Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/3Lv1UutwVpcpM6ta5k8gGy7ivQY.roa
File: 3Lv1UutwVpcpM6ta5k8gGy7ivQY.roa (raw, json)
Hash identifier: tvtvXVYSwPt9t5ESNxppI2F4LDxVzuLQ5QW8zZVIz0E=
Subject key identifier: DC:BB:F5:52:EB:70:56:97:29:33:AB:5A:E6:4F:20:1B:2E:E2:BD:06
Certificate issuer: /CN=480c3b93ff2a34fbfa5ae82556f670340cb5d5c9
Certificate serial: 018CC94CCB967155563D161F4EB5E294F895
Authority key identifier: 48:0C:3B:93:FF:2A:34:FB:FA:5A:E8:25:56:F6:70:34:0C:B5:D5:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAw7k_8qNPv6WuglVvZwNAy11ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/3Lv1UutwVpcpM6ta5k8gGy7ivQY.roa
Signing time: Tue 02 Jan 2024 08:31:42 +0000
ROA not before: Tue 02 Jan 2024 08:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205796
IP address blocks: 185.206.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/SAw7k_8qNPv6WuglVvZwNAy11ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/SAw7k_8qNPv6WuglVvZwNAy11ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAw7k_8qNPv6WuglVvZwNAy11ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:cb:96:71:55:56:3d:16:1f:4e:b5:e2:94:f8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480c3b93ff2a34fbfa5ae82556f670340cb5d5c9
Validity
Not Before: Jan 2 08:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dcbbf552eb7056972933ab5ae64f201b2ee2bd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:26:a6:db:56:ca:c5:52:a9:3b:34:7c:ae:96:
11:01:30:b8:83:0f:b1:d5:fc:64:91:a2:6f:fc:1e:
d6:dc:08:cd:d0:ea:e2:17:01:96:7d:9d:70:1d:ac:
5d:53:47:e0:3f:9c:55:e7:36:86:25:9a:c2:88:44:
f3:49:b9:50:c1:c9:99:b8:86:b8:ff:f4:b8:e4:7e:
0a:de:bd:d9:71:88:0c:e3:7a:12:16:9a:a8:ba:0b:
5c:65:c8:82:5d:31:3d:f4:c7:f5:8f:62:35:ab:2b:
51:0f:a0:18:bf:18:f1:b0:31:df:2d:18:a3:2b:1f:
2e:21:22:9a:38:b7:7e:d9:43:8d:f9:bd:cb:61:29:
ce:0c:f9:ab:8e:85:f2:a8:6b:b3:b4:39:47:85:71:
51:94:c6:e5:b4:a8:a9:b5:43:36:20:9b:b0:fd:29:
ac:e7:d7:02:6a:67:bf:1f:25:5e:1f:66:eb:06:67:
d6:f6:75:b0:c7:35:70:08:7b:f9:64:be:52:a6:f7:
58:f1:cc:00:2a:47:b4:b5:65:bb:a1:8e:20:3d:49:
44:3d:74:e2:ee:2c:87:a6:50:83:c6:d5:97:d9:7b:
5a:fc:96:23:b6:90:27:46:47:23:81:da:ae:3f:73:
92:e7:2c:63:08:ce:72:0e:27:bc:e3:d1:0e:2c:75:
d6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BB:F5:52:EB:70:56:97:29:33:AB:5A:E6:4F:20:1B:2E:E2:BD:06
X509v3 Authority Key Identifier:
keyid:48:0C:3B:93:FF:2A:34:FB:FA:5A:E8:25:56:F6:70:34:0C:B5:D5:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAw7k_8qNPv6WuglVvZwNAy11ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/3Lv1UutwVpcpM6ta5k8gGy7ivQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1800a4-50fc-4ff8-9e36-49c6fdbbafb7/1/SAw7k_8qNPv6WuglVvZwNAy11ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.60.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:b1:29:d0:bc:2b:90:5f:44:f3:34:ae:a3:54:27:a2:80:4b:
7d:67:2f:e9:37:cf:79:d7:14:e8:ef:5d:47:02:4a:31:93:28:
e8:36:2f:ac:c8:b9:66:2d:c8:8c:0e:a9:68:ba:30:88:79:d9:
65:70:d8:78:c5:46:14:3a:26:b4:0e:35:aa:a8:80:fa:b1:a6:
d5:34:40:10:fa:3c:ce:a1:04:a5:26:b0:71:25:09:2c:74:63:
9c:f3:04:d8:6f:75:d0:4a:37:1d:df:8b:00:4c:d4:dd:b4:c8:
e5:b6:69:e4:84:81:a5:be:5f:ad:99:7d:6c:75:0d:b5:fa:e8:
44:ec:21:4a:4d:4b:17:91:53:ce:6b:fc:ab:e2:eb:16:5b:b7:
35:31:33:83:74:94:e4:06:ca:1e:8c:a1:1d:15:57:47:f6:11:
16:b8:e0:5d:87:46:7e:4d:d3:a6:87:22:57:3c:e9:b6:9f:04:
e2:36:74:a6:ad:1e:91:73:c5:48:20:16:45:70:95:30:c9:01:
37:02:19:4a:fb:75:de:72:4c:76:89:53:b2:78:95:ac:79:48:
52:68:91:1c:e2:7e:ad:fc:d4:89:c5:d1:cb:bf:85:88:d0:fa:
84:96:f3:ba:95:17:83:a0:22:6e:d5:6c:ac:85:d1:e9:5a:1b:
c7:5f:9e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:37:30 2024 by rpki-client on console-ams.rpki-client.org