Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/mQMUhEDMD5OvueyFSkX6fMg3rV4.roa
File: mQMUhEDMD5OvueyFSkX6fMg3rV4.roa (raw, json)
Hash identifier: O1Ux+xsLluGrpf8B1m9cGrTtlOfcF6u++fHd7/CUozI=
Subject key identifier: 99:03:14:84:40:CC:0F:93:AF:B9:EC:85:4A:45:FA:7C:C8:37:AD:5E
Certificate issuer: /CN=51326fabb1256fa02277e5ee034b7991ff3185a5
Certificate serial: 018CC6B8DC2B3603DE04A72C17FF14CD368C
Authority key identifier: 51:32:6F:AB:B1:25:6F:A0:22:77:E5:EE:03:4B:79:91:FF:31:85:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTJvq7Elb6Aid-XuA0t5kf8xhaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/mQMUhEDMD5OvueyFSkX6fMg3rV4.roa
Signing time: Mon 01 Jan 2024 20:30:52 +0000
ROA not before: Mon 01 Jan 2024 20:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 185.213.216.0/24 maxlen: 24
185.213.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/UTJvq7Elb6Aid-XuA0t5kf8xhaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/UTJvq7Elb6Aid-XuA0t5kf8xhaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UTJvq7Elb6Aid-XuA0t5kf8xhaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:dc:2b:36:03:de:04:a7:2c:17:ff:14:cd:36:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51326fabb1256fa02277e5ee034b7991ff3185a5
Validity
Not Before: Jan 1 20:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9903148440cc0f93afb9ec854a45fa7cc837ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:aa:69:83:37:72:85:3c:d3:29:d8:57:6c:4c:
9e:cd:b7:c4:57:05:4c:d9:dd:73:e2:c7:fe:bf:fa:
6b:30:8e:6a:7e:5c:01:25:45:f3:1a:4f:19:a4:85:
e0:26:bc:06:b6:b8:94:9d:23:30:cf:ac:57:a1:0d:
5c:95:71:88:fe:b7:64:32:81:50:55:23:50:8d:0d:
b0:37:92:16:50:1d:f1:61:e3:49:cc:41:c2:7d:86:
2d:78:96:a2:80:89:53:a2:31:a1:67:a9:b6:e4:5a:
77:63:ed:bc:83:a1:8d:8a:6b:7a:39:a4:94:04:01:
19:d6:55:50:38:47:8a:73:dc:a8:9e:9f:03:e0:f1:
f6:a0:9c:fb:9c:91:8c:51:6f:3e:d9:25:79:6e:5b:
9d:2d:14:50:1c:c7:20:6c:d6:8c:ce:ca:e6:62:5a:
36:49:e5:62:59:60:b2:76:ef:1a:90:cb:d6:b7:5b:
b8:40:27:a2:b9:5e:22:f8:62:2f:cd:f6:be:2d:be:
a0:72:cc:fd:6b:e4:e2:32:f3:0e:ea:93:f6:3b:a9:
18:79:33:72:2e:28:3f:cd:0f:9e:f5:04:be:05:ad:
27:1c:9d:67:c7:75:ac:00:ed:22:d7:de:de:43:5d:
6c:fe:f0:a7:52:e9:1c:a4:8c:90:bf:64:02:bd:1f:
2a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:03:14:84:40:CC:0F:93:AF:B9:EC:85:4A:45:FA:7C:C8:37:AD:5E
X509v3 Authority Key Identifier:
keyid:51:32:6F:AB:B1:25:6F:A0:22:77:E5:EE:03:4B:79:91:FF:31:85:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTJvq7Elb6Aid-XuA0t5kf8xhaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/mQMUhEDMD5OvueyFSkX6fMg3rV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/UTJvq7Elb6Aid-XuA0t5kf8xhaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.216.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:57:2c:58:cf:ac:45:d2:57:80:da:c4:04:4e:4e:c6:57:ec:
aa:84:8c:97:1c:de:0b:cd:2b:0f:82:8e:61:b3:9b:c4:70:6a:
f3:ac:76:b5:cf:1b:f7:18:43:59:d9:d2:35:7c:e5:87:af:23:
18:e2:b4:91:0e:47:b6:8e:a3:2d:08:cb:f7:a4:71:f1:d7:b9:
cb:b0:dd:55:e6:80:f6:26:77:31:a2:fb:cf:f2:42:c2:35:de:
97:60:e5:93:9c:5e:30:68:10:6f:24:b6:bd:0e:03:f8:21:69:
ea:b3:55:aa:9b:ef:1e:5e:ff:8d:36:c8:a9:95:23:fe:2d:22:
d6:70:b0:e1:dc:f7:0c:e1:fb:dd:be:dc:55:b2:60:3e:9c:99:
51:e1:42:fb:bc:02:d0:85:24:2c:d0:68:e6:36:6e:7a:3d:de:
cb:5a:18:16:fe:ba:41:bb:3c:f2:78:9b:5e:77:7e:a5:f7:5c:
ff:47:89:57:f0:6d:45:2b:06:15:c7:e4:fe:44:4e:2d:d2:48:
d8:1b:e8:62:0c:b0:d8:5b:49:7a:f7:c9:93:2d:53:0a:a0:1f:
5e:63:bd:18:61:c7:62:bf:5a:4a:50:b8:6f:12:22:83:da:92:
4b:2b:5a:91:0d:90:77:78:9e:b5:96:d6:4c:f6:c9:3c:a0:6f:
bb:ef:22:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:02:28 2024 by rpki-client on console-ams.rpki-client.org