Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/KDc9zn9cqlIR7ARDK5a_gbc0nxA.roa
File: KDc9zn9cqlIR7ARDK5a_gbc0nxA.roa (raw, json)
Hash identifier: XYkFBezOK7oJIel/pfOmvbAlcnuRacjE1AQyhygzUXc=
Subject key identifier: 28:37:3D:CE:7F:5C:AA:52:11:EC:04:43:2B:96:BF:81:B7:34:9F:10
Certificate issuer: /CN=82f2455dcf45ae65a6fdccf8f7821ce3c524011d
Certificate serial: 018CC86F12F8B61D222BF21A00CAF1AF0B9D
Authority key identifier: 82:F2:45:5D:CF:45:AE:65:A6:FD:CC:F8:F7:82:1C:E3:C5:24:01:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/KDc9zn9cqlIR7ARDK5a_gbc0nxA.roa
Signing time: Tue 02 Jan 2024 04:29:31 +0000
ROA not before: Tue 02 Jan 2024 04:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42067
IP address blocks: 212.93.176.0/24 maxlen: 24
212.93.177.0/24 maxlen: 24
212.93.178.0/24 maxlen: 24
212.93.179.0/24 maxlen: 24
212.93.180.0/24 maxlen: 24
212.93.181.0/24 maxlen: 24
212.93.182.0/24 maxlen: 24
212.93.183.0/24 maxlen: 24
212.93.186.0/24 maxlen: 24
212.93.187.0/24 maxlen: 24
212.93.188.0/24 maxlen: 24
212.93.189.0/24 maxlen: 24
212.93.190.0/24 maxlen: 24
212.93.191.0/24 maxlen: 24
212.93.160.0/19 maxlen: 19
212.93.160.0/24 maxlen: 24
212.93.161.0/24 maxlen: 24
212.93.162.0/24 maxlen: 24
212.93.163.0/24 maxlen: 24
212.93.164.0/24 maxlen: 24
212.93.165.0/24 maxlen: 24
212.93.170.0/24 maxlen: 24
91.151.160.0/24 maxlen: 24
91.151.161.0/24 maxlen: 24
91.151.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:12:f8:b6:1d:22:2b:f2:1a:00:ca:f1:af:0b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f2455dcf45ae65a6fdccf8f7821ce3c524011d
Validity
Not Before: Jan 2 04:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28373dce7f5caa5211ec04432b96bf81b7349f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:71:04:84:8e:c0:df:6f:c2:98:92:be:f6:10:
e3:94:e3:32:f9:a1:a7:6f:b4:69:23:2b:7b:c9:86:
97:49:a4:84:0c:63:20:9e:a8:30:75:25:c8:f1:09:
30:3c:05:bf:e3:e1:cf:13:dc:2f:ff:63:b5:6d:75:
0c:5e:e3:62:13:d9:20:d1:b2:f0:07:f5:95:c2:f1:
1a:14:94:a9:e5:99:c9:48:7b:e1:05:aa:8d:8c:14:
2a:6c:ae:08:5e:ac:f4:59:44:68:0a:22:66:c0:3b:
f7:5f:6d:fb:61:7f:4e:5c:e8:3c:aa:4c:c7:c1:e0:
11:1e:bb:4d:2a:2f:6b:77:78:57:e0:e4:f5:2e:52:
c4:c3:fb:08:ec:09:fc:e3:15:bf:03:ab:8b:87:39:
97:d4:89:ca:ee:47:42:17:e1:85:48:cc:9a:c5:5f:
68:cb:83:37:c8:3d:a7:36:d3:1e:61:9a:c3:11:88:
6d:c9:21:9f:dd:fe:96:26:f3:32:ba:4a:24:30:d8:
69:de:c1:01:c6:3f:e3:32:c1:be:57:3d:99:07:0c:
b1:2e:82:bc:cc:a3:b2:c6:1b:04:1a:32:ed:f0:34:
36:8b:02:9c:ba:02:e9:9b:87:51:ef:a3:bb:ba:8a:
b5:d0:41:52:19:c3:ba:cd:d8:48:82:32:61:58:8b:
2f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:37:3D:CE:7F:5C:AA:52:11:EC:04:43:2B:96:BF:81:B7:34:9F:10
X509v3 Authority Key Identifier:
keyid:82:F2:45:5D:CF:45:AE:65:A6:FD:CC:F8:F7:82:1C:E3:C5:24:01:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/KDc9zn9cqlIR7ARDK5a_gbc0nxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.160.0-91.151.162.255
212.93.160.0/19
Signature Algorithm: sha256WithRSAEncryption
97:6b:55:6e:be:33:e7:a4:5a:9b:49:a8:04:88:52:e2:08:ec:
31:d1:60:42:24:e2:7c:26:97:cf:36:b1:f0:4e:54:28:f6:91:
20:27:e5:32:52:21:c8:9c:f2:f6:57:e8:e3:ed:2f:97:9a:18:
44:a2:d2:c8:47:78:eb:6c:b5:7d:b5:81:8a:e5:1b:5c:f1:88:
9e:21:03:d2:0a:a2:3b:8d:a0:29:b7:2a:21:3c:b1:14:bc:76:
58:3b:2b:ce:8b:9a:45:a1:b5:41:38:dc:cc:fd:98:90:5e:68:
4e:b4:4c:79:89:bf:0c:8d:1f:3f:d8:a7:ee:19:c8:03:69:b4:
3e:6e:ca:a1:7f:44:df:f2:8a:e6:5f:6c:cf:2a:6d:7d:15:b2:
80:46:31:5b:25:ad:65:9c:c5:61:e9:b3:1d:d7:71:cd:7c:3a:
76:8d:63:58:a4:2f:3a:25:20:95:eb:0d:1f:21:ff:62:9a:80:
56:82:20:28:00:3c:88:44:7e:5b:7a:25:83:d6:48:c2:b0:4b:
8d:ed:06:1f:c6:45:8c:dd:32:cb:29:41:93:ee:52:7d:5f:80:
29:36:42:36:f4:94:5a:57:77:a7:bd:a2:73:fe:51:ca:4a:b6:
10:da:f9:1c:7f:fe:19:c0:8c:d5:52:21:c9:f8:32:c6:7b:56:
5e:22:a4:a3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jun 21 16:19:55 2024 by rpki-client on console-ams.rpki-client.org