Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/kXyj11BwWBkk6y7IJlEHs_gAnTQ.roa
File: kXyj11BwWBkk6y7IJlEHs_gAnTQ.roa (raw, json)
Hash identifier: LQ+1E52AVQpdhGB8RqglpaVdWox8TQcDVRzhha3dUt4=
Subject key identifier: 91:7C:A3:D7:50:70:58:19:24:EB:2E:C8:26:51:07:B3:F8:00:9D:34
Certificate issuer: /CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97
Certificate serial: 018CC86F627CEDD1E2DF48688E39BBE7EC07
Authority key identifier: BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/kXyj11BwWBkk6y7IJlEHs_gAnTQ.roa
Signing time: Tue 02 Jan 2024 04:29:52 +0000
ROA not before: Tue 02 Jan 2024 04:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213319
IP address blocks: 185.168.228.0/22 maxlen: 24
2a0b:f080::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft
rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:62:7c:ed:d1:e2:df:48:68:8e:39:bb:e7:ec:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97
Validity
Not Before: Jan 2 04:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=917ca3d75070581924eb2ec8265107b3f8009d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8d:cd:b9:53:a6:14:c8:9f:12:c2:06:4c:0f:
a3:d3:88:1c:42:d7:31:c0:0e:c1:37:59:cb:5e:63:
dc:d8:c1:13:7a:b7:f9:28:0b:dd:d2:fa:b2:73:e5:
34:09:fc:80:b4:9b:47:f9:b0:47:a1:85:ae:a8:02:
9e:08:da:f9:ba:ec:13:2c:77:eb:fd:59:03:4b:54:
0f:55:4e:f6:cf:3a:9a:cb:5a:29:f3:33:9a:bd:ed:
c9:9d:71:3c:63:3d:78:35:15:a6:94:26:16:b9:48:
a1:c3:5f:9f:95:a6:49:f1:76:e1:67:53:50:99:5a:
87:af:12:73:b4:22:6d:af:b9:bf:8f:fd:25:24:8b:
1c:fc:d4:d8:ea:0c:56:a5:2e:5d:7b:c5:0e:6b:43:
8d:41:e1:63:54:c2:f6:d1:94:dc:3d:f1:cd:11:24:
f3:9b:e4:ed:36:49:48:8d:6e:d4:c9:52:f1:bb:9c:
8a:71:2b:ba:a5:68:3b:49:88:24:75:5c:c6:a3:d9:
e7:39:48:ab:83:c1:9a:db:b3:7b:df:64:82:51:0a:
ae:f3:81:0e:3a:d9:88:4a:4d:a8:eb:7f:44:c7:9d:
1f:54:69:0e:ea:ca:fe:8e:f3:be:37:a2:27:a8:7f:
91:e5:e8:46:d3:7e:ee:9c:96:77:62:5f:b5:91:b4:
f7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7C:A3:D7:50:70:58:19:24:EB:2E:C8:26:51:07:B3:F8:00:9D:34
X509v3 Authority Key Identifier:
keyid:BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/kXyj11BwWBkk6y7IJlEHs_gAnTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.228.0/22
IPv6:
2a0b:f080::/32
Signature Algorithm: sha256WithRSAEncryption
3c:5e:eb:14:64:00:58:29:a5:0f:d4:da:c2:da:2c:66:fd:84:
d7:a9:df:37:65:09:2b:8c:c7:87:a3:21:6d:db:b2:b5:89:35:
fd:d4:9d:3f:28:94:f4:49:f1:6e:7e:6f:46:6f:bd:e8:03:16:
3c:44:4b:21:3c:b2:25:4b:8d:f9:49:48:23:58:a7:e3:6e:8f:
8b:82:de:4a:2b:9c:d4:59:a6:cd:40:6e:17:e0:1d:6f:29:db:
63:b4:47:5f:ef:fa:8e:a0:6a:c6:57:30:1a:b4:a3:10:7c:cf:
ac:0b:84:fd:99:b8:b3:61:0c:10:04:a1:1a:c2:16:10:48:10:
e9:69:19:c0:8c:17:4a:b2:19:09:65:85:0e:12:b9:6c:62:11:
3a:1c:2c:2c:0f:55:69:97:31:97:36:50:8f:2e:39:18:0a:34:
6a:e6:63:c0:e5:a9:e3:30:37:e4:ef:af:2b:d3:f7:52:db:9a:
e9:c1:a4:67:73:b1:ca:42:a4:16:9f:10:7b:ff:f7:dd:3d:28:
14:25:38:58:8e:d9:91:dd:b8:08:91:bb:48:14:8e:1b:22:48:
e9:32:20:24:f8:9d:e5:22:43:5e:92:66:f1:ef:f6:5f:48:b9:
06:78:34:cf:21:1e:f2:b2:1c:3b:b0:7b:5e:d9:aa:a0:68:d2:
7a:67:7e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:37:53 2024 by rpki-client on console-fra.rpki-client.org