Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Ve3f4CBoxjh-21cOF6ai5kjHU0g.roa
File: Ve3f4CBoxjh-21cOF6ai5kjHU0g.roa (raw, json)
Hash identifier: hVTNHJcBbNQHWtTlNegkcc50d4PXsneRWNHfPbBFH7Y=
Subject key identifier: 55:ED:DF:E0:20:68:C6:38:7E:DB:57:0E:17:A6:A2:E6:48:C7:53:48
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC79519D0E43D7C26723AC3215DD925D3
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Ve3f4CBoxjh-21cOF6ai5kjHU0g.roa
Signing time: Tue 02 Jan 2024 00:31:26 +0000
ROA not before: Tue 02 Jan 2024 00:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34665
IP address blocks: 194.156.1.0/24 maxlen: 24
45.91.161.0/24 maxlen: 24
194.156.122.0/24 maxlen: 24
193.32.190.0/24 maxlen: 24
194.156.26.0/24 maxlen: 24
77.83.72.0/24 maxlen: 24
45.92.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:19:d0:e4:3d:7c:26:72:3a:c3:21:5d:d9:25:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55eddfe02068c6387edb570e17a6a2e648c75348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:22:da:be:82:29:f4:2b:1e:b7:f2:6f:06:b0:
ed:7f:87:cb:c1:6a:24:e9:0d:58:ee:01:ea:eb:42:
b2:b4:37:53:1f:85:4b:80:99:8c:76:de:06:7f:3b:
be:6d:f2:aa:b8:04:f6:2e:a4:d6:72:db:38:33:36:
d8:f1:37:78:10:59:1b:0b:b0:03:79:5e:d8:69:0d:
62:67:c0:71:25:ec:26:f7:fc:48:c7:91:7f:e3:5e:
24:ce:a0:03:16:ad:8b:a7:48:58:49:34:b5:22:95:
0d:e7:3d:ff:cd:3d:f7:bf:79:c8:6f:67:8e:e7:a0:
4b:e8:47:3a:11:5c:9c:90:d1:41:09:7a:a0:6a:22:
4e:5b:fb:9a:e9:f4:a4:08:f0:ad:10:cb:bc:19:f6:
4d:cd:07:fe:75:e4:9d:32:26:d1:fe:cc:ac:df:ec:
b2:c2:d3:0a:e9:c1:f4:86:95:ee:fd:4c:75:a3:94:
28:96:70:fd:93:47:da:1b:60:2a:a8:13:30:83:23:
99:94:58:26:7d:77:80:69:c0:c3:5b:65:b6:30:30:
91:e7:35:3d:24:b4:c6:9e:be:60:fd:9e:e4:0d:85:
f3:26:0f:54:5d:f4:32:c1:e0:9e:f4:48:38:3f:b3:
7c:ef:b6:cc:15:92:0f:88:b9:2d:6a:a9:3f:71:d6:
7b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:ED:DF:E0:20:68:C6:38:7E:DB:57:0E:17:A6:A2:E6:48:C7:53:48
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Ve3f4CBoxjh-21cOF6ai5kjHU0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.161.0/24
45.92.174.0/24
77.83.72.0/24
193.32.190.0/24
194.156.1.0/24
194.156.26.0/24
194.156.122.0/24
Signature Algorithm: sha256WithRSAEncryption
61:55:e6:2a:5a:4b:34:2c:f5:44:0f:ad:59:5e:d5:8c:9d:fc:
89:5b:e6:35:a5:cc:5c:5d:6f:45:a0:40:a4:9f:63:79:60:d6:
f2:60:40:41:a0:0f:b3:1a:f4:2e:77:35:ef:d9:34:1c:6c:9a:
49:b8:37:ae:e3:23:70:47:8b:9e:8e:12:21:06:23:fa:a6:8f:
c4:a9:17:04:cd:40:35:49:02:bd:87:79:07:66:15:44:fc:96:
87:46:cc:f6:a6:66:2d:2f:da:de:74:91:9a:c6:b9:2f:8c:49:
91:23:ed:df:1e:d5:0c:5c:39:28:e0:f8:8b:cf:ac:a5:fa:2b:
af:c8:d0:3d:a9:2c:35:75:ee:42:56:44:8d:eb:2d:2e:12:a3:
42:6e:dd:ba:98:a9:85:5e:45:69:1a:00:b5:73:76:a1:26:b6:
ab:01:a6:9b:36:17:f3:ef:5d:bf:c3:7d:ea:5c:f2:58:dd:1c:
e5:69:6b:fc:75:42:62:aa:5f:72:d1:ce:8a:8c:f0:c6:9b:93:
7d:ca:e5:d2:90:90:a6:d1:b2:b4:d9:d8:75:75:cc:c8:8b:b3:
c3:78:33:02:46:85:7e:5b:46:d4:17:40:04:de:8d:43:e4:c9:
a7:6a:15:98:e9:e2:1d:0b:06:9c:cf:b8:5f:9e:70:38:bf:fb:
2e:27:65:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:56:35 2024 by rpki-client on console-ams.rpki-client.org