Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/7pLzk_-fe02tyCq7I0UXJpZT0ac.roa
File: 7pLzk_-fe02tyCq7I0UXJpZT0ac.roa (raw, json)
Hash identifier: rizA2dpR8L0tC/RBpZoe0aJfPS43CTxgZY5C6xxxcCg=
Subject key identifier: EE:92:F3:93:FF:9F:7B:4D:AD:C8:2A:BB:23:45:17:26:96:53:D1:A7
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 018D1CE95C2EC995C6A4AAF31744EFD9FD90
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/7pLzk_-fe02tyCq7I0UXJpZT0ac.roa
Signing time: Thu 18 Jan 2024 14:11:11 +0000
ROA not before: Thu 18 Jan 2024 14:11:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43350
IP address blocks: 107.181.137.0/24 maxlen: 24
162.220.246.0/23 maxlen: 24
185.53.128.0/24 maxlen: 24
185.53.129.0/24 maxlen: 24
185.53.130.0/24 maxlen: 24
185.53.131.0/24 maxlen: 24
185.83.216.0/24 maxlen: 24
185.83.217.0/24 maxlen: 24
185.83.218.0/24 maxlen: 24
185.83.219.0/24 maxlen: 24
198.105.112.0/24 maxlen: 24
198.105.113.0/24 maxlen: 24
198.105.114.0/23 maxlen: 24
198.105.118.0/23 maxlen: 24
2a02:2ca0::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:e9:5c:2e:c9:95:c6:a4:aa:f3:17:44:ef:d9:fd:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 18 14:11:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee92f393ff9f7b4dadc82abb234517269653d1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3a:24:ef:bf:d6:e1:69:e5:64:4e:37:69:15:
6f:6f:5a:d9:2c:bf:6a:e8:5e:b1:00:ce:c5:1e:c6:
9a:78:6e:7c:8b:a8:c3:fd:1e:b9:f5:e8:3a:d1:86:
61:74:da:f1:04:9c:0b:8c:39:b8:d6:b7:f3:8c:7b:
ca:e4:05:ad:70:7d:a6:5d:c8:76:3c:37:67:c5:be:
6a:26:28:17:b8:f9:31:fc:8e:49:b9:6d:fd:47:7c:
64:5c:d4:be:0a:a6:b8:6d:85:21:33:91:75:a4:4b:
2a:e1:71:ce:cf:17:2e:44:b6:79:ae:28:32:d7:c8:
16:95:ce:29:09:f6:21:32:d7:69:a7:33:58:6a:c3:
6f:e3:01:78:07:4f:e1:35:fa:4a:7f:30:ef:a8:09:
56:9a:4d:45:0e:ca:89:54:47:99:7e:66:5b:b2:f1:
2e:93:32:15:04:21:78:85:0c:8e:ed:0d:07:04:3e:
61:75:45:1f:28:0b:03:07:ed:d1:e8:fa:09:73:7b:
0f:9b:14:79:00:86:0c:d2:3c:d3:9a:7b:0e:3a:50:
c8:9c:cb:68:12:4c:02:f8:a3:d2:f8:bc:5f:48:63:
8e:57:3a:57:bf:35:e8:df:73:20:aa:23:f8:f0:a4:
6c:be:a9:90:4b:65:9a:59:51:d2:82:62:b8:f2:db:
be:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:92:F3:93:FF:9F:7B:4D:AD:C8:2A:BB:23:45:17:26:96:53:D1:A7
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/7pLzk_-fe02tyCq7I0UXJpZT0ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.137.0/24
162.220.246.0/23
185.53.128.0/22
185.83.216.0/22
198.105.112.0/22
198.105.118.0/23
IPv6:
2a02:2ca0::/29
Signature Algorithm: sha256WithRSAEncryption
82:e8:2b:4e:ca:d7:cf:21:ed:e1:f1:cf:10:2e:9e:2a:91:04:
78:2a:c9:77:d2:02:e1:e3:82:dd:5b:76:eb:80:2e:3c:11:d8:
79:33:39:e5:9c:6f:07:b3:71:62:c6:97:2c:a0:1e:21:4f:c1:
6c:ec:98:10:06:ba:c6:df:90:f3:57:e3:e9:19:b6:aa:58:e2:
86:aa:32:21:fa:9a:fd:6f:86:2d:c3:c3:0d:e0:ce:6c:0d:3d:
48:f9:d1:00:15:5a:19:f7:6f:e7:f5:e3:73:82:1d:13:b2:12:
79:ee:a1:08:22:26:b8:2d:be:a8:89:3a:8e:81:3f:2f:14:ee:
f8:b4:17:41:2b:9f:70:f4:17:82:19:75:ec:ce:56:99:af:5e:
d0:e4:cb:7f:77:61:70:b3:57:ca:41:d6:f9:a7:1c:02:f7:ad:
cd:3b:d7:dd:76:44:eb:fd:56:0b:e9:9b:a7:84:9d:0e:cd:33:
2a:ec:26:d6:70:54:b2:c7:d5:4e:6c:85:e5:ec:a1:d9:0b:31:
a4:87:64:4c:8f:3f:78:27:d1:41:81:d3:aa:84:a7:62:8e:f0:
b3:a3:66:13:09:cb:78:75:b5:a8:1e:8f:23:fd:ee:8d:c7:f4:
39:ee:da:66:c7:36:ad:5f:e3:21:98:8d:e6:66:82:0f:99:41:
9c:af:17:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 20:02:24 2024 by rpki-client on console-ams.rpki-client.org