Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/5f9GMf4uXiCXWwIClgpXzVQlPB8.roa
File: 5f9GMf4uXiCXWwIClgpXzVQlPB8.roa (raw, json)
Hash identifier: UtmpSWy30/xE++xmBMH0H8yrmbj+FNyf297Kbq1AaXQ=
Subject key identifier: E5:FF:46:31:FE:2E:5E:20:97:5B:02:02:96:0A:57:CD:54:25:3C:1F
Certificate issuer: /CN=b7f6c33bfb9d94bd0f74a738e7f16d0e9da0c3b9
Certificate serial: 018CC79542E92195C642E2500FA205B183BA
Authority key identifier: B7:F6:C3:3B:FB:9D:94:BD:0F:74:A7:38:E7:F1:6D:0E:9D:A0:C3:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t_bDO_udlL0PdKc45_FtDp2gw7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/5f9GMf4uXiCXWwIClgpXzVQlPB8.roa
Signing time: Tue 02 Jan 2024 00:31:37 +0000
ROA not before: Tue 02 Jan 2024 00:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202913
IP address blocks: 185.130.144.0/24 maxlen: 24
185.130.145.0/24 maxlen: 24
185.130.144.0/22 maxlen: 22
185.130.144.0/23 maxlen: 23
185.130.146.0/24 maxlen: 24
185.130.146.0/23 maxlen: 23
185.130.147.0/24 maxlen: 24
80.78.131.0/24 maxlen: 24
80.78.130.0/23 maxlen: 23
80.78.128.0/22 maxlen: 22
80.78.128.0/23 maxlen: 23
80.78.128.0/24 maxlen: 24
80.78.129.0/24 maxlen: 24
80.78.130.0/24 maxlen: 24
45.148.196.0/24 maxlen: 24
45.148.197.0/24 maxlen: 24
45.148.198.0/23 maxlen: 23
45.148.198.0/24 maxlen: 24
45.148.199.0/24 maxlen: 24
45.148.196.0/23 maxlen: 23
45.148.196.0/22 maxlen: 22
45.148.199.0/25 maxlen: 25
45.148.199.128/25 maxlen: 25
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/t_bDO_udlL0PdKc45_FtDp2gw7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/t_bDO_udlL0PdKc45_FtDp2gw7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/t_bDO_udlL0PdKc45_FtDp2gw7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:42:e9:21:95:c6:42:e2:50:0f:a2:05:b1:83:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7f6c33bfb9d94bd0f74a738e7f16d0e9da0c3b9
Validity
Not Before: Jan 2 00:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5ff4631fe2e5e20975b0202960a57cd54253c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7c:a5:f3:56:23:73:a1:d1:ad:52:b1:91:8a:
0e:6f:af:e0:f2:5b:55:26:19:f1:73:5e:db:a0:01:
60:83:88:34:a6:8e:56:d6:23:d1:72:b8:32:fc:cc:
e9:5e:c8:0a:d0:86:61:94:1e:d4:99:69:83:ee:c0:
d4:cd:92:bc:6b:4d:6b:c9:0a:eb:96:d3:08:11:f4:
a0:29:42:c3:c4:2e:a0:f0:a8:57:b2:98:0e:1c:16:
65:97:aa:c3:b3:89:44:54:af:8f:af:c1:79:90:e0:
37:b0:72:c0:dc:3f:67:8b:d8:b4:22:dd:d8:76:f6:
0c:6a:01:51:08:fb:dd:b1:98:72:e2:2d:6b:d6:6d:
77:27:5a:c8:04:25:26:55:8e:d2:aa:59:d4:eb:10:
9e:75:ac:9c:37:4e:44:39:a7:a1:95:3b:40:e4:f2:
e8:6d:c8:d9:61:08:ba:c1:a7:d6:08:60:eb:2f:2e:
8a:0e:ce:92:7c:58:55:5e:1d:44:58:70:fb:6c:40:
9b:c1:53:a0:2b:1a:e3:83:73:8a:e8:90:a5:22:46:
1b:25:c0:ba:a1:c7:d3:db:1b:45:b3:75:79:87:7d:
44:bc:ba:56:24:48:bf:61:e8:f6:9e:dd:ee:a8:40:
2f:cd:7c:00:5d:6c:a1:d8:92:ca:16:df:07:b2:4d:
6f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FF:46:31:FE:2E:5E:20:97:5B:02:02:96:0A:57:CD:54:25:3C:1F
X509v3 Authority Key Identifier:
keyid:B7:F6:C3:3B:FB:9D:94:BD:0F:74:A7:38:E7:F1:6D:0E:9D:A0:C3:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t_bDO_udlL0PdKc45_FtDp2gw7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/5f9GMf4uXiCXWwIClgpXzVQlPB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e4d903-5baa-4341-9392-a3e481fb51b9/1/t_bDO_udlL0PdKc45_FtDp2gw7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.196.0/22
80.78.128.0/22
185.130.144.0/22
Signature Algorithm: sha256WithRSAEncryption
59:6b:55:33:0a:4a:be:57:fd:65:f1:6f:56:c9:93:b5:ac:d8:
af:e4:ac:db:a1:1c:62:20:93:3d:12:b4:de:31:93:e0:bd:0d:
69:e8:51:9d:eb:3f:89:f1:cd:08:c5:b8:ad:88:08:59:47:9c:
86:d8:86:f7:f2:11:2b:c5:e1:24:c3:49:38:1f:3a:27:e3:00:
2d:ad:03:41:37:5c:ae:b3:f2:1e:11:e0:e1:c4:fa:fe:ef:23:
c5:87:8f:69:d6:b8:7b:a2:d0:61:ce:85:0d:05:54:29:72:c4:
17:07:31:22:02:ee:11:56:dc:03:ae:83:a1:d3:97:73:4f:20:
fe:5f:0e:d8:0f:d4:3e:53:4a:5b:90:86:9d:de:a1:76:42:e2:
bf:0c:7a:be:73:6b:53:f0:f6:30:e1:53:df:23:21:7b:19:3f:
f8:ee:73:d1:ee:b4:c8:e8:c4:2d:88:ac:b4:00:b6:86:6a:49:
cc:8b:11:ef:40:d9:9e:13:ff:5d:bd:09:0c:0b:77:79:c9:19:
a2:5a:4e:0f:81:b8:29:67:83:d1:f1:8d:04:24:d9:f6:a0:3f:
41:a6:0d:6f:55:88:03:a4:17:6a:da:b2:3e:39:d1:f9:5f:6c:
1a:9b:b6:89:d7:56:43:8c:82:80:85:21:79:fd:8d:2c:d8:19:
2d:ac:34:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:31:50 2024 by rpki-client on console-fra.rpki-client.org