Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/1-yyO6jCuRz6WAyzBIVkzwYeyEjQ.roa
File: 1-yyO6jCuRz6WAyzBIVkzwYeyEjQ.roa (raw, json)
Hash identifier: JgKLh/AJncin2exnATCDi3b0I36v1kb+jvSLnybqV84=
Subject key identifier: FB:2C:8E:EA:30:AE:47:3E:96:03:2C:C1:21:59:33:C1:87:B2:12:34
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018CC88E9DBB2BEF41412389224C0D658049
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/1-yyO6jCuRz6WAyzBIVkzwYeyEjQ.roa
Signing time: Tue 02 Jan 2024 05:03:58 +0000
ROA not before: Tue 02 Jan 2024 05:03:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208520
IP address blocks: 45.94.15.0/24 maxlen: 24
45.94.14.0/24 maxlen: 24
2001:1497:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:8e:9d:bb:2b:ef:41:41:23:89:22:4c:0d:65:80:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Jan 2 05:03:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb2c8eea30ae473e96032cc1215933c187b21234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5d:9d:ce:60:b5:37:bb:89:cf:6a:1f:c2:4b:
31:67:90:01:63:89:c2:3c:86:28:82:c1:b1:ee:1c:
b2:75:87:15:71:bb:50:b5:14:78:06:1f:f4:9b:6a:
30:0c:ef:74:5f:dd:8c:da:16:2a:eb:c1:12:66:19:
eb:50:ed:0e:8f:f3:6f:3b:28:43:4c:ad:55:c9:42:
be:ec:1b:3f:d0:d7:7b:e0:87:7f:7e:0f:9d:18:fa:
2a:58:da:76:54:f8:b2:8c:d2:c5:75:55:ca:f4:8b:
89:a9:27:5a:bc:a6:27:3d:01:f0:dc:bc:f5:18:7d:
08:01:a4:3b:ca:4d:23:de:3b:94:74:2d:15:a6:b5:
de:71:ed:66:b7:e8:a4:8b:35:6b:c8:95:6d:68:eb:
04:46:21:35:69:1f:7b:ac:4d:47:3d:21:e3:84:b0:
5d:7e:c6:94:0a:5d:b9:05:02:61:40:77:97:88:99:
d5:ad:22:e6:d2:a6:af:e5:6b:14:1e:57:ff:3d:2d:
5b:d7:4d:5c:e5:94:55:dd:19:7c:f0:74:e6:f5:17:
46:16:c8:46:af:66:d8:e3:9f:72:83:f5:6a:16:72:
32:a9:06:31:2c:31:fa:39:a9:ba:39:64:b2:60:70:
ea:f4:68:e9:ee:eb:2e:17:76:a7:33:60:6c:a7:53:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2C:8E:EA:30:AE:47:3E:96:03:2C:C1:21:59:33:C1:87:B2:12:34
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/1-yyO6jCuRz6WAyzBIVkzwYeyEjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
IPv6:
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
be:6b:7e:16:2f:f3:14:9d:d8:18:7d:e1:32:67:fc:10:8f:a8:
29:41:85:fb:8c:40:52:4b:9b:02:45:d4:08:78:dd:2f:71:04:
8c:90:c8:62:7f:78:7f:5b:3d:3c:44:98:c6:37:78:2b:40:b7:
09:a2:84:79:b6:26:3b:4e:ab:1f:0d:7b:96:6e:31:cb:d1:e8:
6d:42:15:a9:e2:22:e6:0b:7a:31:2e:60:ae:88:79:dd:70:61:
04:e0:f3:3e:19:65:8a:93:a6:46:d9:90:12:69:fd:a8:a5:72:
5d:62:0a:14:6c:7d:13:ef:37:21:8d:36:ef:86:57:65:70:4f:
5a:c7:a4:b3:aa:e7:10:26:13:83:0e:e7:d8:a9:2a:6e:bf:72:
f0:4c:e2:4d:f0:8e:85:65:bc:85:29:d0:fa:ee:d4:d1:8c:d4:
d5:68:af:ad:cb:aa:02:5b:3c:b4:3e:7c:bd:b2:d8:f7:2c:c1:
7a:12:a4:27:09:d5:cf:a7:ed:00:7e:d7:a6:3b:12:e0:6f:6d:
91:42:db:c0:29:23:e5:ce:c3:ec:17:91:5a:cc:e9:16:3a:20:
3b:18:5d:99:94:b2:2e:80:66:80:2f:5e:bb:d3:c8:c0:16:80:
eb:7e:f4:2c:be:ef:ba:64:6c:69:bb:91:b7:d9:aa:c3:6b:e3:
93:14:4f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 10:19:20 2024 by rpki-client on console-fra.rpki-client.org