Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/LpT3f6RyKv611uP2vOLK8mejTvg.roa
File: LpT3f6RyKv611uP2vOLK8mejTvg.roa (raw, json)
Hash identifier: w3SGMdsDXix7ZansBdLrGXlmRlP+OIQoMbP6PPuy3nE=
Subject key identifier: 2E:94:F7:7F:A4:72:2A:FE:B5:D6:E3:F6:BC:E2:CA:F2:67:A3:4E:F8
Certificate issuer: /CN=99a2c2ecf58c44b35a0da2957ff4dca2e60b686a
Certificate serial: 018E19238265A57184968B2C78EA6DB42FFF
Authority key identifier: 99:A2:C2:EC:F5:8C:44:B3:5A:0D:A2:95:7F:F4:DC:A2:E6:0B:68:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maLC7PWMRLNaDaKVf_TcouYLaGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/LpT3f6RyKv611uP2vOLK8mejTvg.roa
Signing time: Thu 07 Mar 2024 13:39:01 +0000
ROA not before: Thu 07 Mar 2024 13:39:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28836
IP address blocks: 91.230.170.0/23 maxlen: 23
91.230.170.0/24 maxlen: 24
91.230.171.0/24 maxlen: 24
91.230.176.0/22 maxlen: 22
91.230.176.0/23 maxlen: 23
91.230.176.0/24 maxlen: 24
91.230.177.0/24 maxlen: 24
91.230.178.0/23 maxlen: 23
91.230.178.0/24 maxlen: 24
91.230.179.0/24 maxlen: 24
185.194.84.0/22 maxlen: 22
185.194.84.0/23 maxlen: 23
185.194.84.0/24 maxlen: 24
185.194.85.0/24 maxlen: 24
185.194.86.0/23 maxlen: 23
194.213.114.0/23 maxlen: 23
194.213.114.0/24 maxlen: 24
194.213.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/maLC7PWMRLNaDaKVf_TcouYLaGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/maLC7PWMRLNaDaKVf_TcouYLaGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/maLC7PWMRLNaDaKVf_TcouYLaGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:19:23:82:65:a5:71:84:96:8b:2c:78:ea:6d:b4:2f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99a2c2ecf58c44b35a0da2957ff4dca2e60b686a
Validity
Not Before: Mar 7 13:39:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e94f77fa4722afeb5d6e3f6bce2caf267a34ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a8:df:b9:53:f3:8d:54:69:79:56:e4:2f:34:
2d:16:9f:4f:7e:e2:50:e8:ec:73:67:86:f9:2b:b0:
57:75:5f:ce:40:d5:ec:4d:cc:77:83:fe:07:9e:87:
1a:81:ae:53:e2:3c:e4:77:d9:4f:b0:41:0c:11:18:
42:1d:07:6e:25:0a:52:70:7b:f2:b3:23:ea:9b:2e:
83:f6:fe:56:1b:f8:73:6b:11:4d:06:1c:eb:c2:ca:
fc:4a:b8:e2:a4:49:7b:73:64:15:2f:fb:c5:fb:73:
c2:41:80:d4:b6:1c:b2:d0:04:c9:ba:b3:4c:c5:0d:
2b:c3:9f:e5:9b:b9:4d:b6:ab:ed:03:1b:52:df:06:
8f:bb:76:f3:c1:01:a0:68:b1:5e:d7:8c:a8:cb:bf:
a2:c6:22:c8:10:6a:fb:39:e4:3d:e5:7d:31:d3:e1:
b3:7b:b4:b4:5c:b6:ff:85:eb:a7:49:00:6c:ef:e7:
ca:48:a6:0d:0e:d4:c4:31:8f:8a:40:a7:41:7e:f3:
05:a8:fb:1c:c1:02:9d:e1:aa:29:ee:3a:ad:b9:30:
50:57:ab:7d:89:2c:89:2d:af:0b:55:0a:b8:1a:98:
0a:38:fd:be:68:f7:f8:88:01:e9:5f:b1:08:20:92:
aa:1a:37:81:ee:39:85:40:1d:3d:fe:91:cf:59:3b:
1e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:94:F7:7F:A4:72:2A:FE:B5:D6:E3:F6:BC:E2:CA:F2:67:A3:4E:F8
X509v3 Authority Key Identifier:
keyid:99:A2:C2:EC:F5:8C:44:B3:5A:0D:A2:95:7F:F4:DC:A2:E6:0B:68:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maLC7PWMRLNaDaKVf_TcouYLaGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/LpT3f6RyKv611uP2vOLK8mejTvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/maLC7PWMRLNaDaKVf_TcouYLaGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.170.0/23
91.230.176.0/22
185.194.84.0/22
194.213.114.0/23
Signature Algorithm: sha256WithRSAEncryption
20:a4:d5:4b:66:f9:de:ea:79:e5:0c:89:47:c5:c9:8f:18:65:
f9:e0:85:59:88:f3:1a:4f:28:64:1c:80:9a:af:2b:82:3a:90:
b6:64:df:ff:24:39:61:96:3f:b2:06:00:ac:8e:ac:e6:56:4b:
4b:c4:f5:2d:d3:a9:cd:77:b5:cc:c0:bd:ae:26:0c:ae:2e:c4:
98:09:21:3e:0b:84:da:40:8d:94:94:76:2e:6d:c8:a9:e2:8e:
0a:f9:8e:7f:1e:21:90:98:27:74:82:9f:89:2d:5b:f8:25:4f:
cc:32:f0:1a:f5:48:26:3e:b1:1e:4b:70:a5:98:7b:3c:16:dc:
43:8b:82:1b:14:47:55:ac:68:e4:81:47:49:0d:a5:a3:ee:c6:
cf:37:ed:de:c6:a3:ed:11:0e:bf:60:66:aa:fd:9c:f0:19:48:
ce:48:13:9e:e0:95:f9:07:3b:94:53:aa:7e:7b:c3:04:cf:44:
5e:88:d5:dd:58:3a:dc:88:0c:66:ab:75:4c:74:31:f9:12:98:
6c:dc:de:a0:62:0a:74:7d:d7:31:4e:c0:41:4e:c6:c0:d9:a4:
7e:33:bc:07:88:73:b0:c1:dd:f6:28:f0:2c:e5:f7:11:64:2b:
56:80:0f:92:ce:68:5d:06:7f:8a:73:ee:73:b5:80:37:75:3d:
ad:89:27:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:22:52 2024 by rpki-client on console-ams.rpki-client.org