Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/kroS-oJseKpRh3T4GK2i1IrLapc.roa
File: kroS-oJseKpRh3T4GK2i1IrLapc.roa (raw, json)
Hash identifier: 6Mk02qo4bVYMKmCKA6/RGtKzOpQEEW1CW43V/LjKaIc=
Subject key identifier: 92:BA:12:FA:82:6C:78:AA:51:87:74:F8:18:AD:A2:D4:8A:CB:6A:97
Certificate issuer: /CN=c3c61b51ebc84180f0a6b232e87df9d61c90faab
Certificate serial: 01907394EE68B8FF38AA5A60ACA82F7A9BAF
Authority key identifier: C3:C6:1B:51:EB:C8:41:80:F0:A6:B2:32:E8:7D:F9:D6:1C:90:FA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8YbUevIQYDwprIy6H351hyQ-qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/kroS-oJseKpRh3T4GK2i1IrLapc.roa
Signing time: Tue 02 Jul 2024 13:14:18 +0000
ROA not before: Tue 02 Jul 2024 13:14:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52142
IP address blocks: 46.174.179.0/24 maxlen: 24
46.174.183.0/24 maxlen: 24
91.210.128.0/24 maxlen: 24
91.210.129.0/24 maxlen: 24
195.69.80.0/22 maxlen: 22
2a03:c940::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/w8YbUevIQYDwprIy6H351hyQ-qs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/w8YbUevIQYDwprIy6H351hyQ-qs.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8YbUevIQYDwprIy6H351hyQ-qs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jul 2024 07:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:94:ee:68:b8:ff:38:aa:5a:60:ac:a8:2f:7a:9b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c61b51ebc84180f0a6b232e87df9d61c90faab
Validity
Not Before: Jul 2 13:14:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92ba12fa826c78aa518774f818ada2d48acb6a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6d:55:0b:9d:da:5d:ce:e0:bc:62:22:15:32:
57:9e:53:b6:35:e4:29:09:dd:f1:d3:8f:d7:a6:aa:
1a:f8:a9:ab:65:fe:16:43:08:a5:18:40:a1:86:1f:
54:c1:99:8b:bc:cf:03:44:5c:5c:a5:84:57:30:18:
20:50:7f:a9:3d:d9:d9:af:f3:46:93:55:dc:97:15:
f6:15:02:13:a4:3e:df:97:84:04:07:9a:be:fd:3f:
59:ea:c9:01:19:20:fc:47:86:cd:58:1c:5e:32:ae:
39:7d:e1:23:f3:fb:d1:94:a5:83:2a:ad:64:63:c0:
be:a0:95:e8:0d:24:8e:d7:13:a1:32:23:6a:58:37:
75:15:28:75:f0:73:11:57:a9:82:8d:fc:1d:10:eb:
2e:02:56:4c:29:c7:7e:66:d0:2f:f4:9d:d4:69:23:
89:ee:79:87:b4:44:46:50:2f:1c:b3:32:67:a7:18:
a7:01:03:b1:2d:f2:c7:42:85:65:90:78:2f:52:4c:
39:6d:0a:69:dd:13:b1:58:49:b3:9a:c9:32:6e:18:
90:6e:95:85:5b:cc:cc:34:5b:ba:fc:6b:f4:95:30:
f7:a8:93:b0:dd:88:78:e0:c4:eb:5e:f9:fb:b1:8d:
b8:5f:35:e4:e2:bd:66:f2:eb:b3:8a:ca:a4:41:2b:
7f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:BA:12:FA:82:6C:78:AA:51:87:74:F8:18:AD:A2:D4:8A:CB:6A:97
X509v3 Authority Key Identifier:
keyid:C3:C6:1B:51:EB:C8:41:80:F0:A6:B2:32:E8:7D:F9:D6:1C:90:FA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8YbUevIQYDwprIy6H351hyQ-qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/kroS-oJseKpRh3T4GK2i1IrLapc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/w8YbUevIQYDwprIy6H351hyQ-qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.179.0/24
46.174.183.0/24
91.210.128.0/23
195.69.80.0/22
IPv6:
2a03:c940::/32
Signature Algorithm: sha256WithRSAEncryption
2b:0f:db:90:c0:e5:29:f6:48:6c:3d:8a:8b:3c:0f:1b:43:95:
67:b0:ba:60:ff:44:8a:22:ab:3f:85:b7:37:23:38:fc:dd:6d:
fe:05:7c:e6:1b:31:a3:1b:e6:d2:f3:13:95:8a:b4:92:a8:29:
cd:68:d2:8e:92:f7:a3:0f:d3:66:09:4f:c8:55:40:2a:a8:86:
d4:ad:72:11:9f:ac:25:d4:46:01:4a:78:b1:2e:4e:02:4a:d5:
e3:22:e9:6b:bd:d5:83:db:6b:c8:8e:6b:40:54:7e:80:7c:87:
bc:46:d8:83:90:42:c3:2d:70:fd:63:38:5a:30:27:a9:00:64:
05:fa:e6:84:e7:d3:56:cf:b4:7f:26:60:95:dd:5b:9d:2d:9b:
b1:27:82:bc:89:c9:ed:f4:12:30:fd:08:9d:c7:6d:10:bc:69:
65:2c:7e:c4:65:ce:55:17:52:1a:84:da:46:8a:9e:80:5e:ed:
bf:1f:de:5f:7d:8b:f8:06:1d:0c:54:c5:d1:1d:fb:33:4d:63:
cd:09:2f:64:c7:aa:f8:d9:9e:06:c1:19:97:b2:52:c5:94:3c:
50:5b:c9:55:19:d2:4d:a0:4d:55:aa:68:6b:12:cf:cd:a5:38:
70:ab:87:97:2e:fb:ec:92:a6:2a:9d:67:0c:f4:de:9f:fc:51:
9a:80:bb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 11:31:01 2024 by rpki-client on console.sobornost.net