Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/yFiYLphu45jwe1sIFdn4kJg0b2E.roa
File: yFiYLphu45jwe1sIFdn4kJg0b2E.roa (raw, json)
Hash identifier: vghQOd/f3rCOQkP1Kz8AUdRHiCMzixuCZW7Yjho/kKI=
Subject key identifier: C8:58:98:2E:98:6E:E3:98:F0:7B:5B:08:15:D9:F8:90:98:34:6F:61
Certificate issuer: /CN=2e5664e02936cb5b5454d595c5382b7e7a0c7944
Certificate serial: 018E41312B19DF14AA374B4AA6C427D5955A
Authority key identifier: 2E:56:64:E0:29:36:CB:5B:54:54:D5:95:C5:38:2B:7E:7A:0C:79:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/yFiYLphu45jwe1sIFdn4kJg0b2E.roa
Signing time: Fri 15 Mar 2024 08:18:45 +0000
ROA not before: Fri 15 Mar 2024 08:18:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34674
IP address blocks: 128.140.176.0/21 maxlen: 21
128.140.176.0/22 maxlen: 22
128.140.176.0/23 maxlen: 23
128.140.176.0/24 maxlen: 24
128.140.177.0/24 maxlen: 24
128.140.178.0/23 maxlen: 23
128.140.179.0/24 maxlen: 24
128.140.180.0/22 maxlen: 22
128.140.180.0/23 maxlen: 23
128.140.180.0/24 maxlen: 24
128.140.181.0/24 maxlen: 24
128.140.182.0/23 maxlen: 23
128.140.182.0/24 maxlen: 24
128.140.183.0/24 maxlen: 24
128.140.184.0/23 maxlen: 23
128.140.184.0/24 maxlen: 24
128.140.185.0/24 maxlen: 24
185.184.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 17:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:41:31:2b:19:df:14:aa:37:4b:4a:a6:c4:27:d5:95:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e5664e02936cb5b5454d595c5382b7e7a0c7944
Validity
Not Before: Mar 15 08:18:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c858982e986ee398f07b5b0815d9f89098346f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:60:57:98:1d:a3:60:44:79:62:99:c9:b8:f7:
02:c1:73:2b:70:74:2e:7b:d7:de:9f:10:88:66:62:
6e:c1:50:e9:15:3f:35:52:09:9f:37:1a:8b:31:81:
7b:f1:60:ec:fc:ec:ea:6e:5d:46:f0:6c:3a:ac:06:
29:d7:95:c6:ee:60:a0:0e:7d:d2:87:6f:5f:d3:53:
9d:d8:0d:61:8e:6c:3f:73:54:69:6b:7c:ad:b6:45:
ef:98:e8:16:08:22:02:11:87:8c:20:05:a5:b7:a7:
ab:0a:85:47:c4:a1:57:cf:ee:45:2b:b5:5c:4d:51:
60:98:97:04:2f:98:22:17:1a:ec:26:03:bd:f2:e4:
25:eb:6f:52:4d:35:f1:27:a8:d0:33:62:a3:7a:f7:
05:fb:e2:53:37:b9:c1:6f:33:29:bf:6b:ce:83:a8:
54:5c:84:5f:b7:86:3b:72:ab:db:3d:94:22:64:19:
96:ce:07:8a:50:0d:9c:8e:ae:d6:12:47:0f:5d:35:
41:31:a4:d8:84:ec:0a:89:a0:45:95:ff:aa:6f:41:
3a:1c:e2:f0:06:b9:36:b4:d4:95:59:43:96:cf:1c:
5c:6a:92:c9:ab:05:de:ed:bb:4a:f2:99:d9:98:a8:
54:81:ac:92:ab:4b:49:97:7c:e3:39:80:d1:e0:dc:
c5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:58:98:2E:98:6E:E3:98:F0:7B:5B:08:15:D9:F8:90:98:34:6F:61
X509v3 Authority Key Identifier:
keyid:2E:56:64:E0:29:36:CB:5B:54:54:D5:95:C5:38:2B:7E:7A:0C:79:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/yFiYLphu45jwe1sIFdn4kJg0b2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/27c919-ccce-46a9-84b3-ef81fca63029/1/LlZk4Ck2y1tUVNWVxTgrfnoMeUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.140.176.0-128.140.185.255
185.184.60.0/24
Signature Algorithm: sha256WithRSAEncryption
82:95:aa:5b:dc:eb:bd:7c:73:4c:37:9b:c0:58:14:d4:80:5d:
b6:40:00:b7:8e:f2:ff:ff:5a:99:73:32:0d:95:10:28:f6:a9:
50:0c:63:c5:c0:b7:cc:54:54:d7:90:67:eb:15:b1:ef:9c:2f:
a5:a8:70:00:4a:52:be:1e:2c:b5:b7:84:aa:d3:17:a1:07:c7:
5c:0f:6e:f2:b1:b2:72:d8:e5:08:77:aa:9a:06:d1:b5:e8:4a:
a3:9a:be:65:13:5d:cf:70:66:86:b9:29:a6:23:91:27:ba:a9:
a3:1a:15:9f:f9:59:e3:27:55:3a:38:ed:66:00:2d:7a:86:e7:
da:ef:11:1d:c7:c6:2f:56:5e:66:4f:a5:26:82:53:e7:eb:58:
52:01:6a:c3:4a:ad:ee:68:67:2a:79:d2:a3:ea:80:cf:26:56:
65:94:b9:40:53:a1:95:38:4b:a7:19:ea:61:96:0c:9d:25:6f:
0b:e3:bd:54:fb:18:56:85:c1:e9:69:4e:0e:7b:bb:76:f4:d1:
5e:f9:fd:09:19:0b:df:a4:76:4a:09:62:e6:13:0a:c6:2f:14:
17:14:cd:4f:09:3d:29:0f:77:ad:4e:bd:82:85:a2:57:81:e0:
f4:2b:a2:24:85:03:25:70:ef:db:cc:9b:8c:55:fc:2a:68:d7:
57:bb:fa:6a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jun 23 02:32:01 2024 by rpki-client on console-ams.rpki-client.org