Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/coY9WsQ1ZUsyG9JjIJPq-xuKCOM.roa
File: coY9WsQ1ZUsyG9JjIJPq-xuKCOM.roa (raw, json)
Hash identifier: nvfhQQEDtfddrm4gPtwzvrfowYg1En+RZDgMJuCrh04=
Subject key identifier: 72:86:3D:5A:C4:35:65:4B:32:1B:D2:63:20:93:EA:FB:1B:8A:08:E3
Certificate issuer: /CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Certificate serial: 018CC4939A86AE9449E7D0476504982821AE
Authority key identifier: B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/coY9WsQ1ZUsyG9JjIJPq-xuKCOM.roa
Signing time: Mon 01 Jan 2024 10:30:56 +0000
ROA not before: Mon 01 Jan 2024 10:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39707
IP address blocks: 213.234.31.0/24 maxlen: 24
213.234.25.0/24 maxlen: 24
213.234.26.0/24 maxlen: 24
213.234.29.0/24 maxlen: 24
213.234.30.0/24 maxlen: 24
213.234.27.0/24 maxlen: 24
213.234.28.0/24 maxlen: 24
92.39.98.0/24 maxlen: 24
92.39.96.0/24 maxlen: 24
92.39.97.0/24 maxlen: 24
92.39.103.0/24 maxlen: 24
92.39.99.0/24 maxlen: 24
92.39.101.0/24 maxlen: 24
92.39.102.0/24 maxlen: 24
92.39.100.0/24 maxlen: 24
213.234.23.0/24 maxlen: 24
213.234.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:03:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9a:86:ae:94:49:e7:d0:47:65:04:98:28:21:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Validity
Not Before: Jan 1 10:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72863d5ac435654b321bd2632093eafb1b8a08e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:02:40:66:b6:80:29:3f:13:e1:8a:64:15:
d8:8d:7d:60:6f:48:bb:a1:26:49:9b:3b:f1:df:da:
d6:07:1b:d2:83:59:c9:99:ed:f1:b7:35:5f:12:a1:
9c:80:56:4b:dd:a6:17:80:fa:d8:29:d6:9b:d6:4f:
2d:db:69:62:8b:c5:b0:9f:50:10:2d:b8:80:24:3e:
e3:8e:98:3b:01:01:4d:35:9f:aa:9a:96:a6:04:fa:
e7:ca:b8:63:de:2c:27:81:95:ef:17:4a:75:ab:b8:
c7:0d:f0:c6:d0:07:fd:f0:58:e1:33:54:39:8f:ce:
fc:d4:26:90:91:32:a6:9b:e2:e0:34:64:94:57:97:
03:7b:db:49:f3:42:7d:c5:85:da:46:59:53:8f:e7:
75:fe:8b:dc:ec:b9:89:8b:58:11:51:bd:00:f0:92:
4e:38:0c:f5:34:2a:05:ef:8e:ee:4e:f8:e3:66:7b:
f4:e6:32:c6:25:b3:89:1e:c8:fc:ae:2c:13:19:3c:
5d:2a:97:08:19:11:31:00:13:38:5d:36:54:97:93:
27:97:2f:4e:ab:88:45:b7:14:f2:a8:74:f3:8b:6c:
d5:76:ef:76:a5:6d:6f:68:15:7e:7f:15:9e:e0:9f:
15:0f:9f:59:cc:cb:f8:00:47:4a:da:6d:c5:a1:e0:
e8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:86:3D:5A:C4:35:65:4B:32:1B:D2:63:20:93:EA:FB:1B:8A:08:E3
X509v3 Authority Key Identifier:
keyid:B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/coY9WsQ1ZUsyG9JjIJPq-xuKCOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.96.0/21
213.234.23.0-213.234.31.255
Signature Algorithm: sha256WithRSAEncryption
53:ec:87:14:2f:aa:29:ec:57:4a:95:7f:d1:38:21:dd:e3:49:
ce:1e:18:ca:10:06:bf:48:2c:77:3d:6b:b9:ac:68:4f:d5:93:
97:17:13:a7:c2:22:15:f7:7f:2a:27:e5:d9:e2:9b:3a:d6:01:
b0:ac:63:0d:6b:f0:9f:43:7c:ae:8e:86:23:1c:6e:00:cc:52:
5c:34:5d:f5:b1:01:f3:78:95:5e:0b:21:4c:83:44:fe:9e:cb:
b1:b7:f8:2d:be:e3:f1:46:6b:eb:eb:b6:5c:26:c6:20:42:b7:
e7:21:2c:37:be:eb:2c:95:50:cb:21:94:67:db:ca:60:d3:16:
e7:c7:d9:f4:45:b0:04:32:49:ca:9e:f8:49:fb:4b:83:83:b3:
6e:87:9e:b1:de:78:7c:83:b1:26:07:68:2e:3b:4f:04:15:63:
34:a6:a5:01:25:9a:74:95:a2:1f:22:d2:5e:b1:53:23:94:d5:
5b:57:71:7a:be:da:c6:33:0a:47:40:5a:5d:0a:f8:cb:9c:20:
88:0b:13:44:c6:35:c8:0b:29:33:c0:fd:72:c2:3c:92:68:54:
6f:71:ef:17:ad:a7:60:91:75:59:ad:04:22:a7:42:25:19:b8:
84:18:58:c7:14:d5:71:ed:37:47:48:e9:be:4b:a4:78:22:8e:
a8:c3:81:22
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jun 23 17:43:19 2024 by rpki-client on console-ams.rpki-client.org