Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/__-H-_RwnZS4KDdmaqt3Sf8DDZs.roa
File: __-H-_RwnZS4KDdmaqt3Sf8DDZs.roa (raw, json)
Hash identifier: CjUCz+HlzFD0E1FeO4hlMES2YrGglPGP35qjwUFX33U=
Subject key identifier: FF:FF:87:FB:F4:70:9D:94:B8:28:37:66:6A:AB:77:49:FF:03:0D:9B
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018DCCC60E279C59700387D0B0A64C52A8EC
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/__-H-_RwnZS4KDdmaqt3Sf8DDZs.roa
Signing time: Wed 21 Feb 2024 17:45:48 +0000
ROA not before: Wed 21 Feb 2024 17:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.93.82.0/24 maxlen: 24
45.131.51.0/24 maxlen: 24
80.64.24.0/24 maxlen: 24
80.64.25.0/24 maxlen: 24
80.64.27.0/24 maxlen: 24
80.64.29.0/24 maxlen: 24
91.217.125.0/24 maxlen: 24
185.210.136.0/24 maxlen: 24
188.64.162.0/24 maxlen: 24
213.139.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cc:c6:0e:27:9c:59:70:03:87:d0:b0:a6:4c:52:a8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Feb 21 17:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffff87fbf4709d94b82837666aab7749ff030d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:63:b8:0b:a4:fc:a6:99:d8:ba:6b:39:76:26:
09:e8:c6:95:bd:e7:c6:6d:75:f5:58:45:bf:b0:74:
70:3a:69:77:fb:f9:57:e4:59:dd:ce:42:ec:87:98:
76:76:b3:b0:19:eb:97:43:e8:5d:15:9a:dd:b4:ec:
b0:6a:7f:7c:bc:7e:64:51:ed:d9:b6:70:56:39:f3:
07:41:0a:62:92:f5:c8:fe:8b:23:b5:33:22:5b:dd:
32:8b:ac:07:16:a8:b8:28:f5:d4:32:bd:23:10:9e:
a4:be:dc:6c:bc:e5:dc:76:c6:e7:9e:15:f0:e3:06:
e5:e6:12:e2:b3:c2:44:ce:a0:1e:2d:0d:b5:e9:7e:
ad:0b:89:c6:d2:7d:9e:d8:d1:e0:75:4c:8e:6e:ac:
a7:14:8a:9e:6e:8d:62:27:ff:48:37:dd:b0:71:53:
b9:34:a9:96:b1:71:37:9a:93:b3:e0:7d:d0:95:da:
9f:d3:51:04:a6:bd:23:16:34:8a:64:56:e9:59:c6:
b9:64:82:a7:7f:76:37:08:b2:36:c2:cb:f1:95:0c:
9f:8c:2c:69:7b:e3:47:85:bf:03:41:b0:a7:6a:c3:
05:70:d3:81:16:5c:60:9e:f2:a5:70:af:08:12:65:
ac:a3:46:0c:fd:cc:2c:91:1e:a0:02:45:47:79:b1:
cb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FF:87:FB:F4:70:9D:94:B8:28:37:66:6A:AB:77:49:FF:03:0D:9B
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/__-H-_RwnZS4KDdmaqt3Sf8DDZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.82.0/24
45.131.51.0/24
80.64.24.0/23
80.64.27.0/24
80.64.29.0/24
91.217.125.0/24
185.210.136.0/24
188.64.162.0/24
213.139.202.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:68:c6:c5:82:94:b1:3c:cc:4b:40:65:97:c1:f3:88:bc:38:
fe:23:dd:58:c1:5f:40:66:bf:df:b1:2f:8f:83:f4:92:35:3d:
a0:89:89:89:6e:19:0a:64:aa:d9:2b:62:75:d1:b2:bc:e1:5c:
75:c5:b7:92:57:b1:db:4c:54:6b:29:f7:79:b6:ea:49:32:ce:
c6:a4:df:85:6b:2d:25:09:7d:0f:fd:e7:ef:5f:aa:26:47:68:
a8:be:e5:15:07:19:3c:f1:de:bb:df:76:db:d3:06:62:24:87:
7e:92:b3:94:0f:f3:e1:e9:5c:ef:b1:57:d2:b8:d9:a4:8c:a4:
21:e5:46:5c:75:4d:e4:9f:c1:0a:2a:c8:87:b2:f4:65:73:2b:
c2:38:f5:12:6c:67:1d:18:e4:4f:08:4f:d5:06:86:fb:b7:99:
26:c9:87:49:0a:5f:58:08:af:25:34:ec:65:d9:ae:bd:df:03:
0b:88:71:19:a0:0f:ce:58:ae:70:e0:14:0e:54:33:3c:57:92:
c5:3c:7c:09:c1:e0:b1:b2:f6:7b:7b:75:40:a4:41:50:39:a4:
89:01:71:42:46:6a:96:45:27:4f:cc:58:c6:0e:55:a2:ec:5a:
67:3d:b6:76:09:42:44:fa:bb:13:3a:c3:78:e9:82:e7:39:41:
97:10:df:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 13:56:50 2024 by rpki-client on console-ams.rpki-client.org