Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/V1vgmKEFbkYgvmDriCeSkZ1vQuQ.roa
File: V1vgmKEFbkYgvmDriCeSkZ1vQuQ.roa (raw, json)
Hash identifier: wvzeSTwK8QlB4jPfhbvhQjNdabM9DJeHeTPNRCp4r6Y=
Subject key identifier: 57:5B:E0:98:A1:05:6E:46:20:BE:60:EB:88:27:92:91:9D:6F:42:E4
Certificate issuer: /CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Certificate serial: 018D5A599FF31EE3982C72142D98D2902A03
Authority key identifier: C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/V1vgmKEFbkYgvmDriCeSkZ1vQuQ.roa
Signing time: Tue 30 Jan 2024 12:30:39 +0000
ROA not before: Tue 30 Jan 2024 12:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 46.34.160.0/22 maxlen: 24
89.42.136.0/22 maxlen: 24
89.42.196.0/22 maxlen: 22
89.42.196.0/24 maxlen: 24
89.47.196.0/22 maxlen: 24
89.47.197.0/24 maxlen: 24
89.47.198.0/24 maxlen: 24
89.47.200.0/22 maxlen: 22
89.47.200.0/24 maxlen: 24
89.47.201.0/24 maxlen: 24
89.47.202.0/24 maxlen: 24
92.114.48.0/22 maxlen: 22
92.114.48.0/24 maxlen: 24
92.114.49.0/24 maxlen: 24
92.114.50.0/24 maxlen: 24
92.114.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:59:9f:f3:1e:e3:98:2c:72:14:2d:98:d2:90:2a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Validity
Not Before: Jan 30 12:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=575be098a1056e4620be60eb882792919d6f42e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:16:22:fe:69:56:5e:61:0f:07:30:67:25:22:
ab:3e:f8:0b:c1:83:08:7a:44:73:1d:ee:46:1a:ad:
cc:c4:3c:0d:02:ec:db:28:b4:8e:f0:09:66:26:42:
06:6e:b8:f3:b1:f1:59:8b:9a:27:99:6e:93:31:30:
33:14:52:29:e8:39:42:fb:be:4a:76:21:7c:ef:53:
98:d2:61:0e:6d:b3:0c:eb:22:e5:0f:27:12:e6:2f:
14:86:f6:45:2e:74:22:5e:69:1a:ef:00:c0:fb:f5:
b6:0d:88:91:ed:58:1b:dd:3d:fb:37:d8:ee:28:b3:
ce:b6:dd:6e:35:f7:21:e7:7a:a9:86:77:65:db:d3:
5e:e7:91:36:11:ad:47:18:df:e1:7e:df:40:d4:b7:
d9:68:80:2d:d3:59:d8:52:22:15:a0:29:57:15:2e:
6b:89:1b:08:8e:e1:e6:c8:ea:41:db:28:81:08:8a:
2c:44:b1:b7:99:8b:e9:4c:70:1d:b8:ee:64:cc:bf:
30:73:a1:eb:6e:d2:a7:af:d4:7d:ed:a5:0e:60:7a:
68:dc:9d:e1:6c:a0:4c:d9:93:12:7e:55:03:54:dd:
73:8d:17:fa:f0:4e:8f:a2:2a:c1:6d:f5:66:69:85:
51:fe:38:0f:8d:fa:60:75:8a:54:fe:56:16:09:63:
5b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:5B:E0:98:A1:05:6E:46:20:BE:60:EB:88:27:92:91:9D:6F:42:E4
X509v3 Authority Key Identifier:
keyid:C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/V1vgmKEFbkYgvmDriCeSkZ1vQuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.160.0/22
89.42.136.0/22
89.42.196.0/22
89.47.196.0-89.47.203.255
92.114.48.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:28:4d:d2:b9:3a:f4:45:01:5f:7c:75:1e:b6:57:20:f1:c1:
ca:40:ed:48:29:25:52:fc:04:9f:21:30:91:a0:34:bf:bd:b8:
88:be:44:b6:59:db:ba:c4:ab:ab:d3:22:e0:b6:c3:a8:79:cc:
a6:f6:02:ff:0b:0e:c8:d4:1f:fd:b0:92:88:f6:7c:38:71:00:
57:d3:2d:ab:10:5d:40:19:45:87:19:e4:b6:4a:c3:86:c3:9a:
9c:59:ad:14:e5:a9:9d:94:e4:48:87:16:e0:cb:e8:ba:26:5f:
e1:7e:32:29:d5:be:37:1f:2e:56:28:5f:a3:0c:da:da:20:3a:
c4:3e:d8:e6:2d:b8:f0:71:de:31:03:65:ea:60:f7:58:e4:e2:
74:78:de:8b:f9:5b:6c:33:aa:0b:c4:9f:ac:08:4a:d7:cb:99:
4f:6b:ea:cd:38:8d:e1:ac:9b:9f:8f:f6:b6:90:e0:9d:4f:9a:
50:17:4c:69:84:77:83:dc:e6:bb:5a:d4:0d:fc:8b:ab:9c:dd:
09:67:4e:d6:08:54:c3:37:75:89:3a:fc:6d:42:ba:94:3c:79:
1e:f5:80:92:70:58:31:d7:05:f8:02:b2:e4:3b:6a:da:c8:46:
56:99:b1:67:ea:85:2d:dd:24:f8:58:cf:dd:8e:ed:aa:f1:14:
9f:70:b4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:00 2024 by rpki-client on console-fra.rpki-client.org