Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/vQ1wCUEROprFgx_i11qeVPiRJ4I.roa
File: vQ1wCUEROprFgx_i11qeVPiRJ4I.roa (raw, json)
Hash identifier: GcoafEaPHoKO3wFTkCN6YiaLcr+josizNrU9Oe0vYD4=
Subject key identifier: BD:0D:70:09:41:11:3A:9A:C5:83:1F:E2:D7:5A:9E:54:F8:91:27:82
Certificate issuer: /CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Certificate serial: 0191079D246AABED1AD3878B66B36F3C97D1
Authority key identifier: 39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/vQ1wCUEROprFgx_i11qeVPiRJ4I.roa
Signing time: Wed 31 Jul 2024 07:07:04 +0000
ROA not before: Wed 31 Jul 2024 07:07:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206579
IP address blocks: 185.172.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:9d:24:6a:ab:ed:1a:d3:87:8b:66:b3:6f:3c:97:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937307000b9333f88000a35bf3b5b8fe38c16de
Validity
Not Before: Jul 31 07:07:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd0d700941113a9ac5831fe2d75a9e54f8912782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:54:56:3a:32:5d:0d:a7:91:27:65:2b:62:f4:
85:c3:3a:5a:04:93:b2:d8:d9:c6:f4:be:85:8d:41:
b5:77:b9:e0:8c:65:b1:88:9e:b6:1f:ca:19:a6:f5:
59:2d:a7:2d:dd:39:9e:87:6c:a5:5c:d0:90:54:a1:
e0:68:73:c3:88:42:6c:ac:c4:b4:3b:36:75:6b:6c:
e7:11:ea:52:67:63:92:c6:47:60:87:1b:04:d1:d8:
a4:18:4c:32:81:64:75:f5:6f:56:42:9f:99:7f:c1:
82:4b:9b:30:f2:8c:5b:49:ab:97:3a:f0:1b:b7:0d:
51:c5:85:51:a0:9e:bf:01:c4:b4:89:a0:12:a1:7d:
09:a3:7d:c9:ac:45:a2:1f:27:61:9d:28:28:9f:81:
82:84:9f:ff:fb:a3:9d:55:36:3e:f9:65:50:f3:53:
2f:5a:c1:ee:f7:0e:db:21:41:e6:f2:23:38:a2:a0:
b6:33:fc:6f:26:7b:9e:4e:26:3b:29:fb:4c:58:c4:
a9:a3:2c:50:73:34:3a:b3:7e:f4:45:50:8d:21:96:
42:2d:cd:95:b9:76:50:19:dc:2c:f8:2e:10:b0:40:
a0:a3:4c:7a:fe:a4:f0:50:9f:40:f1:d8:40:cf:44:
bb:c4:bb:1d:50:e2:8e:4e:7b:4c:40:84:8d:b1:7d:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0D:70:09:41:11:3A:9A:C5:83:1F:E2:D7:5A:9E:54:F8:91:27:82
X509v3 Authority Key Identifier:
keyid:39:37:30:70:00:B9:33:3F:88:00:0A:35:BF:3B:5B:8F:E3:8C:16:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTcwcAC5Mz-IAAo1vztbj-OMFt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/vQ1wCUEROprFgx_i11qeVPiRJ4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/fa2af0-a7e8-4610-907c-c93cc4775d46/1/OTcwcAC5Mz-IAAo1vztbj-OMFt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.208.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:de:2f:23:ad:91:dc:b0:38:ae:96:44:b2:a7:36:dc:44:fd:
70:48:2b:93:f6:76:d6:34:f3:98:85:91:77:7b:0c:54:50:f7:
59:32:12:f3:5c:46:dc:5c:9f:2a:4a:ed:00:f3:07:66:7e:ea:
d2:d3:3d:9f:f9:67:28:ea:8a:fd:57:3e:90:d2:df:c7:94:2a:
4f:af:25:eb:bb:45:37:48:27:64:e1:ae:ce:75:a0:87:72:5a:
c4:19:70:1b:87:84:fa:9e:87:5f:63:f0:7c:0f:8a:ba:88:6b:
d4:ef:d5:e7:a4:e0:0e:48:be:34:48:ac:e2:64:e5:cb:db:16:
4e:d3:28:83:d7:a7:55:3f:d0:56:62:d1:d2:57:9a:f8:24:58:
6d:14:83:8b:33:d8:0e:67:fc:f0:c5:62:aa:d5:20:2f:91:93:
93:66:97:df:4d:f4:4a:ae:77:8f:70:f4:1d:98:d6:9c:9d:e3:
c9:84:49:41:33:06:27:24:f2:e0:08:14:e8:57:3c:d7:2c:89:
3f:6c:34:22:44:e5:2c:d3:71:3b:70:2c:81:d4:63:80:00:58:
11:02:da:c0:0b:32:1c:48:5b:45:66:8c:90:ee:24:3b:b0:57:
08:19:0d:bc:f0:7d:41:5c:ad:12:14:3e:0a:1b:4d:6f:15:e8:
22:19:93:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:27:03 2024 by rpki-client on console-fra.rpki-client.org