Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BNx5V8VI-ijyMj_wNcxLOXFFKYs.roa
File: BNx5V8VI-ijyMj_wNcxLOXFFKYs.roa (raw, json)
Hash identifier: cEEmR262TupTdyGNIotFjxFB4tn0lHP+ng0+LVAEeTo=
Subject key identifier: 04:DC:79:57:C5:48:FA:28:F2:32:3F:F0:35:CC:4B:39:71:45:29:8B
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 018FBE3DA79426CA950334DC638CFD47224A
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BNx5V8VI-ijyMj_wNcxLOXFFKYs.roa
Signing time: Tue 28 May 2024 08:07:42 +0000
ROA not before: Tue 28 May 2024 08:07:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5504
IP address blocks: 82.114.32.0/19 maxlen: 22
82.114.51.0/24 maxlen: 24
194.30.128.0/23 maxlen: 23
194.30.130.0/24 maxlen: 24
194.30.131.0/24 maxlen: 24
194.30.132.0/23 maxlen: 23
194.30.134.0/24 maxlen: 24
194.30.135.0/24 maxlen: 24
194.30.136.0/22 maxlen: 22
194.30.140.0/23 maxlen: 23
194.30.143.0/24 maxlen: 24
194.30.144.0/23 maxlen: 23
194.30.146.0/23 maxlen: 23
194.30.148.0/22 maxlen: 22
194.30.152.0/23 maxlen: 23
194.30.154.0/23 maxlen: 23
194.30.156.0/23 maxlen: 23
213.169.128.0/20 maxlen: 20
213.169.128.0/21 maxlen: 24
213.169.136.0/22 maxlen: 24
213.169.140.0/22 maxlen: 22
213.169.144.0/22 maxlen: 22
213.169.152.0/23 maxlen: 23
213.169.157.0/24 maxlen: 24
213.169.158.0/23 maxlen: 23
2a01:6700::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.mft
rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:3d:a7:94:26:ca:95:03:34:dc:63:8c:fd:47:22:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: May 28 08:07:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04dc7957c548fa28f2323ff035cc4b397145298b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bc:9b:2f:6c:3f:f2:f0:a2:6a:16:30:bf:66:
00:38:74:ce:cc:b0:8e:71:ea:85:3f:2b:05:17:6a:
0d:4c:36:fb:88:7b:a5:93:a8:7c:ca:f7:f3:4a:6d:
d4:19:48:53:dc:08:05:cd:fc:16:c0:32:8c:46:27:
0a:01:50:37:f1:1a:19:a4:fc:f6:27:96:0b:2a:b0:
66:c4:dc:27:cb:1d:ce:ac:f7:0f:7a:c7:77:5e:cf:
4f:de:c4:7f:7d:3e:3a:a7:34:13:bf:91:dc:47:7f:
52:db:fe:3e:e0:f8:39:d3:be:7c:5a:c2:8f:a3:2c:
96:62:ad:9f:a1:75:a1:25:c3:e0:0d:0d:20:0f:84:
c2:0b:b7:f6:c0:c7:3f:14:71:87:25:dc:3b:0a:c5:
15:a6:09:6e:93:87:8f:14:d8:06:8f:87:6b:bb:50:
94:db:63:fc:12:f1:14:96:49:08:24:0d:72:d9:0b:
5c:57:ea:5b:49:93:03:92:cc:64:e5:15:ea:c4:03:
58:07:a0:fc:a8:8e:db:dc:a9:97:db:4c:97:d1:82:
b1:87:19:13:f6:ca:4e:47:2b:f8:e5:88:67:97:5b:
ce:c0:4d:9c:5d:2c:bb:11:9f:3b:80:38:03:31:bd:
fa:c2:e9:9f:75:c7:fd:a5:39:f1:59:a7:b2:b9:ae:
21:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DC:79:57:C5:48:FA:28:F2:32:3F:F0:35:CC:4B:39:71:45:29:8B
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/BNx5V8VI-ijyMj_wNcxLOXFFKYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.32.0/19
194.30.128.0-194.30.141.255
194.30.143.0-194.30.157.255
213.169.128.0-213.169.147.255
213.169.152.0/23
213.169.157.0-213.169.159.255
IPv6:
2a01:6700::/32
Signature Algorithm: sha256WithRSAEncryption
63:ca:d4:a8:b4:1f:0b:92:77:c2:66:b1:ff:c6:e1:b4:9a:f9:
a6:53:11:f3:84:9e:30:16:e7:ab:ee:fd:9a:68:02:68:f1:75:
52:16:f7:bf:e8:57:89:89:9a:2f:d3:90:8b:0e:e4:58:04:a6:
70:33:54:88:fe:3a:a6:99:8d:01:09:b1:3a:24:b0:4b:d5:fb:
31:0a:a7:f4:c3:cd:c5:af:78:ce:58:76:49:21:2e:8e:73:81:
63:e7:5c:14:76:d0:e1:4a:28:b6:6e:75:e1:ad:63:45:b8:cc:
7c:e2:21:41:d8:98:3a:1c:e0:7a:d0:e8:f9:19:4d:11:f5:d2:
94:c0:05:6e:42:c2:90:c1:2b:c7:d8:b7:94:e0:b2:ce:39:56:
b7:ff:37:01:b7:3b:a2:c7:09:e6:8d:86:dc:0b:3c:74:2f:aa:
14:75:8d:54:84:e4:29:cd:d0:82:02:2b:af:a4:b1:88:5c:c5:
e3:79:fd:e1:eb:dd:40:dd:76:e8:e8:26:d3:df:b5:9c:7e:06:
71:d8:f5:f4:34:82:6c:1b:12:48:56:92:88:e1:1f:15:b8:8a:
21:22:08:23:f3:a8:6c:7f:a4:48:03:bb:3d:62:d1:aa:c6:3c:
7e:a2:d2:00:8d:80:d9:e3:94:e9:3d:18:a3:fb:c6:ea:21:cf:
7e:2f:ac:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 12:04:16 2024 by rpki-client on console-fra.rpki-client.org