Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/pqgOUb_2P-q9_-3QAvcNVJ5KH18.roa
File: pqgOUb_2P-q9_-3QAvcNVJ5KH18.roa (raw, json)
Hash identifier: GaGHxc88nHP/v/zseeIMvtRzR4g0kIGh5syZmVq4dz4=
Subject key identifier: A6:A8:0E:51:BF:F6:3F:EA:BD:FF:ED:D0:02:F7:0D:54:9E:4A:1F:5F
Certificate issuer: /CN=b328fe258a1b9bf6148a6ce0e8a712f18840904c
Certificate serial: 018FAC9B30CFC65D58D07B85613ECEEE46E4
Authority key identifier: B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/pqgOUb_2P-q9_-3QAvcNVJ5KH18.roa
Signing time: Fri 24 May 2024 21:56:42 +0000
ROA not before: Fri 24 May 2024 21:56:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25459
IP address blocks: 83.172.128.0/21 maxlen: 21
83.172.136.0/24 maxlen: 24
83.172.138.0/23 maxlen: 23
83.172.150.0/23 maxlen: 23
83.172.153.0/24 maxlen: 24
83.172.159.0/24 maxlen: 24
83.172.160.0/22 maxlen: 22
83.172.164.0/23 maxlen: 23
83.172.169.0/24 maxlen: 24
83.172.180.0/22 maxlen: 22
83.172.188.0/23 maxlen: 23
2a02:cec0::/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 18:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ac:9b:30:cf:c6:5d:58:d0:7b:85:61:3e:ce:ee:46:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b328fe258a1b9bf6148a6ce0e8a712f18840904c
Validity
Not Before: May 24 21:56:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6a80e51bff63feabdffedd002f70d549e4a1f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ca:f1:b9:62:8f:fe:8d:24:9b:93:ce:1e:fa:
89:0e:dd:b4:26:be:0d:bd:2e:25:e9:b8:76:29:ae:
05:7c:31:75:e6:17:d8:fb:14:8b:b9:e1:1f:3f:86:
88:4b:65:a9:1f:29:53:41:3c:02:be:b1:5c:73:a2:
a9:71:cd:2f:bb:f1:69:9a:d9:cd:b3:79:da:77:15:
94:d7:5f:cf:20:35:af:d0:81:5a:75:2c:2a:fb:98:
36:e2:41:79:56:8d:27:1f:79:1d:08:f3:bf:a4:fe:
f3:fc:28:cf:1b:78:a7:eb:ef:91:4a:b8:f4:69:19:
5c:ce:5c:41:34:96:49:e6:24:c8:b9:8c:1d:43:1b:
73:81:3e:9b:ca:11:30:c4:fb:df:92:22:ab:54:62:
16:90:f3:52:1b:29:02:2e:12:07:e3:42:d4:88:83:
53:41:a5:45:91:ed:5c:ab:e7:d7:9a:7a:57:b9:fb:
82:46:9d:5b:d1:b7:58:f0:c5:dd:a6:b2:ad:e4:19:
9c:82:aa:f5:44:6c:d5:f5:0f:7d:60:49:75:dc:6f:
e3:1e:65:7b:d0:1e:13:d5:fa:56:ae:4d:b8:c2:bd:
fc:87:fa:64:ef:d9:26:1e:ee:96:05:bb:44:ad:6e:
9d:ae:3f:08:20:cb:18:04:e2:89:fd:9e:98:0a:d7:
68:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A8:0E:51:BF:F6:3F:EA:BD:FF:ED:D0:02:F7:0D:54:9E:4A:1F:5F
X509v3 Authority Key Identifier:
keyid:B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/pqgOUb_2P-q9_-3QAvcNVJ5KH18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.172.128.0-83.172.136.255
83.172.138.0/23
83.172.150.0/23
83.172.153.0/24
83.172.159.0-83.172.165.255
83.172.169.0/24
83.172.180.0/22
83.172.188.0/23
IPv6:
2a02:cec0::/30
Signature Algorithm: sha256WithRSAEncryption
18:00:9b:0a:c0:c3:89:cc:d9:54:d5:ec:95:93:1d:f8:e0:20:
40:04:bb:2a:df:a8:78:a2:81:2b:2d:7e:3d:00:e6:96:32:fb:
28:5d:42:7c:cd:e5:4a:97:20:5b:36:05:c7:f7:17:cd:e8:f8:
2f:32:d8:bf:a9:db:68:5f:61:59:fa:a6:ce:07:d5:ca:02:e6:
f5:15:9f:ce:2f:33:64:4d:8c:11:13:07:0a:bd:bc:46:b9:38:
c0:8b:cd:72:2e:4c:91:cb:5d:a9:e7:ed:5c:f3:50:53:45:d5:
f5:8e:6b:66:f0:8f:0d:f9:8b:5f:2c:dd:d4:3e:1c:24:50:4b:
b2:c8:32:72:af:e5:85:be:5a:2a:49:7f:c5:49:5b:93:3b:79:
8e:c1:34:4b:cb:ff:df:7d:70:51:e5:4a:d2:02:08:ec:61:ff:
3b:d1:2a:9e:80:d0:28:21:af:7b:91:c6:c3:83:40:b9:4b:2f:
19:c5:0e:cb:cc:7b:19:39:f2:15:8c:37:a8:8d:12:50:51:19:
a9:ef:92:50:45:e3:fd:48:a3:a1:cd:c2:97:99:57:cc:cd:f5:
26:4e:c3:ab:a3:03:d5:93:9f:15:b3:e8:ec:ed:c6:db:3d:af:
36:81:c7:e4:54:17:e7:f6:c4:7c:e6:45:75:35:b3:9c:65:a1:
d6:12:00:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:08:40 2024 by rpki-client on console-fra.rpki-client.org