Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/F4ou-XOBctbzfsTnlCUqk8p89os.roa
File: F4ou-XOBctbzfsTnlCUqk8p89os.roa (raw, json)
Hash identifier: 1AmIjGNJ/AZW2wzPmr9Osif5uRLYqve1hGWeD4iVaEk=
Subject key identifier: 17:8A:2E:F9:73:81:72:D6:F3:7E:C4:E7:94:25:2A:93:CA:7C:F6:8B
Certificate issuer: /CN=e5c340ee5b9daf1a6818f0df407fa5975886b10f
Certificate serial: 019097377C656C8B9DBC803EB74AD8745B57
Authority key identifier: E5:C3:40:EE:5B:9D:AF:1A:68:18:F0:DF:40:7F:A5:97:58:86:B1:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/F4ou-XOBctbzfsTnlCUqk8p89os.roa
Signing time: Tue 09 Jul 2024 11:18:34 +0000
ROA not before: Tue 09 Jul 2024 11:18:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39591
IP address blocks: 185.117.226.0/24 maxlen: 24
185.133.88.0/22 maxlen: 22
185.133.88.0/24 maxlen: 24
188.116.45.0/24 maxlen: 24
212.11.88.0/22 maxlen: 22
2a10:7180::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:37:7c:65:6c:8b:9d:bc:80:3e:b7:4a:d8:74:5b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5c340ee5b9daf1a6818f0df407fa5975886b10f
Validity
Not Before: Jul 9 11:18:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=178a2ef9738172d6f37ec4e794252a93ca7cf68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:92:8c:f5:a0:4a:ec:75:f4:f3:8f:4f:e9:c9:
be:9d:35:02:2e:f5:f8:60:15:14:ff:b0:9f:cb:97:
44:21:ed:0f:f1:ae:74:5c:63:d8:d7:b5:de:75:a1:
03:95:9b:98:db:1b:25:f5:ba:5e:8b:0a:79:18:8a:
07:58:56:e9:6f:76:aa:36:3c:35:55:4e:3a:a3:9d:
9b:ef:e5:7d:03:bb:52:54:62:00:cd:d5:de:a7:1d:
8a:6c:31:e9:da:89:7e:1a:2d:c8:2c:28:9f:88:ca:
c7:2e:f9:a9:e0:c3:81:2e:9c:8a:30:43:b1:f3:6e:
15:21:78:c4:8d:5f:d4:04:27:6f:aa:d1:f2:08:98:
e1:94:52:11:75:a0:54:55:27:96:7d:47:03:b2:7a:
95:de:6a:d1:ce:1a:59:16:db:96:37:c7:85:17:05:
f0:9b:4c:fd:e5:e2:9e:94:1a:dd:f3:ac:f8:2a:7b:
df:19:51:36:2e:64:fe:65:16:1f:20:aa:8b:db:14:
46:d4:d6:95:9b:40:e6:ff:8a:c7:0e:29:8a:62:ab:
4b:11:a8:a4:a9:50:7d:bd:aa:c0:b5:c0:98:0e:a3:
0b:72:28:ae:86:12:26:e8:01:65:66:d5:62:59:cb:
15:3c:ba:56:ef:24:0f:35:4a:17:ef:4b:16:4b:70:
cd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8A:2E:F9:73:81:72:D6:F3:7E:C4:E7:94:25:2A:93:CA:7C:F6:8B
X509v3 Authority Key Identifier:
keyid:E5:C3:40:EE:5B:9D:AF:1A:68:18:F0:DF:40:7F:A5:97:58:86:B1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cNA7ludrxpoGPDfQH-ll1iGsQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/F4ou-XOBctbzfsTnlCUqk8p89os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d5104c-f64a-44ca-a37b-6e1f2f6851cf/1/5cNA7ludrxpoGPDfQH-ll1iGsQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.226.0/24
185.133.88.0/22
188.116.45.0/24
212.11.88.0/22
IPv6:
2a10:7180::/29
Signature Algorithm: sha256WithRSAEncryption
37:ef:9c:81:86:6e:01:7b:87:8a:16:a3:71:e2:09:9b:80:34:
39:af:99:6b:c5:60:10:fa:ae:e5:9c:39:48:9c:d7:3a:59:42:
6c:7a:ce:22:f7:b5:19:32:30:4b:15:fa:29:5f:ed:40:8d:4e:
51:2d:a9:c0:97:ff:bd:1b:dd:1d:41:89:1a:3e:df:88:00:1b:
9c:84:7c:ac:42:2a:28:f2:dc:d2:46:22:c7:d9:f9:17:b0:f3:
57:62:df:c6:50:e9:a6:82:ab:86:98:10:7e:fa:55:83:40:51:
f6:4f:24:ff:c9:bd:ae:5a:f0:ef:fd:e4:06:b3:b3:af:a8:f6:
0e:17:0f:a0:4f:36:ff:8a:7d:a5:ef:ef:08:4d:50:ed:da:13:
50:83:3c:4c:2c:ff:77:70:21:a4:02:33:96:95:b8:60:ab:cd:
08:27:2c:d6:82:f6:08:f2:56:c7:f6:68:54:67:9a:40:8f:93:
56:e7:c3:25:03:0a:58:e8:07:26:bd:d8:7f:a2:5f:a7:6d:50:
24:65:9b:9a:60:b3:c2:ed:1d:8f:45:59:37:84:58:dc:58:47:
cc:69:d0:1f:04:2a:a4:ed:57:d7:ea:50:ea:2f:99:d0:cc:20:
ed:85:e4:6a:ce:63:41:5f:64:2d:63:d6:80:0a:af:33:88:d9:
40:38:04:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 17:32:04 2024 by rpki-client on console-fra.rpki-client.org