Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/gSA671L5vfYGvXVHzJ5BxXXnZPg.roa
File: gSA671L5vfYGvXVHzJ5BxXXnZPg.roa (raw, json)
Hash identifier: SRqmlcaegSEDrIAbMyMUN6jYZ/MeZcdsiKB/2mCyzUo=
Subject key identifier: 81:20:3A:EF:52:F9:BD:F6:06:BD:75:47:CC:9E:41:C5:75:E7:64:F8
Certificate issuer: /CN=744e133ca0cad9f1fd161580590b296db22308ce
Certificate serial: 019010F7822BD6E242BFFEAF761062119305
Authority key identifier: 74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/gSA671L5vfYGvXVHzJ5BxXXnZPg.roa
Signing time: Thu 13 Jun 2024 09:39:34 +0000
ROA not before: Thu 13 Jun 2024 09:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204858
IP address blocks: 185.227.184.0/22 maxlen: 22
194.13.110.0/24 maxlen: 24
194.13.134.0/24 maxlen: 24
194.15.125.0/24 maxlen: 24
194.15.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 12:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:10:f7:82:2b:d6:e2:42:bf:fe:af:76:10:62:11:93:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744e133ca0cad9f1fd161580590b296db22308ce
Validity
Not Before: Jun 13 09:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81203aef52f9bdf606bd7547cc9e41c575e764f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1d:18:b7:4c:3a:c2:45:00:0e:23:10:fc:26:
d3:97:02:d3:75:8e:d0:4e:a6:53:2a:31:a0:56:6f:
f4:32:5a:1c:55:2a:78:30:aa:ef:86:91:19:74:f8:
b9:58:21:b4:36:5d:1e:51:cb:59:3f:31:ae:ce:83:
b8:fa:12:3c:de:a8:f4:d5:99:fa:78:e2:91:97:be:
3c:32:e0:8b:a9:a8:f9:87:d2:5e:af:b1:65:2a:ca:
a8:be:44:fe:21:05:ed:b3:42:f0:ad:c9:9e:01:ce:
09:79:21:2e:c1:eb:4f:65:5a:55:41:08:e5:a5:f9:
3f:3e:26:99:8f:94:66:e0:55:0b:3a:b7:ac:c9:07:
aa:09:a2:73:c2:bb:08:ca:cd:b9:ab:a3:81:89:0f:
5b:c1:15:3b:5e:2e:70:67:e3:6e:08:e1:f7:28:b5:
b7:1a:45:14:39:91:44:ae:fc:2e:1c:54:d8:df:7c:
cf:c9:3e:00:45:bb:18:db:42:8f:d2:ca:22:7a:7d:
db:0f:dd:63:86:40:1f:89:56:5e:c6:16:b0:50:47:
e2:1e:2c:2b:90:9d:b8:85:ca:5d:68:28:a7:ab:aa:
43:bd:4c:77:11:0d:04:10:b1:35:12:cf:d0:61:d3:
ed:2c:32:0e:1e:d2:d8:a9:84:61:bc:a6:e7:ee:4a:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:20:3A:EF:52:F9:BD:F6:06:BD:75:47:CC:9E:41:C5:75:E7:64:F8
X509v3 Authority Key Identifier:
keyid:74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/gSA671L5vfYGvXVHzJ5BxXXnZPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.184.0/22
194.13.110.0/24
194.13.134.0/24
194.15.125.0/24
194.15.136.0/24
Signature Algorithm: sha256WithRSAEncryption
42:30:a5:04:cb:aa:19:f0:2c:6a:8c:75:a7:a1:dd:01:64:ea:
3d:66:1b:65:fb:6e:ed:88:de:d1:62:37:18:34:2f:ae:5f:09:
89:6b:ec:d1:5e:c1:59:a2:e7:57:e9:cf:b0:3b:67:6f:93:3a:
85:77:a5:d0:a0:0d:17:4f:e5:f2:03:65:65:a1:0e:95:fe:db:
90:7b:ad:6e:50:77:46:b4:53:71:4d:2e:8f:5b:d1:64:8d:ef:
6a:6a:d5:aa:37:64:fb:50:49:39:67:bf:e7:2b:61:92:7b:ef:
7f:dd:8c:71:8b:6f:f0:47:c6:ca:44:a5:6c:2b:8d:47:40:b5:
c1:fd:1b:62:65:86:7c:90:40:33:2e:0a:4f:f1:b3:10:12:c0:
29:85:3c:b7:5f:99:c3:eb:7a:7e:56:1d:75:86:9c:10:fe:e0:
b7:c9:43:2b:a5:c4:60:e4:8a:43:8b:c2:6a:65:9a:3a:b0:80:
52:27:54:8a:c9:cc:62:5d:e1:95:f2:a1:ea:8c:ac:ab:2f:9f:
ab:b9:07:2a:9c:29:1b:fe:2a:ff:cf:cc:19:5b:bf:df:0d:57:
f8:36:2c:be:75:83:aa:7d:b0:0c:ad:23:a4:f2:42:d6:43:f0:
15:91:db:f4:63:a0:fe:6b:4d:9e:c7:07:32:54:07:27:5c:27:
86:ef:2d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 19:02:40 2024 by rpki-client on console-ams.rpki-client.org