Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/qkQKkMyaAnhct0K28f7-lrZkyM0.roa
File: qkQKkMyaAnhct0K28f7-lrZkyM0.roa (raw, json)
Hash identifier: iH1veUX6SEIXdltlT6gBQXV253iSYIBm8h0Ocxg4Q4Q=
Subject key identifier: AA:44:0A:90:CC:9A:02:78:5C:B7:42:B6:F1:FE:FE:96:B6:64:C8:CD
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018F90939EA28407CA96D244F8F813F87C5E
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/qkQKkMyaAnhct0K28f7-lrZkyM0.roa
Signing time: Sun 19 May 2024 11:19:04 +0000
ROA not before: Sun 19 May 2024 11:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 37.32.36.0/22 maxlen: 24
45.140.228.0/22 maxlen: 22
45.156.180.0/22 maxlen: 22
45.156.192.0/22 maxlen: 22
45.156.194.0/23 maxlen: 24
85.198.48.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:90:93:9e:a2:84:07:ca:96:d2:44:f8:f8:13:f8:7c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: May 19 11:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa440a90cc9a02785cb742b6f1fefe96b664c8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a7:86:de:a0:99:22:cb:3a:1b:f1:52:be:e4:
3d:43:1f:ee:9e:50:c3:74:6b:c8:a8:71:79:f0:0e:
9f:d4:a4:b9:23:33:ee:a8:0b:af:23:9b:bd:cd:16:
5d:c4:bd:bd:e4:7f:51:78:b3:79:db:27:8a:f5:d8:
90:82:34:52:1d:10:20:fd:93:7c:ed:28:3f:c3:0b:
39:f3:cf:72:96:ba:5d:39:5a:7b:ae:b8:9e:89:b8:
b8:c0:06:13:f1:6b:c8:c0:ca:88:36:d6:84:65:15:
26:80:d3:50:c9:8f:0f:80:68:ce:57:9a:8d:f8:54:
c3:ea:b4:65:a1:63:d3:85:62:e3:3f:83:fb:2a:69:
5e:75:8d:71:3c:f6:d4:ae:f5:9a:37:dc:d5:d5:e0:
6f:f8:df:01:2c:9b:97:14:3b:4a:8d:ca:aa:b0:b6:
c2:55:e0:da:64:1f:33:20:06:94:64:03:cf:ab:e2:
4b:95:dd:fc:ae:5a:f0:31:a7:c5:df:3d:04:9a:70:
39:4d:81:4b:32:66:d6:96:05:c2:d1:57:99:70:fe:
80:28:3c:8c:33:d6:ab:46:43:08:bf:36:0d:8b:a7:
2b:4a:4c:9d:ad:72:d2:33:df:c3:e4:91:c4:d6:dc:
1b:20:0c:23:23:73:d7:ce:b4:3a:b3:79:1a:37:bf:
5e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:44:0A:90:CC:9A:02:78:5C:B7:42:B6:F1:FE:FE:96:B6:64:C8:CD
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/qkQKkMyaAnhct0K28f7-lrZkyM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.36.0/22
45.140.228.0/22
45.156.180.0/22
45.156.192.0/22
85.198.48.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:26:01:8f:1a:88:31:ca:e6:2d:60:ad:35:c6:9e:cb:a4:da:
b6:66:10:92:14:f7:5a:a8:2c:76:1e:ad:24:74:40:87:e7:4d:
56:a3:ca:5b:be:e1:c4:0d:f8:1d:15:cb:60:77:7b:ef:47:3b:
6d:3b:d2:7c:a5:7e:91:39:cb:94:98:fd:f0:92:e7:8f:1e:f2:
43:7c:20:f5:a6:19:a8:16:a6:5f:65:65:75:01:85:19:5f:f9:
52:d6:3a:ae:23:49:42:bd:a2:07:f6:6b:45:97:0b:f3:a6:fc:
48:11:5b:a4:16:9c:e7:c0:94:84:4e:4e:26:ab:10:6d:00:a4:
25:bb:81:6e:d5:0b:08:f2:5f:c7:45:8c:2c:6c:a1:35:47:3f:
e1:b4:ad:34:5c:60:a2:18:5f:4a:2a:28:ee:5e:73:f4:bc:de:
d6:d2:c3:00:af:c8:65:2e:aa:b8:c3:db:c3:29:34:46:dc:0a:
7a:1c:7d:50:26:ce:9c:64:56:37:f9:08:49:80:36:d2:a3:90:
fb:d7:c7:03:ea:cd:06:e8:35:c2:f3:90:7e:73:46:6b:13:d4:
b1:79:3b:2e:5d:d0:c7:f0:38:97:f8:b9:e2:53:7a:ff:00:54:
81:84:b0:0d:8d:50:de:c0:74:da:90:5d:4e:5d:7f:52:44:44:
d9:31:5f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:58:57 2024 by rpki-client on console-fra.rpki-client.org