Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/Vc-AJY8djuEuWrQOrcoCQNaI5nk.roa
File: Vc-AJY8djuEuWrQOrcoCQNaI5nk.roa (raw, json)
Hash identifier: byXSvPLEmgT/upMrQHY4dNuhpGAQTYEgxU16cpASFDE=
Subject key identifier: 55:CF:80:25:8F:1D:8E:E1:2E:5A:B4:0E:AD:CA:02:40:D6:88:E6:79
Certificate issuer: /CN=61374fc4eab00d41c1eee47fdfb001078c74fa85
Certificate serial: 018E1825B7059ED37412113E6D7CE64643D2
Authority key identifier: 61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTdPxOqwDUHB7uR_37ABB4x0-oU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/Vc-AJY8djuEuWrQOrcoCQNaI5nk.roa
Signing time: Thu 07 Mar 2024 09:01:48 +0000
ROA not before: Thu 07 Mar 2024 09:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210895
IP address blocks: 45.131.183.0/24 maxlen: 24
2a13:4ac0:8::/46 maxlen: 46
2a13:4ac0:c::/46 maxlen: 46
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YTdPxOqwDUHB7uR_37ABB4x0-oU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:25:b7:05:9e:d3:74:12:11:3e:6d:7c:e6:46:43:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61374fc4eab00d41c1eee47fdfb001078c74fa85
Validity
Not Before: Mar 7 09:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55cf80258f1d8ee12e5ab40eadca0240d688e679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:23:7a:61:c1:52:e0:8b:07:2a:ac:4e:23:4d:
94:3f:5e:e6:d3:58:90:6b:d8:09:12:bd:d8:e6:f5:
07:4f:02:c1:fc:38:b6:97:0e:db:d2:4d:c3:0f:9c:
97:d9:54:fe:9d:47:cd:c2:51:aa:6b:6d:ea:b5:ff:
10:ba:c9:40:45:e9:48:f5:fd:6b:c9:4a:6d:8e:2d:
ea:28:b3:24:70:b6:19:de:9f:0f:b8:3f:b7:66:62:
3e:51:06:1d:42:44:2a:c6:b5:c4:96:97:d8:44:ba:
6d:84:3e:b0:59:81:9c:e0:cd:a0:48:6c:d3:2e:39:
06:e3:63:61:76:d2:d6:fc:2e:2f:3e:ed:3d:5a:52:
7a:7b:0a:d6:02:09:23:b9:a3:a1:5a:b7:fb:94:e2:
90:1d:06:72:01:96:a8:9e:d2:3b:86:8b:5c:70:64:
56:ae:57:22:0b:74:1d:7e:69:da:f6:0d:2f:64:cb:
63:80:99:cf:9f:22:0c:6d:5f:a3:ef:bf:41:33:df:
ab:bf:dc:93:26:fe:74:11:b3:fa:8a:12:c5:fe:b4:
d9:2d:f4:82:32:30:8a:b0:da:d9:89:f3:8c:29:9f:
e9:15:5f:06:87:05:32:7d:ce:31:d6:f3:07:77:f1:
94:84:0a:e5:c2:54:81:4d:bd:ed:4c:11:8c:b0:25:
2b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CF:80:25:8F:1D:8E:E1:2E:5A:B4:0E:AD:CA:02:40:D6:88:E6:79
X509v3 Authority Key Identifier:
keyid:61:37:4F:C4:EA:B0:0D:41:C1:EE:E4:7F:DF:B0:01:07:8C:74:FA:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTdPxOqwDUHB7uR_37ABB4x0-oU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/Vc-AJY8djuEuWrQOrcoCQNaI5nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a14d46-408a-470c-929d-1fc259bb7de2/1/YTdPxOqwDUHB7uR_37ABB4x0-oU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.183.0/24
IPv6:
2a13:4ac0:8::/45
Signature Algorithm: sha256WithRSAEncryption
77:d9:fe:cc:b7:3c:6b:d4:fa:f3:6c:ca:7b:85:77:19:6b:ef:
20:20:2b:b0:1a:6e:26:7f:e1:f4:bd:b7:83:01:bd:f6:57:6a:
d2:7a:ec:45:0b:ba:f2:ed:e2:32:be:0e:ec:d6:1c:e2:2f:9d:
87:ff:97:4f:21:0e:6c:83:f3:50:d8:fc:25:07:32:b9:a5:0f:
40:ce:fc:b8:b0:06:d9:97:48:5d:c6:7f:51:12:bd:5d:a2:46:
95:66:ca:5f:0b:21:fc:bf:99:25:fd:dc:6e:12:2c:20:f1:96:
4d:5b:0d:87:63:1e:c5:f0:5a:e6:d8:0d:80:ce:ea:80:97:64:
99:b0:83:7c:fc:dd:90:6c:e6:45:94:a5:c8:ce:1c:7d:94:45:
09:ba:8e:76:3a:14:38:30:e0:af:88:f1:a8:84:0b:93:94:dd:
54:0c:77:39:87:0a:fc:5c:2d:11:db:82:bd:e8:f5:93:71:d8:
90:2e:3d:fd:ab:1a:3a:24:d4:d0:68:51:0c:9a:88:4b:a4:55:
24:6e:04:d0:94:2c:d9:81:5f:16:f8:82:7d:88:13:bc:c1:18:
1c:5d:60:10:14:d5:c8:81:a2:56:5b:2a:e7:40:f2:e0:8c:ea:
3f:35:1c:1b:e4:1c:f3:d6:18:4f:a4:60:ce:eb:1a:3e:f6:d0:
de:cc:64:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:01:52 2024 by rpki-client on console-fra.rpki-client.org