Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/Vf7p0t1AnkZnuKHp5MlTln0NI4E.roa
File: Vf7p0t1AnkZnuKHp5MlTln0NI4E.roa (raw, json)
Hash identifier: 36d+RDBgyoz9SYmQBvTGwz7ztVl6Eiu322YBELPY9eo=
Subject key identifier: 55:FE:E9:D2:DD:40:9E:46:67:B8:A1:E9:E4:C9:53:96:7D:0D:23:81
Certificate issuer: /CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Certificate serial: 0193504576EC037B49510DBD7A154FC3D22D
Authority key identifier: 5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/Vf7p0t1AnkZnuKHp5MlTln0NI4E.roa
Signing time: Thu 21 Nov 2024 19:49:09 +0000
ROA not before: Thu 21 Nov 2024 19:49:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 185.133.68.0/22 maxlen: 24
193.104.32.0/24 maxlen: 24
2a05:2440::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:50:45:76:ec:03:7b:49:51:0d:bd:7a:15:4f:c3:d2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cfe3881f3c44774f51cc75ee7e6f91c5565a606
Validity
Not Before: Nov 21 19:49:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55fee9d2dd409e4667b8a1e9e4c953967d0d2381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9e:cd:0a:67:b7:5e:32:e9:a4:e4:b2:ea:30:
ee:16:82:10:1b:2e:8a:53:d0:f4:2b:fe:e7:3f:36:
a5:50:c5:7e:ce:56:e2:33:9b:21:80:ec:56:8c:95:
9e:2b:95:67:36:22:4d:2c:86:14:74:07:da:b8:33:
59:ef:d6:4d:74:2b:2c:0a:b9:b1:da:53:98:39:af:
8f:a8:1a:38:fb:de:51:df:23:53:54:16:5e:62:10:
b4:73:13:79:ef:36:14:9b:02:8d:7c:44:43:58:c8:
24:e5:a5:b8:0b:f1:72:bf:e4:e0:bc:12:80:34:51:
37:00:87:a0:a5:ab:88:48:90:92:35:92:e4:bd:0a:
ff:a6:a2:90:05:dc:10:2c:6c:df:98:c1:6f:d2:89:
b6:42:4e:89:c0:81:b5:4a:e3:d9:4a:6a:04:a2:69:
38:3f:68:37:f7:03:dd:9d:3a:ae:ad:56:af:35:34:
b1:db:a0:c2:21:2d:20:1f:a6:c2:de:62:5c:40:5a:
24:4c:f9:f7:c4:a6:bd:68:a4:ee:ef:2e:dc:dd:14:
4e:bc:30:53:82:41:ab:39:a5:fe:7c:23:61:35:d6:
cd:72:1b:fd:67:eb:f1:8b:c5:8c:9c:9f:60:d2:3b:
9e:ed:cc:2f:c4:6d:30:3a:5f:0f:e0:96:8b:0a:75:
86:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FE:E9:D2:DD:40:9E:46:67:B8:A1:E9:E4:C9:53:96:7D:0D:23:81
X509v3 Authority Key Identifier:
keyid:5C:FE:38:81:F3:C4:47:74:F5:1C:C7:5E:E7:E6:F9:1C:55:65:A6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XP44gfPER3T1HMde5-b5HFVlpgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/Vf7p0t1AnkZnuKHp5MlTln0NI4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5260d0-1855-4f30-b8ef-7c998079a6a9/1/XP44gfPER3T1HMde5-b5HFVlpgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.68.0/22
193.104.32.0/24
IPv6:
2a05:2440::/29
Signature Algorithm: sha256WithRSAEncryption
7c:e8:3c:19:a7:b8:84:e0:50:a9:f8:50:86:33:fb:0a:67:01:
23:7c:09:82:d9:d2:40:c7:d0:7e:e4:3a:e0:9a:1c:d1:d0:22:
be:b8:4c:1d:7c:85:38:35:c0:13:c8:4e:c7:6b:7e:bc:f4:99:
3e:a0:e0:85:f0:96:05:78:13:46:c2:79:59:cc:ab:00:1a:20:
b4:bf:38:71:5d:c9:ed:af:51:04:2c:90:ec:1a:40:6e:c3:c9:
69:12:67:24:cb:d7:28:11:a2:55:44:9b:df:9e:e6:83:40:8d:
a7:5a:5b:55:3f:ac:e5:c5:fa:37:f8:a2:36:61:b9:17:e8:21:
ba:b9:72:f2:d7:86:7d:84:de:04:a9:eb:9e:0c:60:51:a4:dd:
4c:d7:92:ad:45:dd:b1:9a:e3:c1:6b:e6:eb:2d:55:df:64:f8:
ac:45:51:c8:c7:3e:7a:37:b3:4c:e2:c4:3d:ba:77:43:d5:79:
78:8a:7d:cc:7d:3e:8d:e5:c7:c1:83:ed:7e:89:be:05:4f:69:
69:a9:7c:0d:f7:bb:da:f6:30:96:22:b2:5f:48:97:fb:c1:4e:
56:f0:f4:d1:2b:03:c9:b2:69:76:6a:b4:e7:be:e3:05:51:e2:
19:63:77:bd:17:20:51:e7:78:b9:7a:d7:ae:5a:1d:0b:98:38:
c5:eb:0a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:06:19 2024 by rpki-client on console-ams.rpki-client.org