Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/VJ2xL9ys6ZE2jCmtGgJ3M-c7TsE.roa
File: VJ2xL9ys6ZE2jCmtGgJ3M-c7TsE.roa (raw, json)
Hash identifier: HeoV9/6J4pyNYY40ExtKNzs/jhPXoyCoF88ldNIzH0I=
Subject key identifier: 54:9D:B1:2F:DC:AC:E9:91:36:8C:29:AD:1A:02:77:33:E7:3B:4E:C1
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EC7C09CFA7F1EACB86F86EAE300B8CCDB
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/VJ2xL9ys6ZE2jCmtGgJ3M-c7TsE.roa
Signing time: Wed 10 Apr 2024 11:24:32 +0000
ROA not before: Wed 10 Apr 2024 11:24:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15934
IP address blocks: 213.145.32.0/19 maxlen: 19
213.145.43.0/24 maxlen: 24
217.14.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:c0:9c:fa:7f:1e:ac:b8:6f:86:ea:e3:00:b8:cc:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 10 11:24:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=549db12fdcace991368c29ad1a027733e73b4ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:86:f4:44:7a:ab:ef:9a:4d:7f:0d:a7:61:35:
bf:af:c7:0a:8f:68:da:01:78:bf:0c:fa:a6:c4:f6:
1a:62:ed:8d:33:05:1c:cd:b4:73:a1:e7:88:e0:65:
cf:c8:55:1e:04:71:8a:5c:f8:c3:7c:03:43:77:ca:
1e:da:5e:b8:a7:4c:e4:18:25:66:ef:5d:bd:d9:89:
67:c9:fa:56:d2:f7:aa:c4:f0:f6:cd:3d:4e:69:29:
fe:9b:ce:1f:b6:6f:4d:7e:b5:49:01:b8:92:8e:c4:
03:45:cc:1f:6c:93:f0:b7:57:08:8f:1f:42:d0:25:
99:fa:e6:36:88:24:43:5c:c5:ee:9d:ab:56:46:9f:
71:10:c2:2b:42:24:15:1d:36:19:29:5b:c8:0d:fc:
84:32:f7:11:db:d7:00:44:f5:4e:56:57:22:40:72:
4f:37:f2:3c:dc:5e:01:ef:2e:ba:2e:f9:26:e0:96:
e7:30:fc:60:67:1f:a4:1f:a7:2c:bf:3e:4c:84:1b:
16:97:d8:51:40:aa:35:b5:fe:a7:e4:79:a0:0c:ab:
35:9f:d3:36:e0:45:94:8c:f4:df:2f:f4:1f:1f:03:
aa:60:ca:e5:83:e8:34:99:57:f6:c2:be:e1:21:eb:
44:c5:e3:f9:b3:f7:61:c1:bb:d8:35:92:ca:e7:b6:
a9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9D:B1:2F:DC:AC:E9:91:36:8C:29:AD:1A:02:77:33:E7:3B:4E:C1
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/VJ2xL9ys6ZE2jCmtGgJ3M-c7TsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.32.0/19
217.14.255.0/24
Signature Algorithm: sha256WithRSAEncryption
46:5f:e6:21:f0:8c:fd:ba:31:71:b7:e7:cd:c7:27:52:ab:46:
22:ce:a9:58:8c:cd:cf:ff:ff:4a:fa:24:d6:25:3a:e5:59:ad:
f5:1a:1f:ef:5b:df:d7:77:19:41:d4:b8:db:1d:ab:c2:e3:8d:
6e:88:78:6e:24:e8:05:81:1b:fc:d8:9c:42:c4:9f:84:5f:5c:
9b:6f:db:f3:d0:6f:0e:56:2b:08:87:f2:c8:ca:26:a5:b0:a7:
70:75:7d:2b:48:be:e0:62:5d:20:53:6c:8c:31:e8:a2:6a:03:
6c:0d:5e:c7:f2:a5:a8:19:99:da:b1:0c:0c:43:89:b3:79:bf:
4e:ec:66:67:d2:7e:ab:7a:34:6c:1f:22:2c:52:07:55:36:75:
4a:c5:71:5f:d6:ee:20:50:d2:2f:be:33:63:9d:c1:66:6d:0a:
3f:2a:08:1c:0e:79:46:c2:37:7d:2e:75:60:21:49:22:24:41:
a9:89:bd:39:68:86:3c:83:e5:38:45:46:88:81:86:ef:5c:c8:
2d:be:38:47:a8:9c:ce:a2:ab:bf:16:b9:49:11:43:64:5a:83:
37:92:ba:4e:78:8d:54:db:4b:44:b8:14:af:9b:22:bc:b2:e3:
3c:74:72:df:f9:54:c6:ee:3f:34:fb:4d:83:f6:31:f4:4e:b2:
9f:08:8a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:56:01 2024 by rpki-client on console-fra.rpki-client.org