Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/XLt3KRusRF4aB4iaRrdNkRrOIo8.roa
File: XLt3KRusRF4aB4iaRrdNkRrOIo8.roa (raw, json)
Hash identifier: p9+U0Ut7mAT90k4lXAUrl005iT/TZ9BF0fuhj2+nQrI=
Subject key identifier: 5C:BB:77:29:1B:AC:44:5E:1A:07:88:9A:46:B7:4D:91:1A:CE:22:8F
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 0191DB01BA16903555C40355FD030B01DE78
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/XLt3KRusRF4aB4iaRrdNkRrOIo8.roa
Signing time: Tue 10 Sep 2024 08:16:49 +0000
ROA not before: Tue 10 Sep 2024 08:16:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216050
IP address blocks: 91.190.187.0/24 maxlen: 24
92.61.105.0/24 maxlen: 24
92.61.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:01:ba:16:90:35:55:c4:03:55:fd:03:0b:01:de:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Sep 10 08:16:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5cbb77291bac445e1a07889a46b74d911ace228f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:92:ad:14:80:1f:20:a1:58:66:40:26:a7:83:
b1:9b:04:0a:32:90:48:e5:0f:01:fa:3b:94:2e:dd:
ab:28:79:31:f0:85:cc:ae:0a:3a:15:93:4a:4a:98:
af:28:8e:47:34:25:44:24:2b:a4:b9:02:9e:27:b9:
8b:02:7d:eb:85:51:aa:66:51:9b:5f:3a:c5:9b:6f:
10:b2:23:fa:0d:23:ee:8a:fe:39:d9:b6:95:29:0f:
52:e4:a3:ca:85:3b:41:15:e3:21:9c:c8:21:90:07:
fa:43:f6:bc:cc:97:ea:d8:b1:79:4f:01:7d:2c:e5:
04:0e:9e:67:03:12:c3:6e:19:a7:29:ab:c5:43:fc:
9b:e4:d4:b5:4a:ca:58:a4:c5:30:b8:66:a4:c0:a2:
f6:46:02:67:cc:83:31:63:be:93:61:c0:e6:7a:e0:
9f:03:73:48:25:4d:b1:d3:20:e1:e4:75:4d:81:7e:
b4:75:81:33:1c:8f:7c:f8:c2:c7:0a:d7:2e:c7:db:
87:3f:41:a0:30:c5:08:42:d8:a6:f9:30:a1:36:2e:
f4:a4:17:ad:a3:ae:2d:d9:d5:25:fc:2d:22:28:f9:
ab:18:94:82:03:f1:16:13:7d:0e:cd:a1:92:41:7b:
2d:2c:56:f5:3a:74:1d:c3:00:af:7d:24:49:e9:72:
3a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BB:77:29:1B:AC:44:5E:1A:07:88:9A:46:B7:4D:91:1A:CE:22:8F
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/XLt3KRusRF4aB4iaRrdNkRrOIo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.187.0/24
92.61.105.0/24
92.61.111.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e9:ea:8b:85:35:77:75:b5:8b:2e:79:99:43:16:3e:44:07:
d9:b3:f9:71:be:a1:5e:99:5c:91:4e:65:17:6e:fd:f0:22:de:
a4:d2:17:4c:8d:74:6a:5e:75:69:c3:47:9f:fb:df:66:d0:15:
d8:18:28:af:14:46:b3:33:78:51:e1:c7:e5:bb:1e:f7:be:e9:
62:ea:7e:43:21:a1:b9:84:9d:6e:cc:9a:ef:7e:5d:4c:65:68:
46:57:07:6c:d6:08:5b:38:63:b1:e6:cd:95:9a:63:01:8c:1d:
aa:3c:36:cd:c8:e0:1a:3b:35:60:c4:13:b6:f0:b9:ff:cc:2a:
47:22:31:63:4b:6c:8b:49:66:92:9c:83:e2:c6:ab:d4:51:e8:
cc:03:9d:ec:c7:ba:c3:d7:e4:7d:47:44:b7:1e:0d:ce:99:31:
a2:ae:2d:5f:82:8a:08:0e:7a:1b:22:e8:4d:79:5d:2f:fe:38:
69:69:7d:e6:9a:c6:0c:02:12:5c:8a:f4:9a:f4:18:2e:c8:1a:
47:2e:51:02:c6:de:6a:9d:6b:e4:78:37:62:57:0f:5f:83:4d:
62:5d:f0:b1:04:c5:6b:a0:28:be:8c:27:fd:3a:7f:40:76:4d:
f3:bf:96:43:b4:26:24:e8:2b:88:2f:f4:23:74:1c:01:aa:96:
f9:cc:5f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:40:52 2024 by rpki-client on console-ams.rpki-client.org