Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/1uMzcLzL4KFJYmw6sV1FKHszR38.roa
File: 1uMzcLzL4KFJYmw6sV1FKHszR38.roa (raw, json)
Hash identifier: KsSJFTEHziP1rhhbH73L1uTvffh3naR1voy3433crig=
Subject key identifier: D6:E3:33:70:BC:CB:E0:A1:49:62:6C:3A:B1:5D:45:28:7B:33:47:7F
Certificate issuer: /CN=c013d0505d07aa10d9117ac2fd56266d4890518f
Certificate serial: 018CC7276CE0211FB20ABDD8CDDC28AA39EF
Authority key identifier: C0:13:D0:50:5D:07:AA:10:D9:11:7A:C2:FD:56:26:6D:48:90:51:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBPQUF0HqhDZEXrC_VYmbUiQUY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/1uMzcLzL4KFJYmw6sV1FKHszR38.roa
Signing time: Mon 01 Jan 2024 22:31:38 +0000
ROA not before: Mon 01 Jan 2024 22:31:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197293
IP address blocks: 46.31.248.0/21 maxlen: 24
185.15.160.0/22 maxlen: 24
178.248.144.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/wBPQUF0HqhDZEXrC_VYmbUiQUY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/wBPQUF0HqhDZEXrC_VYmbUiQUY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/wBPQUF0HqhDZEXrC_VYmbUiQUY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:6c:e0:21:1f:b2:0a:bd:d8:cd:dc:28:aa:39:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c013d0505d07aa10d9117ac2fd56266d4890518f
Validity
Not Before: Jan 1 22:31:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6e33370bccbe0a149626c3ab15d45287b33477f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b2:69:c3:18:63:08:23:1b:7f:99:9b:c1:20:
f4:29:c4:7d:15:6e:09:06:6a:1c:b4:92:f9:50:31:
0a:54:95:99:4b:05:80:75:31:76:8e:5e:c0:93:4d:
d0:8d:32:7b:df:ab:6a:ae:a3:b9:db:3e:95:c0:9c:
f6:a9:a5:10:21:27:78:1e:a5:66:7d:f4:cf:69:5d:
e2:52:77:e4:48:1a:66:77:1b:f7:3a:cf:51:0f:da:
46:60:a3:cf:cf:7a:27:6d:25:a7:6e:94:45:e0:03:
b8:ab:1a:25:0f:97:21:be:65:01:db:6b:76:c8:ba:
b8:db:46:8f:09:84:e0:27:ba:e9:14:9a:dc:6c:2d:
aa:ab:03:73:15:c4:8d:57:e0:a0:b1:96:65:ab:82:
5d:dd:81:cf:bb:70:20:a1:a0:bf:86:49:fa:71:e7:
36:21:d8:ef:4f:e6:2c:f7:e8:6c:bb:e7:a0:b7:bd:
a4:40:89:e2:d6:f0:89:de:bc:3a:7f:71:3a:c8:c0:
ed:a0:10:6c:9f:ff:dc:44:35:ed:e2:68:50:04:dc:
1c:b7:9a:cc:b5:60:c6:24:69:56:f0:7d:6d:6f:a4:
03:bd:5d:8c:2f:77:13:43:55:73:e5:7a:f1:fe:83:
f8:b8:fd:84:94:e4:56:08:bb:6c:48:90:46:c9:77:
7a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E3:33:70:BC:CB:E0:A1:49:62:6C:3A:B1:5D:45:28:7B:33:47:7F
X509v3 Authority Key Identifier:
keyid:C0:13:D0:50:5D:07:AA:10:D9:11:7A:C2:FD:56:26:6D:48:90:51:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBPQUF0HqhDZEXrC_VYmbUiQUY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/1uMzcLzL4KFJYmw6sV1FKHszR38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/198396-f48e-4a2c-ba5a-6d210fd42d77/1/wBPQUF0HqhDZEXrC_VYmbUiQUY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.248.0/21
178.248.144.0/21
185.15.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:5b:28:87:9d:c2:c3:b4:de:7f:33:eb:33:79:6f:ce:96:9b:
09:f9:5a:1a:38:c7:9a:94:cc:84:f6:48:25:07:88:42:e9:9d:
4a:10:3a:8e:23:e7:38:3e:43:fe:ca:6b:24:77:32:6d:02:b7:
07:1b:e4:bb:61:a8:23:ab:81:03:21:2b:18:45:92:82:5a:50:
11:1f:94:9c:d9:81:c0:98:38:67:e6:81:52:7e:1f:c4:33:f5:
70:75:dc:95:d5:7e:92:db:6e:42:4a:e9:b8:83:5e:18:d5:66:
b3:62:9c:f0:2b:cf:bd:61:9e:84:1c:63:2b:dc:7e:0a:4b:77:
77:60:31:f0:71:24:f6:2a:f8:30:fd:e6:be:b7:ff:77:1a:71:
19:7b:55:9c:f8:e2:86:49:5c:0f:0b:ee:3d:2f:93:6c:cd:24:
fc:e7:33:66:d0:2c:21:b8:0c:ef:74:91:86:be:3b:a4:fa:42:
1e:7c:72:0d:f7:fe:f1:11:d2:fa:2d:c9:59:d5:24:e7:ea:13:
41:f3:a9:8c:6a:50:2a:bf:20:9f:24:b7:20:65:49:a0:94:68:
c7:ef:b6:18:6c:51:68:83:77:11:96:67:98:de:ce:74:5f:59:
7f:31:8c:de:c2:c9:fe:c7:d1:4d:13:18:5d:8f:1e:ee:76:06:
44:0f:03:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:39:51 2024 by rpki-client on console-ams.rpki-client.org