Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L9dB_x9mxSDmkEYUj29kPgODnBU.roa
File: L9dB_x9mxSDmkEYUj29kPgODnBU.roa (raw, json)
Hash identifier: oMB0MZu6mavekjYQwKj34WdjzyoTg53T94rR62yGpLg=
Subject key identifier: 2F:D7:41:FF:1F:66:C5:20:E6:90:46:14:8F:6F:64:3E:03:83:9C:15
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCF01DBB2D819A6D64507D59C21FE1
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L9dB_x9mxSDmkEYUj29kPgODnBU.roa
Signing time: Tue 02 Jan 2024 06:29:31 +0000
ROA not before: Tue 02 Jan 2024 06:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57634
IP address blocks: 94.156.0.0/23 maxlen: 23
94.156.7.0/24 maxlen: 24
31.13.192.0/24 maxlen: 24
31.13.193.0/24 maxlen: 24
31.13.199.0/24 maxlen: 24
87.121.144.0/23 maxlen: 23
212.73.151.0/24 maxlen: 24
31.13.209.0/24 maxlen: 24
31.13.225.0/24 maxlen: 24
85.217.168.0/23 maxlen: 23
94.156.162.0/23 maxlen: 23
94.156.164.0/23 maxlen: 23
87.121.70.0/23 maxlen: 23
87.120.107.0/24 maxlen: 24
94.156.170.0/24 maxlen: 24
94.156.171.0/24 maxlen: 24
93.123.9.0/24 maxlen: 24
87.120.156.0/23 maxlen: 23
87.120.67.0/24 maxlen: 24
87.121.32.0/24 maxlen: 24
94.156.61.0/24 maxlen: 24
94.156.76.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:f0:1d:bb:2d:81:9a:6d:64:50:7d:59:c2:1f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2fd741ff1f66c520e69046148f6f643e03839c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:29:e6:8e:43:9f:12:cf:7f:78:e9:07:ca:1c:
73:4b:90:c2:85:7b:08:da:bc:14:9a:a5:05:4b:bc:
a5:3c:fd:44:96:f7:af:20:df:aa:0e:9b:f3:22:61:
cd:09:23:f9:09:64:e2:9c:87:ab:af:b2:62:72:ef:
c9:4d:a4:5f:0a:e8:b3:1f:5a:c6:0d:82:d6:a5:63:
04:88:7b:f0:63:e0:38:9f:53:bc:cd:80:90:9b:a8:
a0:11:f8:4f:c0:29:6c:be:7e:c5:8e:fc:ca:09:6e:
d7:20:76:35:fa:86:1a:fa:c1:6a:4a:3d:3e:ae:8c:
f2:80:ef:93:24:ee:4e:41:b9:8e:fd:99:c2:86:f7:
72:66:ac:06:11:eb:9f:df:23:e9:14:66:0e:40:c5:
8f:90:fc:b1:a5:a3:2c:c1:8f:8f:7b:0d:96:5a:7e:
b5:08:3d:9c:b4:d4:dc:15:d4:79:ad:e5:18:10:f7:
2f:80:ea:2e:f9:5f:9f:ea:e4:60:de:8e:17:4c:00:
89:74:9d:ca:94:a6:a9:29:2e:89:a7:54:8c:c5:a6:
23:26:ed:77:42:0b:80:a9:85:0d:08:ce:25:05:50:
d8:24:cc:d0:57:7c:61:63:78:2c:1a:45:7f:ab:58:
18:3a:d9:37:07:b0:43:1b:88:4f:ce:41:5a:76:06:
1f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D7:41:FF:1F:66:C5:20:E6:90:46:14:8F:6F:64:3E:03:83:9C:15
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L9dB_x9mxSDmkEYUj29kPgODnBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.192.0/23
31.13.199.0/24
31.13.209.0/24
31.13.225.0/24
85.217.168.0/23
87.120.67.0/24
87.120.107.0/24
87.120.156.0/23
87.121.32.0/24
87.121.70.0/23
87.121.144.0/23
93.123.9.0/24
94.156.0.0/23
94.156.7.0/24
94.156.61.0/24
94.156.76.0/24
94.156.92.0/24
94.156.162.0-94.156.165.255
94.156.170.0/23
212.73.151.0/24
Signature Algorithm: sha256WithRSAEncryption
19:a5:1f:31:45:dd:a1:ac:17:e0:f1:be:76:3d:6a:4e:6c:5e:
84:9a:c2:05:a0:27:08:f3:40:45:e1:75:49:e6:7a:10:f3:44:
39:b0:f1:8b:ed:4f:a3:a6:c9:c3:cd:bc:8f:08:22:60:af:b8:
18:6d:9e:25:67:b4:17:f1:bd:2c:39:df:6c:65:ef:9c:c7:6a:
76:f5:1c:8c:b4:a9:2d:ba:a9:b7:66:8d:78:15:76:ad:5d:70:
69:d9:c3:b2:4d:34:a0:f6:7c:ea:37:3f:a4:90:cc:e8:31:99:
e9:70:81:95:60:94:a0:b8:6c:45:7f:a8:0b:74:09:10:35:8d:
f4:d9:f3:d2:d9:c9:30:20:75:6e:02:a6:ff:ec:38:3a:b5:c2:
68:79:d9:86:b5:0e:ac:1a:59:0b:a1:ba:f8:99:0a:0d:4f:7e:
7b:6f:c2:e8:22:84:0b:5c:bc:0a:f0:53:0c:9b:d0:73:ef:80:
1f:72:f7:7b:aa:0f:49:60:ae:12:1b:5a:8a:75:3f:0d:49:86:
e9:af:c8:2e:fa:84:40:03:a4:a1:a4:1c:e7:32:36:aa:9c:eb:
90:b9:66:6e:6b:c0:18:28:2d:2e:9b:6f:16:76:12:2a:bc:ac:
51:2f:1d:a4:a9:0a:fb:9a:73:d9:1b:d1:ca:e6:9d:02:3d:31:
5d:a4:f1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 03:28:45 2024 by rpki-client on console-ams.rpki-client.org