Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/VVHHvf8tuLiELfIjVP1IpbLoPFg.roa
File: VVHHvf8tuLiELfIjVP1IpbLoPFg.roa (raw, json)
Hash identifier: s4UtPVfEPcyV6CBdKV9fOGVqtom1hfFRPZ8dkaZI5vI=
Subject key identifier: 55:51:C7:BD:FF:2D:B8:B8:84:2D:F2:23:54:FD:48:A5:B2:E8:3C:58
Certificate issuer: /CN=6150ca1baf9f9f6fe13d89e2664470493fe65e65
Certificate serial: 018CC8DE37664B65357E6C1555CBFBAF68FC
Authority key identifier: 61:50:CA:1B:AF:9F:9F:6F:E1:3D:89:E2:66:44:70:49:3F:E6:5E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YVDKG6-fn2_hPYniZkRwST_mXmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/VVHHvf8tuLiELfIjVP1IpbLoPFg.roa
Signing time: Tue 02 Jan 2024 06:30:55 +0000
ROA not before: Tue 02 Jan 2024 06:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43542
IP address blocks: 78.156.128.0/19 maxlen: 19
185.85.92.0/22 maxlen: 22
2a00:d940::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/YVDKG6-fn2_hPYniZkRwST_mXmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/YVDKG6-fn2_hPYniZkRwST_mXmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YVDKG6-fn2_hPYniZkRwST_mXmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:37:66:4b:65:35:7e:6c:15:55:cb:fb:af:68:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6150ca1baf9f9f6fe13d89e2664470493fe65e65
Validity
Not Before: Jan 2 06:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5551c7bdff2db8b8842df22354fd48a5b2e83c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:75:5e:46:99:28:19:d3:2f:00:b5:30:f9:
02:84:db:1b:e3:66:af:c6:4f:7d:a8:0e:16:35:78:
0a:07:4d:a4:0a:5f:76:6d:c3:a1:8e:cd:61:e2:9c:
63:8d:24:83:58:31:e8:06:0e:d7:31:c3:9e:7b:87:
d1:c7:38:15:b1:e6:24:e7:de:8a:a1:8d:fc:e8:10:
2c:3a:3b:2e:ce:af:12:6b:99:10:aa:6a:81:ee:3a:
c7:2e:7b:c7:c4:38:23:52:b9:ef:e5:52:1a:44:48:
cb:11:fb:e8:7b:53:ab:d9:02:38:5e:72:d7:12:57:
a8:c7:86:6f:38:47:88:fb:ea:40:c1:10:34:5e:7a:
42:85:5c:fd:41:82:dc:59:27:88:b8:79:0d:95:17:
6b:66:bf:ac:1a:5e:8f:b0:8f:87:c5:1d:9f:8c:6f:
1d:ef:e1:63:60:82:95:1c:9e:ea:a8:59:02:61:21:
f8:1f:9e:b7:ee:a8:86:d4:5b:09:ea:5d:e1:6c:4d:
f2:55:e5:e8:46:e6:d4:90:80:d6:fc:03:ba:0e:73:
ba:4e:2e:31:36:8b:e1:e3:94:67:80:ef:22:a7:4e:
26:e2:88:11:e7:1c:55:37:f9:95:ce:51:b3:22:28:
e6:5b:c5:46:73:c8:fb:cb:13:0a:21:e1:4e:9f:f9:
56:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:51:C7:BD:FF:2D:B8:B8:84:2D:F2:23:54:FD:48:A5:B2:E8:3C:58
X509v3 Authority Key Identifier:
keyid:61:50:CA:1B:AF:9F:9F:6F:E1:3D:89:E2:66:44:70:49:3F:E6:5E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YVDKG6-fn2_hPYniZkRwST_mXmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/VVHHvf8tuLiELfIjVP1IpbLoPFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/551437-987f-48d4-aa0e-947ead9f14ed/1/YVDKG6-fn2_hPYniZkRwST_mXmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.156.128.0/19
185.85.92.0/22
IPv6:
2a00:d940::/32
Signature Algorithm: sha256WithRSAEncryption
6a:ff:eb:78:14:41:5a:af:49:f7:f4:1c:8a:27:ab:5c:77:dc:
9b:b8:8e:de:32:a3:99:40:47:da:77:3b:c0:78:38:88:83:23:
9e:7c:be:c7:63:29:a8:33:46:d6:65:33:18:a9:a0:6f:bf:a6:
17:90:77:9c:94:1f:ed:a6:a4:9b:38:81:35:3d:d5:6b:e7:28:
81:76:1f:88:09:a9:f4:2f:7e:6e:db:89:8c:c9:ae:51:b7:92:
d4:43:72:07:67:b3:9a:c2:b7:e7:16:4a:a0:ce:da:f1:6d:9f:
50:09:16:cd:e0:b0:28:5c:ff:ab:3a:3e:85:2b:fd:6e:11:94:
e6:de:27:b7:1b:77:59:f1:e2:4a:64:f1:08:bc:09:7c:9a:ba:
f8:92:f2:02:0d:e4:7a:41:b9:79:e0:35:a2:44:8c:d7:9e:51:
1b:2e:e2:b8:5a:13:3e:72:95:c1:a9:a1:3b:41:c3:b5:95:12:
05:2a:6b:da:0a:60:d4:6d:77:e8:da:17:27:4e:9e:8a:82:4c:
24:0e:9c:38:5a:d4:b8:e5:21:4b:3e:38:9e:e6:a5:c2:d3:ea:
60:eb:50:0a:78:92:2a:d2:b8:09:93:45:9a:03:89:a0:9c:b6:
5e:7f:4d:06:1f:7f:c9:3a:b9:fd:1e:82:52:e0:36:75:04:46:
6e:ee:bc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 07:13:44 2024 by rpki-client on console-fra.rpki-client.org