Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/VKzwSbv1hPuC2EzE-O4Ag9V_T5I.roa
File: VKzwSbv1hPuC2EzE-O4Ag9V_T5I.roa (raw, json)
Hash identifier: gniQwQkOVbiXuWg7m1Fh2iZWDxxI5lMoKiVRFQt3aV4=
Subject key identifier: 54:AC:F0:49:BB:F5:84:FB:82:D8:4C:C4:F8:EE:00:83:D5:7F:4F:92
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 018CC42455F054CDAF50FC64ED7E4FEA9352
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/VKzwSbv1hPuC2EzE-O4Ag9V_T5I.roa
Signing time: Mon 01 Jan 2024 08:29:24 +0000
ROA not before: Mon 01 Jan 2024 08:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39124
IP address blocks: 185.206.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:55:f0:54:cd:af:50:fc:64:ed:7e:4f:ea:93:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Jan 1 08:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54acf049bbf584fb82d84cc4f8ee0083d57f4f92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:13:d5:59:e6:b6:b5:9a:7c:08:75:9e:5a:8c:
dc:8b:17:87:d6:59:42:3d:1f:cd:52:c6:56:88:4c:
2f:14:91:9c:1c:c7:91:d3:26:69:e7:fd:5e:2b:29:
8e:5f:95:94:8f:39:86:37:35:37:42:bb:06:c4:b7:
17:7f:b2:96:a8:93:9b:0b:6e:87:f1:22:9f:57:6e:
46:82:96:2c:76:f7:5d:1b:e8:82:1f:bc:9f:1a:df:
ca:c7:74:28:0f:97:73:97:68:94:23:a0:3a:60:c2:
b7:a5:3a:fe:1c:f5:ba:a6:c9:53:b0:f4:61:a0:aa:
c5:16:98:a0:cd:1c:df:a8:75:8e:04:b4:ad:75:20:
f2:21:6c:7c:ad:3b:3e:34:3e:e1:08:a0:2b:98:f2:
f3:41:36:ab:28:8e:e4:45:44:d6:43:52:41:3e:de:
65:9e:30:3c:78:66:df:ce:b0:1b:99:82:43:f4:54:
5b:38:d8:e1:96:9e:41:24:bc:85:d4:d0:ad:a8:46:
38:11:17:67:65:57:5b:ca:2d:94:62:3a:e2:ca:88:
5a:cb:f7:39:d1:a5:ca:1e:a7:e3:e3:a3:29:9d:7d:
46:95:a2:8e:20:d1:d6:dd:1f:49:bd:a3:12:e0:7d:
e9:ab:5e:31:4a:34:5b:ed:e1:ec:54:6c:d8:e6:67:
ba:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:AC:F0:49:BB:F5:84:FB:82:D8:4C:C4:F8:EE:00:83:D5:7F:4F:92
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/VKzwSbv1hPuC2EzE-O4Ag9V_T5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.54.0/24
Signature Algorithm: sha256WithRSAEncryption
78:72:3b:80:44:47:d9:20:ea:ee:42:cc:62:e0:50:d4:17:16:
76:a7:30:d0:1a:c7:03:73:41:4e:05:1b:c6:c7:5c:11:c8:1b:
a7:e3:f1:ce:cc:8f:98:fc:16:65:20:27:a2:0d:b6:f3:09:0f:
69:df:10:ea:b5:30:ba:bc:24:38:a0:05:da:ad:b4:c3:08:d0:
a8:0e:c5:0b:ea:26:02:cd:4a:de:f4:83:66:be:fb:c7:ff:cd:
a6:d3:14:5d:b0:b8:71:7a:82:e1:dc:6c:d9:c0:9e:a9:7f:04:
42:4a:97:6a:ad:03:8a:29:f4:6d:98:88:16:70:2b:8b:51:c9:
4b:2e:ba:c0:d0:30:5f:e0:99:d4:e8:e4:7e:5d:f1:01:7b:48:
03:aa:55:53:29:ac:5a:0b:6d:e7:75:b4:47:cc:40:61:84:76:
19:51:04:27:d6:e6:4f:e9:0b:6e:cc:13:eb:3c:ea:91:81:0b:
a8:ef:ae:a3:b5:f3:b3:af:bb:ae:03:ad:93:7c:ad:fa:e2:af:
83:ee:ea:06:dc:f3:b6:ce:28:bf:fb:75:6f:2c:3b:b8:e4:72:
09:2a:a4:cd:df:5a:b1:a8:83:ae:38:7a:3a:42:7d:c3:6d:90:
56:20:86:97:44:91:e1:bb:87:6f:de:e8:0f:9a:0a:9e:0a:70:
6e:46:a6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:13:39 2024 by rpki-client on console-ams.rpki-client.org