Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FeNpQtKuvwSFOLa6JyxBWweJGVE.roa
File: FeNpQtKuvwSFOLa6JyxBWweJGVE.roa (raw, json)
Hash identifier: 8J70oB/OaS24tjhO7e1IyKQEd2uIY1nDKrI9BagIt/Y=
Subject key identifier: 15:E3:69:42:D2:AE:BF:04:85:38:B6:BA:27:2C:41:5B:07:89:19:51
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191F92E06D0106A66F8EF8D0CA2D21C9704
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FeNpQtKuvwSFOLa6JyxBWweJGVE.roa
Signing time: Mon 16 Sep 2024 04:53:48 +0000
ROA not before: Mon 16 Sep 2024 04:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64267
IP address blocks: 85.115.209.0/24 maxlen: 24
213.145.75.0/24 maxlen: 24
213.145.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft
rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:2e:06:d0:10:6a:66:f8:ef:8d:0c:a2:d2:1c:97:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Sep 16 04:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15e36942d2aebf048538b6ba272c415b07891951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ed:60:d6:7c:f3:49:19:e0:0c:a9:3b:71:f2:
c2:1a:37:23:55:5c:be:36:21:89:f4:bc:c7:b4:0f:
d0:4d:e6:2b:9b:64:11:ae:e2:62:ee:be:39:ec:04:
c9:77:da:69:0e:3e:34:37:b8:f4:11:91:11:0d:ff:
55:81:ab:01:79:df:51:c1:3e:4f:58:da:0d:12:09:
37:6a:1c:e6:a2:eb:ee:8d:35:42:e2:2c:2f:68:0c:
16:c8:a2:e9:62:d1:b0:99:26:04:2a:84:1c:ef:32:
48:1d:e5:40:6a:07:9d:18:35:76:09:5f:1a:57:04:
9e:05:ae:83:16:0d:fb:ec:2c:ed:be:18:65:db:bd:
a8:6c:b0:70:20:67:eb:d8:01:77:d4:aa:e3:89:1b:
e4:ef:3d:83:a8:7b:d6:27:6b:8f:9a:b5:29:95:2a:
79:5e:b0:1e:dd:db:28:cb:8a:4e:9f:95:a9:9e:2e:
91:6c:79:50:0b:d4:4a:12:03:55:be:49:dd:4a:e7:
8f:b8:bd:1e:3e:38:5f:90:6e:47:20:ec:33:62:09:
72:51:4b:4e:f8:87:3a:22:d8:5c:6d:a2:04:3e:b3:
94:86:23:6e:dc:5a:35:5f:42:5f:5e:a8:40:02:a0:
9f:7a:17:43:bd:e2:8c:29:a8:50:c8:6c:f3:12:13:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E3:69:42:D2:AE:BF:04:85:38:B6:BA:27:2C:41:5B:07:89:19:51
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FeNpQtKuvwSFOLa6JyxBWweJGVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.209.0/24
213.145.75.0/24
213.145.95.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f8:a0:ab:0e:65:ef:fd:6e:69:f6:09:79:7a:02:d2:a2:14:
f1:be:a4:4f:28:4a:1e:4d:0e:a4:15:98:c2:13:b5:59:93:0a:
c5:66:14:ca:17:a5:e8:7a:84:d5:1a:b9:ad:5d:ee:0e:51:08:
1b:cf:70:ef:57:cf:fd:0a:50:d5:a7:a1:82:22:14:a1:d3:c2:
28:80:f8:07:3c:cf:11:a3:82:ab:11:f0:dc:6d:d4:0c:e2:c8:
8d:f6:25:56:5d:5c:28:75:dc:dd:a2:a5:88:d7:21:69:8b:90:
91:91:40:41:ba:c0:90:9e:f7:56:af:3e:ee:ba:65:fd:01:4b:
97:3d:d8:e3:df:bf:cf:bb:f0:94:1b:00:9d:d1:47:c5:ca:86:
57:f0:6f:f6:21:db:2f:c9:fc:8c:eb:cc:8c:99:2a:12:9a:55:
54:17:c2:d8:29:4f:9d:1c:cd:7e:cd:99:53:80:42:7b:df:f6:
32:66:26:19:52:5c:76:56:a0:55:44:03:a1:40:b4:b1:5b:99:
78:ad:8f:a5:43:4e:fe:a4:a9:18:4b:e5:e7:f4:a6:39:7b:42:
5b:9f:7b:45:52:3d:7f:5b:14:4f:6b:1f:47:84:31:29:89:cc:
35:73:98:89:61:f8:bd:ed:23:3a:42:46:ba:42:cf:ee:e3:6c:
17:76:aa:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:34:43 2024 by rpki-client on console-ams.rpki-client.org