Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Hgciwr3EVDKK8yp9Nw3ui3q-6Ic.roa
File: Hgciwr3EVDKK8yp9Nw3ui3q-6Ic.roa (raw, json)
Hash identifier: jaxgzxlFLToofpIqu7vqz2tnmo/sOiYh9EU4lT63xxM=
Subject key identifier: 1E:07:22:C2:BD:C4:54:32:8A:F3:2A:7D:37:0D:EE:8B:7A:BE:E8:87
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 0192AE609083B76E007071DCAD23E5F5D165
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Hgciwr3EVDKK8yp9Nw3ui3q-6Ic.roa
Signing time: Mon 21 Oct 2024 09:20:16 +0000
ROA not before: Mon 21 Oct 2024 09:20:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49972
IP address blocks: 31.214.168.0/21 maxlen: 21
31.214.168.0/24 maxlen: 24
31.214.169.0/24 maxlen: 24
31.214.170.0/24 maxlen: 24
31.214.171.0/24 maxlen: 24
31.214.172.0/24 maxlen: 24
31.214.173.0/24 maxlen: 24
31.214.174.0/24 maxlen: 24
31.214.175.0/24 maxlen: 24
134.255.200.0/21 maxlen: 21
134.255.200.0/24 maxlen: 24
134.255.201.0/24 maxlen: 24
134.255.202.0/24 maxlen: 24
134.255.203.0/24 maxlen: 24
134.255.204.0/24 maxlen: 24
134.255.205.0/24 maxlen: 24
134.255.206.0/24 maxlen: 24
134.255.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.mft
rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:60:90:83:b7:6e:00:70:71:dc:ad:23:e5:f5:d1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Oct 21 09:20:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e0722c2bdc454328af32a7d370dee8b7abee887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:34:05:3c:4c:48:2a:5b:68:c1:2b:c4:2f:
ab:50:18:4f:82:65:b5:ea:2e:20:2d:d6:2a:08:6e:
56:6d:c8:64:d7:a5:6a:3c:db:9b:3f:58:cb:58:e7:
4e:28:f3:9f:5d:e0:75:ba:85:c9:b1:13:1f:ec:02:
4d:05:ef:a6:66:90:e3:5f:42:68:12:35:38:51:cd:
60:f2:07:2c:ea:1b:be:c2:40:38:c7:23:68:5b:b3:
93:88:29:ea:4e:bb:bd:f3:19:0a:18:90:35:a4:6d:
df:7b:81:67:63:cf:f8:d4:8f:fb:1a:d9:df:10:4d:
db:8b:fc:32:a2:35:ac:bb:bc:32:2e:25:d2:12:79:
1f:1e:ce:16:37:fe:95:52:d7:6b:bf:d8:43:80:c7:
06:9f:c6:de:dd:5b:e5:0d:7f:99:86:07:aa:38:c1:
20:59:ea:52:51:44:fe:c9:f8:49:95:40:bd:8e:fe:
f9:a6:70:07:1f:31:7b:5b:19:9b:40:85:f1:21:35:
61:db:1e:b6:1d:3a:34:7b:df:59:8f:ad:30:07:fd:
fb:cf:2a:12:50:1c:d9:64:8b:b8:8c:1f:46:57:f6:
fc:82:ff:d2:58:1c:a3:8a:29:ea:ec:ef:ee:f3:f5:
bc:eb:2d:08:b5:f0:cb:bb:1c:3b:69:f5:79:2e:d9:
22:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:07:22:C2:BD:C4:54:32:8A:F3:2A:7D:37:0D:EE:8B:7A:BE:E8:87
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Hgciwr3EVDKK8yp9Nw3ui3q-6Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.168.0/21
134.255.200.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:4f:50:1e:58:5a:6c:0a:bb:18:ee:f9:f5:d1:82:c7:fc:cd:
ba:33:38:da:2a:f2:d7:f5:a7:d6:32:15:b5:76:c4:1d:e3:93:
44:fc:03:67:0c:33:d4:de:5e:16:f5:2a:30:8e:2e:cd:53:41:
81:0b:0f:35:31:e2:e3:53:da:89:95:57:bf:d9:b9:73:bb:51:
f2:a4:c4:ec:9b:e9:ac:cf:84:5b:60:ad:9f:a3:15:73:ba:4f:
35:45:ca:71:cc:22:27:08:3e:f4:be:5e:97:24:8e:74:75:40:
6e:e9:ab:49:11:66:e9:c3:a8:2e:43:57:e2:97:b6:09:cf:98:
3c:9c:8d:6a:9e:75:c2:49:69:fb:c1:2f:e3:6f:93:fd:cb:b4:
aa:f8:d2:1c:89:e4:c7:dd:00:3e:28:6b:f8:0c:13:b4:a2:ce:
45:0e:66:b7:89:59:af:f4:f8:03:8f:32:00:f7:97:ed:40:6a:
39:52:e6:cd:13:66:14:f2:ab:06:68:d2:bf:7b:2f:d2:06:0d:
cf:bd:5c:9f:5e:cb:69:0b:c9:f1:83:9b:88:fe:f9:86:0c:69:
69:a3:d9:39:45:1c:87:61:11:16:35:56:98:f6:dd:df:3a:56:
53:45:9b:dd:0e:0e:f2:69:a9:a7:39:13:3a:ec:b8:95:e0:3a:
82:e8:5a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:34:53 2024 by rpki-client on console-fra.rpki-client.org