Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Evt92uY2K7ugWfT45rZ22LPd8d4.roa
File: Evt92uY2K7ugWfT45rZ22LPd8d4.roa (raw, json)
Hash identifier: OR+AVL7h/JI3u7+Mpna3y7ssNSOmXsV4DLkJQuMWgJ4=
Subject key identifier: 12:FB:7D:DA:E6:36:2B:BB:A0:59:F4:F8:E6:B6:76:D8:B3:DD:F1:DE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018F7772891E8A4D010A1B7B1158F5855C8D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Evt92uY2K7ugWfT45rZ22LPd8d4.roa
Signing time: Tue 14 May 2024 14:12:25 +0000
ROA not before: Tue 14 May 2024 14:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 5.182.115.0/24 maxlen: 24
45.9.168.0/24 maxlen: 24
77.242.152.0/24 maxlen: 24
77.242.153.0/24 maxlen: 24
77.242.154.0/24 maxlen: 24
77.242.155.0/24 maxlen: 24
83.137.157.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
88.209.205.0/24 maxlen: 24
88.209.206.0/24 maxlen: 24
88.209.219.0/24 maxlen: 24
88.209.228.0/24 maxlen: 24
88.209.236.0/22 maxlen: 22
88.209.236.0/24 maxlen: 24
88.209.237.0/24 maxlen: 24
88.209.238.0/24 maxlen: 24
88.209.239.0/24 maxlen: 24
88.209.254.0/24 maxlen: 24
92.52.217.0/24 maxlen: 24
92.52.218.0/24 maxlen: 24
194.41.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 14:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:72:89:1e:8a:4d:01:0a:1b:7b:11:58:f5:85:5c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: May 14 14:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12fb7ddae6362bbba059f4f8e6b676d8b3ddf1de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:ed:67:dc:79:24:0d:d2:6e:78:b3:e4:90:
85:41:aa:67:3d:18:98:1d:a0:fe:dc:a1:74:8a:90:
76:ca:78:12:5a:1e:48:97:d6:cb:7f:38:f1:8e:81:
74:12:e5:f5:82:48:88:3e:31:e6:4c:33:d0:a5:e7:
e8:13:01:11:eb:33:d3:b6:03:58:d7:9a:81:8d:d7:
d1:7d:96:29:eb:db:44:82:eb:e8:7c:b6:dc:d9:34:
73:e3:72:9c:fc:89:ec:5e:a3:10:2a:df:a3:ad:f4:
c7:98:09:f1:42:f6:8d:a4:a4:ee:0c:6e:54:76:86:
be:c0:f4:ff:28:06:33:b1:d2:40:09:0c:0d:4f:8a:
ec:7c:4e:ac:ac:bb:98:21:06:7c:e4:80:ba:c0:9e:
9f:9d:5e:21:87:b9:64:14:b4:fb:9d:a3:3c:b7:30:
be:d7:71:a4:e1:d7:b5:cf:b4:c7:77:5f:60:dd:eb:
b4:20:57:82:93:8c:c4:17:79:8a:5d:24:c3:c6:2f:
11:b3:e6:2d:9d:7a:e9:d6:a3:c7:06:ce:e0:b6:73:
98:93:54:b7:31:44:5a:0e:e4:80:30:5b:f5:fd:5a:
80:0b:4f:43:bd:fd:4f:43:f4:2e:3c:4d:6d:3e:a2:
ac:33:2b:40:4d:ed:1f:c7:4e:59:73:74:a4:e3:07:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FB:7D:DA:E6:36:2B:BB:A0:59:F4:F8:E6:B6:76:D8:B3:DD:F1:DE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Evt92uY2K7ugWfT45rZ22LPd8d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.115.0/24
45.9.168.0/24
77.242.152.0/22
83.137.157.0-83.137.158.255
88.209.205.0-88.209.206.255
88.209.219.0/24
88.209.228.0/24
88.209.236.0/22
88.209.254.0/24
92.52.217.0-92.52.218.255
194.41.47.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:bb:ee:cd:ee:c9:2b:36:c1:2f:c7:cf:b6:a4:2f:f5:25:0b:
cc:2c:e7:17:00:13:bf:df:a4:c7:9f:6e:52:c4:2e:e8:f9:54:
d2:13:54:ef:77:08:81:84:e4:7e:07:63:b0:38:f5:25:4d:f1:
c8:13:a9:b7:89:c3:e3:aa:6e:a5:3e:45:5b:c7:26:8a:c6:e1:
96:17:bc:9d:98:dd:97:59:10:38:9e:80:2a:e1:5a:46:1e:ba:
35:32:f0:3e:d4:ee:a6:de:ca:e6:e2:17:f5:fb:b9:cb:be:00:
96:68:af:61:94:5c:31:40:6f:49:6f:6b:c9:cc:6f:52:d7:8d:
10:1e:a6:20:88:36:08:81:c0:8c:1f:27:79:8b:6e:ae:ce:91:
fa:71:6f:4f:12:d6:51:b6:4f:1a:ba:75:62:5f:7a:51:c6:07:
4d:af:57:5e:9e:53:1f:1d:a7:9f:97:6a:ef:6f:48:6b:89:e2:
d4:77:03:93:f1:66:8b:b9:97:a7:b9:63:e5:56:17:5c:3a:c8:
07:fb:7a:78:a1:de:3a:86:fe:81:49:c0:e5:70:d9:7c:59:90:
d9:e4:30:3c:72:62:f7:35:a5:fc:f8:59:d8:32:09:bb:2b:7a:
27:ac:16:79:a8:1d:48:45:5e:a6:21:e3:bb:cb:b5:7d:b2:06:
7a:12:0b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 23:54:20 2024 by rpki-client on console-fra.rpki-client.org