Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Z44hBR7cNYE89rODFF82_t7F7h4.roa
File: Z44hBR7cNYE89rODFF82_t7F7h4.roa (raw, json)
Hash identifier: BAdUsMoPqid2SxiiywD5BSRTKeyLBd5R2aHEo/Vk1DA=
Subject key identifier: 67:8E:21:05:1E:DC:35:81:3C:F6:B3:83:14:5F:36:FE:DE:C5:EE:1E
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 018CC8016AF436D2E5BA8500AC1FBB075F34
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Z44hBR7cNYE89rODFF82_t7F7h4.roa
Signing time: Tue 02 Jan 2024 02:29:45 +0000
ROA not before: Tue 02 Jan 2024 02:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210008
IP address blocks: 185.230.181.0/24 maxlen: 24
185.230.182.0/24 maxlen: 24
185.230.183.0/24 maxlen: 24
2a13:d00:cf00::/40 maxlen: 48
2a13:d00:a680::/48 maxlen: 48
2a13:d00:c180::/48 maxlen: 48
2a13:d00:da80::/48 maxlen: 48
2a13:d00:dc80::/48 maxlen: 48
2a13:d00:da30::/48 maxlen: 48
2a13:d00:cf01::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:6a:f4:36:d2:e5:ba:85:00:ac:1f:bb:07:5f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Jan 2 02:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=678e21051edc35813cf6b383145f36fedec5ee1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a3:69:48:14:64:9d:7d:9b:37:ef:60:8f:1d:
96:10:69:e5:e2:c6:b8:ed:36:43:af:6f:74:b1:eb:
65:ff:92:7f:d6:ba:06:3c:e1:82:94:45:54:db:c7:
7e:57:e3:c2:27:c1:30:49:b8:24:44:3e:ba:17:5e:
2c:f1:88:da:41:a6:26:03:05:db:5d:c0:cf:93:78:
a4:d8:6c:cf:88:2f:7b:60:1c:96:27:de:b6:24:ef:
90:70:f4:b4:c8:c2:34:28:7c:1e:95:fd:9e:ec:be:
fe:29:26:46:f0:5d:a6:7b:f2:9b:da:d4:2f:d9:d4:
8c:ad:da:b4:a4:ff:20:c4:44:f2:28:12:70:23:7e:
20:c6:0c:fb:99:91:7f:fe:3e:f1:1a:e9:2e:ee:9b:
bb:77:dc:4f:7a:1e:fa:9b:bd:6e:be:86:0c:30:2e:
7b:d4:59:50:80:10:ab:60:57:42:d4:4e:85:22:66:
2a:a6:cc:c9:66:39:18:3b:34:19:29:db:de:e6:09:
c1:94:3d:4f:2d:fc:32:30:17:64:54:ab:e9:04:cf:
0a:8d:cd:78:1b:04:54:b6:fe:84:9f:0c:ed:45:5d:
bd:dd:ef:76:9b:21:18:8a:b6:45:36:a1:10:bc:01:
04:73:4a:57:6c:a7:6b:75:78:86:a5:50:55:13:4f:
87:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:8E:21:05:1E:DC:35:81:3C:F6:B3:83:14:5F:36:FE:DE:C5:EE:1E
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/Z44hBR7cNYE89rODFF82_t7F7h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.181.0-185.230.183.255
IPv6:
2a13:d00:a680::/48
2a13:d00:c180::/48
2a13:d00:cf00::/40
2a13:d00:da30::/48
2a13:d00:da80::/48
2a13:d00:dc80::/48
Signature Algorithm: sha256WithRSAEncryption
19:dc:a0:7c:b4:4f:83:89:d1:cb:f3:b1:a2:5b:d4:5e:bc:72:
09:b8:d7:59:bf:18:2b:25:db:ba:b9:43:f6:d2:db:97:5d:a3:
66:1c:e7:7c:c0:de:e4:09:4f:31:fd:15:41:46:0f:c2:05:e2:
1c:14:7d:62:c7:c4:e3:1e:9c:d7:b2:2f:3d:0c:35:59:39:25:
a5:4b:a1:e5:fb:72:6a:9f:0f:a5:d1:92:3e:86:09:7d:ec:c7:
e8:f1:cc:01:eb:da:14:f9:a0:1b:95:2b:12:41:aa:56:a1:4b:
9c:a5:43:4f:00:fd:74:f4:8c:75:55:87:9e:84:26:a6:8a:2e:
60:51:82:b9:a7:bc:ff:18:2e:1a:1e:82:20:9c:a5:5b:3a:cb:
0d:37:13:d5:fe:7e:61:b0:65:fd:e9:f9:39:fe:ea:d7:da:c5:
8f:43:a4:21:fd:65:07:c1:33:b8:e7:38:50:a2:ee:1d:1c:77:
88:43:79:8a:7e:b9:bb:ff:c8:e4:83:06:35:db:6b:7a:0f:73:
98:33:a2:4c:9e:13:70:7f:ff:72:0b:2c:da:b9:07:25:ca:a4:
82:0f:29:f6:e4:0d:0b:23:f8:5c:15:82:16:02:88:31:91:0d:
0a:c9:36:df:f3:19:28:d7:94:d1:01:c9:27:56:68:1b:88:f0:
4b:63:0f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:38:23 2024 by rpki-client on console-fra.rpki-client.org