Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fm_yHrYVMVwdwcxBXMkcjL0m8tI.roa
File: fm_yHrYVMVwdwcxBXMkcjL0m8tI.roa (raw, json)
Hash identifier: f69Dkszz8uHMKhOU9AVXEUH0VuVsdx5ihfQJMjxL3ro=
Subject key identifier: 7E:6F:F2:1E:B6:15:31:5C:1D:C1:CC:41:5C:C9:1C:8C:BD:26:F2:D2
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01919B371147FCE8388CC35A6EBB04037992
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fm_yHrYVMVwdwcxBXMkcjL0m8tI.roa
Signing time: Wed 28 Aug 2024 22:59:23 +0000
ROA not before: Wed 28 Aug 2024 22:59:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:2000::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2e00::/40 maxlen: 48
2a0c:9a40:8a90::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9b:37:11:47:fc:e8:38:8c:c3:5a:6e:bb:04:03:79:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Aug 28 22:59:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e6ff21eb615315c1dc1cc415cc91c8cbd26f2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:38:80:e7:f1:a0:a9:6b:13:d6:c7:9a:0e:03:
5f:38:e0:c2:ce:f2:93:b9:b9:22:7a:ac:52:ba:53:
57:56:f5:91:61:d8:50:fd:52:b0:ab:cc:22:7e:be:
da:41:fd:c0:3d:8d:a7:ae:7b:42:bd:2c:6a:0b:07:
25:78:00:9b:be:c8:ac:5e:bb:c9:ac:03:cf:dd:c8:
e8:1f:11:25:43:46:2d:fc:b3:8c:85:76:b3:a8:52:
22:45:d7:76:81:41:03:c0:5e:61:66:71:92:a9:9e:
81:5c:9a:b4:a6:fb:c6:c3:50:34:69:a0:f8:82:53:
63:82:7e:09:e1:17:b2:71:dd:31:5f:f0:7e:7e:92:
3f:ed:2c:74:a3:46:06:ed:10:0c:f0:c9:a2:b9:07:
8c:20:83:24:2b:ad:ad:1f:4c:b1:c5:2b:1a:fe:62:
26:e7:fb:ce:94:91:d2:cf:6a:20:c0:e8:11:35:b4:
6d:30:97:7e:c0:3c:e1:31:19:ac:59:d6:23:15:10:
22:de:f4:f9:a8:5d:98:0d:fd:58:46:b2:99:a3:cf:
60:0f:a9:9c:18:7f:53:bf:d0:dc:84:77:be:d8:27:
c2:fd:e5:d0:e1:e8:0e:9e:f3:7c:4b:85:f6:cb:f6:
6d:71:99:0e:28:67:ab:cb:eb:17:71:46:dd:21:6c:
83:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6F:F2:1E:B6:15:31:5C:1D:C1:CC:41:5C:C9:1C:8C:BD:26:F2:D2
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fm_yHrYVMVwdwcxBXMkcjL0m8tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2000::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2eff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:8a90::/48
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
d2:e1:9a:4b:01:78:48:04:92:64:5f:d1:23:79:34:de:32:b2:
09:bb:82:2a:44:ce:7f:12:ac:9b:29:dd:11:bf:2c:fd:af:39:
da:43:5d:aa:10:e9:1c:7e:bd:af:89:7a:42:a9:8b:22:2b:51:
0d:d4:03:e1:76:e9:5c:5d:00:fd:f7:27:e5:09:27:d3:75:0b:
69:df:56:c4:34:7f:0d:e1:4a:76:d4:7b:92:8c:c6:aa:e3:27:
e5:66:d7:c8:c6:c7:c4:a0:b0:63:16:e1:04:06:6c:74:89:f8:
c6:27:8a:5f:ff:4a:b4:a6:2c:3b:66:33:f8:bf:3d:15:84:fd:
3a:d8:b7:40:6d:f4:8b:c2:52:3c:73:df:e6:d9:b8:ab:ab:be:
2c:34:1a:8f:81:b0:9b:a0:92:8a:8f:60:4f:6c:c0:04:ad:78:
e6:74:92:7f:b5:e7:7c:ed:d8:91:bb:30:f2:48:23:61:a3:2c:
20:4b:08:dd:58:4c:ae:c9:86:c7:39:6d:51:6f:f8:ba:ba:d4:
44:63:66:b9:58:54:2f:65:bf:6d:91:45:aa:89:f7:f1:bf:a6:
0e:9b:64:1f:95:4a:8d:34:47:fd:e1:e2:a4:28:0f:d3:b7:3b:
e6:74:6c:14:3c:cc:ba:fb:4b:e9:bf:b4:f7:59:cb:67:22:37:
cd:71:c4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 11:13:35 2024 by rpki-client on console-fra.rpki-client.org