Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/dcaRlHudgUViFTwmd59vINBeYFs.roa
File: dcaRlHudgUViFTwmd59vINBeYFs.roa (raw, json)
Hash identifier: us445nuGdDpkuB9x/M4LBfNylrABu8IA+yYI/wXpg0M=
Subject key identifier: 75:C6:91:94:7B:9D:81:45:62:15:3C:26:77:9F:6F:20:D0:5E:60:5B
Certificate issuer: /CN=9fb4a8b93af9ea9cf18aaca4e73f116ec26eb357
Certificate serial: 0191925FE06FE93EE53833B9091FC20030C0
Authority key identifier: 9F:B4:A8:B9:3A:F9:EA:9C:F1:8A:AC:A4:E7:3F:11:6E:C2:6E:B3:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7SouTr56pzxiqyk5z8RbsJus1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/dcaRlHudgUViFTwmd59vINBeYFs.roa
Signing time: Tue 27 Aug 2024 05:47:22 +0000
ROA not before: Tue 27 Aug 2024 05:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43060
IP address blocks: 91.196.76.0/23 maxlen: 24
94.158.48.0/20 maxlen: 20
94.158.48.0/21 maxlen: 21
94.158.56.0/24 maxlen: 24
94.158.57.0/24 maxlen: 24
94.158.58.0/24 maxlen: 24
94.158.59.0/24 maxlen: 24
94.158.60.0/24 maxlen: 24
94.158.61.0/24 maxlen: 24
94.158.62.0/24 maxlen: 24
94.158.63.0/24 maxlen: 24
185.196.216.0/22 maxlen: 22
2a04:1b80::/32 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/n7SouTr56pzxiqyk5z8RbsJus1c.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/n7SouTr56pzxiqyk5z8RbsJus1c.mft
rsync://rpki.ripe.net/repository/DEFAULT/n7SouTr56pzxiqyk5z8RbsJus1c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:5f:e0:6f:e9:3e:e5:38:33:b9:09:1f:c2:00:30:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb4a8b93af9ea9cf18aaca4e73f116ec26eb357
Validity
Not Before: Aug 27 05:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75c691947b9d814562153c26779f6f20d05e605b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:d0:b0:fc:1a:5a:46:7d:e8:d2:e6:21:97:
1c:16:e8:5a:90:4d:fb:d3:04:3c:ba:ee:8e:4f:7e:
60:99:56:31:f6:f4:32:4b:fc:be:60:a1:d5:f9:9d:
e6:48:e6:c6:a4:83:e8:53:32:d3:c1:0e:09:7b:aa:
d7:83:eb:2f:8a:f7:bf:33:5f:6a:57:7a:41:01:2d:
61:61:00:dd:3a:85:d1:11:45:7d:02:81:e1:f5:f1:
58:64:3b:b0:6e:83:5c:d6:47:88:2d:5c:9b:c8:2a:
b0:b4:d4:06:35:cd:19:36:c9:a2:79:16:c0:06:40:
26:01:af:61:cf:db:fa:aa:08:0c:fa:22:32:62:3c:
94:37:c0:ed:ff:61:c7:71:06:a6:1f:27:55:06:2b:
8f:8f:67:8f:26:53:d8:b4:97:6e:4b:a7:ca:ed:15:
ef:6f:6c:33:6b:13:28:90:5f:a5:c9:14:49:05:6e:
8d:c6:ab:f6:84:b8:62:29:4c:fd:6e:a9:b1:ed:0c:
f6:bc:b2:9a:94:5b:0c:cd:2b:d4:4b:e0:9d:a2:e1:
23:f1:88:d0:ed:32:b7:bf:ec:e5:d2:15:ff:32:27:
c5:f0:ae:5b:8e:19:39:f7:47:c0:a2:a2:88:f6:af:
ea:f9:5d:b0:95:e7:a9:2e:32:3d:a7:f7:af:36:74:
43:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C6:91:94:7B:9D:81:45:62:15:3C:26:77:9F:6F:20:D0:5E:60:5B
X509v3 Authority Key Identifier:
keyid:9F:B4:A8:B9:3A:F9:EA:9C:F1:8A:AC:A4:E7:3F:11:6E:C2:6E:B3:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7SouTr56pzxiqyk5z8RbsJus1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/dcaRlHudgUViFTwmd59vINBeYFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/n7SouTr56pzxiqyk5z8RbsJus1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.76.0/23
94.158.48.0/20
185.196.216.0/22
IPv6:
2a04:1b80::/32
Signature Algorithm: sha256WithRSAEncryption
02:43:77:19:07:18:b6:4d:ed:3c:8d:7f:1e:c3:09:31:8d:4d:
68:a1:a2:9e:9a:a8:79:7e:4b:0a:64:0f:44:a2:d1:98:4c:1f:
35:98:ea:63:8d:f6:9c:9c:0f:05:89:0d:ad:15:81:92:90:be:
8b:5e:54:15:c4:d3:bc:00:21:00:34:39:0a:95:82:5f:10:8b:
da:8f:86:12:8f:29:8d:ad:c6:fd:3a:f2:da:9c:0b:19:e0:da:
2d:30:e6:9a:0a:55:3d:a3:db:df:8a:88:c5:06:10:3a:56:8a:
d5:d8:67:fe:11:5d:d8:6b:3b:ad:e1:9c:59:ca:fe:0a:fd:71:
d9:24:1d:f4:a7:05:6d:53:4c:c5:9a:2a:c3:54:71:7e:e3:dd:
5b:59:4e:29:7f:85:25:77:9b:95:6b:c4:2e:7c:05:d8:5e:72:
b1:b6:41:d7:6c:53:eb:ea:d4:cd:fb:bf:fa:1f:2d:43:61:21:
59:4b:30:3e:e2:8c:f1:1a:da:d0:a0:c3:66:28:35:e6:1b:9c:
1b:73:28:15:2f:0e:00:83:80:d9:18:6b:69:08:e4:9e:3e:9b:
53:32:78:81:01:49:e4:b8:60:2f:09:fb:55:0d:7d:bb:68:e0:
89:4a:3b:74:91:08:c4:a2:41:be:b0:b2:33:eb:09:2e:84:e4:
b4:80:0a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 12:42:55 2024 by rpki-client on console-ams.rpki-client.org