Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/9MYHG5RGeYKt6mWZ5B-jp6HfL1Q.roa
File: 9MYHG5RGeYKt6mWZ5B-jp6HfL1Q.roa (raw, json)
Hash identifier: QC4L+OYds8ZQEATWqJn6EjZ/sVHCv7Nwrgv+wnm/8Pc=
Subject key identifier: F4:C6:07:1B:94:46:79:82:AD:EA:65:99:E4:1F:A3:A7:A1:DF:2F:54
Certificate issuer: /CN=464dcfa96399716692d245a804887c09da451f8f
Certificate serial: 018CC3B6FD34A348D7867B8E301A2FC167D0
Authority key identifier: 46:4D:CF:A9:63:99:71:66:92:D2:45:A8:04:88:7C:09:DA:45:1F:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rk3PqWOZcWaS0kWoBIh8CdpFH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/9MYHG5RGeYKt6mWZ5B-jp6HfL1Q.roa
Signing time: Mon 01 Jan 2024 06:29:58 +0000
ROA not before: Mon 01 Jan 2024 06:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51173
IP address blocks: 37.203.48.0/24 maxlen: 24
37.203.50.0/24 maxlen: 24
37.203.49.0/24 maxlen: 24
37.203.51.0/24 maxlen: 24
37.203.54.0/24 maxlen: 24
37.203.52.0/24 maxlen: 24
37.203.53.0/24 maxlen: 24
185.94.47.0/24 maxlen: 24
185.94.46.0/24 maxlen: 24
89.106.137.0/24 maxlen: 24
89.106.139.0/24 maxlen: 24
89.106.138.0/24 maxlen: 24
89.106.136.0/24 maxlen: 24
89.106.141.0/24 maxlen: 24
89.106.140.0/24 maxlen: 24
89.106.143.0/24 maxlen: 24
89.106.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/Rk3PqWOZcWaS0kWoBIh8CdpFH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/Rk3PqWOZcWaS0kWoBIh8CdpFH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/Rk3PqWOZcWaS0kWoBIh8CdpFH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:fd:34:a3:48:d7:86:7b:8e:30:1a:2f:c1:67:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464dcfa96399716692d245a804887c09da451f8f
Validity
Not Before: Jan 1 06:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4c6071b94467982adea6599e41fa3a7a1df2f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b2:2d:f3:c5:3b:d6:15:9e:b4:e6:0f:60:d0:
c1:39:70:43:57:3d:3b:02:65:5a:7c:3c:58:ea:3d:
45:86:9b:32:6c:fa:f6:a5:94:c4:9a:76:ea:0a:b9:
7a:da:5a:34:54:16:ef:a0:32:98:aa:4f:8d:c7:d0:
d9:a6:d9:cc:58:09:d3:34:86:be:b1:43:e8:bc:71:
8f:76:cf:26:66:42:32:25:9b:b0:7d:98:74:03:00:
c0:93:2f:16:a3:0f:ed:c5:5b:ab:9f:81:89:41:f4:
89:d2:8c:fe:b0:b5:16:7d:bf:22:19:16:c2:68:61:
98:f3:c3:c9:d6:73:18:7d:c1:9a:e0:84:4e:17:1c:
38:50:78:b7:ee:59:37:28:09:7e:35:91:9f:95:12:
ed:14:bd:36:43:cd:51:b4:c7:5e:e5:e8:a0:70:a9:
5c:6e:fb:07:4a:b2:9b:8c:66:95:47:6a:36:1f:8d:
e9:06:d7:d4:08:e7:06:ca:21:51:b5:58:f3:32:79:
37:da:79:d2:29:dc:c3:8b:d5:00:6c:53:24:6b:da:
03:bc:30:51:89:7f:c0:d0:55:11:a5:31:a1:06:71:
c8:87:70:9a:59:0b:93:f9:fc:0f:0c:e9:95:5e:0e:
fa:93:8c:dc:d8:32:34:ba:14:12:08:9c:d4:5a:65:
b0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C6:07:1B:94:46:79:82:AD:EA:65:99:E4:1F:A3:A7:A1:DF:2F:54
X509v3 Authority Key Identifier:
keyid:46:4D:CF:A9:63:99:71:66:92:D2:45:A8:04:88:7C:09:DA:45:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rk3PqWOZcWaS0kWoBIh8CdpFH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/9MYHG5RGeYKt6mWZ5B-jp6HfL1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6be5a6-eb0e-44b4-b6a7-af1f36811098/1/Rk3PqWOZcWaS0kWoBIh8CdpFH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.203.48.0-37.203.54.255
89.106.136.0/21
185.94.46.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:61:ca:f5:fd:03:81:4e:2d:4c:87:de:9e:be:b7:07:5f:14:
8a:db:45:91:0c:95:c1:e6:a4:3f:7b:2e:35:13:df:44:15:c1:
81:0a:1f:e0:03:3c:e5:9a:f0:3a:ea:2c:9b:da:94:5f:13:d9:
2a:7d:bb:c2:11:8e:19:81:91:64:f3:91:54:81:3b:39:47:fb:
f3:88:cb:fa:28:3a:1c:51:bb:23:5a:e7:85:69:d5:dc:71:15:
da:3b:33:a0:45:28:e8:0b:e1:30:ae:a3:01:bc:7a:e5:16:24:
7c:ac:34:3b:68:fe:6b:25:5b:b8:b6:b7:ee:18:66:97:27:05:
98:d2:77:27:27:c8:28:78:d1:47:14:43:f6:d4:d5:83:fc:ff:
0e:ab:59:60:5f:a0:e2:6a:89:7c:1b:52:97:4e:0b:92:b1:2f:
05:39:ef:a3:9f:69:14:a2:69:8a:c6:04:75:ab:b1:7f:5d:d9:
8f:75:f2:8c:87:de:5c:bc:1d:dc:e8:33:45:a4:f6:bc:fe:86:
ba:0b:7d:df:0f:89:74:7e:53:18:9c:58:2c:52:d7:39:2a:7b:
8c:c6:79:c2:72:6e:8e:1d:25:8c:99:7c:cd:b0:53:3f:da:e2:
a4:f6:ce:e3:c7:33:e1:a1:c9:e7:e1:9c:74:8c:f9:b4:9b:45:
e9:41:49:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:22:32 2024 by rpki-client on console-ams.rpki-client.org