:96:79:77:5f:4d:17:04:8f:e7:69:4d:23:d3:
8d:18:65:ae:00:03:8a:6e:8d:a7:c6:35:e7:62:18:89:99:32:
b4:a5:e1:78:9c:af:cf:00:4c:8c:bb:e1:84:ea:26:5c:4d:18:
2b:15:f6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:15:55 2024 by rpki-client on console-fra.rpki-client.org