Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mibs1hGil79Rcv4R6Jhwp-I3NAE.roa
File: mibs1hGil79Rcv4R6Jhwp-I3NAE.roa (raw, json)
Hash identifier: eMDg74rIlrOdAnQhfGlDvC2czH4RRKheW6hy1cPK7hE=
Subject key identifier: 9A:26:EC:D6:11:A2:97:BF:51:72:FE:11:E8:98:70:A7:E2:37:34:01
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019227D51761E0E877706F6C4798EECF82E6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mibs1hGil79Rcv4R6Jhwp-I3NAE.roa
Signing time: Wed 25 Sep 2024 06:18:49 +0000
ROA not before: Wed 25 Sep 2024 06:18:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 45.128.96.0/24 maxlen: 24
84.54.51.0/24 maxlen: 24
87.120.33.0/24 maxlen: 24
87.121.38.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.58.0/24 maxlen: 24
91.92.16.0/24 maxlen: 24
94.103.127.0/24 maxlen: 24
94.156.2.0/24 maxlen: 24
94.156.79.0/24 maxlen: 24
94.156.113.0/24 maxlen: 24
141.98.4.0/24 maxlen: 24
193.58.120.0/24 maxlen: 24
194.31.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:27:d5:17:61:e0:e8:77:70:6f:6c:47:98:ee:cf:82:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 25 06:18:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a26ecd611a297bf5172fe11e89870a7e2373401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1f:9a:ff:e7:f5:b4:5d:d1:c8:57:a9:98:e4:
d3:99:68:c5:bc:b4:18:98:28:cf:87:d2:4b:9b:27:
f2:a3:70:25:54:eb:eb:8e:f6:40:53:12:3b:5b:62:
75:b7:f5:31:67:23:7c:34:a9:f3:cc:7f:e8:c0:c3:
e8:a1:56:6e:19:53:47:eb:a8:c2:b2:15:4a:6c:44:
92:60:35:d3:3f:fa:0a:8e:b4:60:a3:46:8f:80:03:
a4:cc:47:04:fa:10:6c:5f:53:46:9c:0d:3c:91:48:
f7:eb:67:f5:52:64:c9:e1:42:6c:26:1e:db:21:3e:
fc:ac:ed:86:c5:04:8b:43:04:b4:bb:60:04:a3:2a:
b3:76:dd:72:53:77:22:fe:29:be:e8:96:71:39:6e:
f6:35:40:14:0c:7c:63:da:25:a8:62:05:67:80:14:
03:0e:c6:48:3f:79:ab:89:bb:72:96:4b:39:41:e6:
48:c2:09:33:b4:64:f8:e8:13:70:c3:c4:c9:03:ed:
9c:8f:62:10:80:72:31:a9:70:4b:78:ad:d1:43:ee:
56:41:8b:fe:a2:a0:5e:11:ae:d3:8b:35:66:e1:a0:
40:f6:43:5a:a2:94:97:29:c8:61:ea:84:94:1e:79:
2f:fe:8a:8f:a7:53:44:b0:05:21:08:2a:3b:da:fe:
6b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:26:EC:D6:11:A2:97:BF:51:72:FE:11:E8:98:70:A7:E2:37:34:01
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/mibs1hGil79Rcv4R6Jhwp-I3NAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.96.0/24
84.54.51.0/24
87.120.33.0/24
87.121.38.0/24
87.121.45.0/24
87.121.58.0/24
91.92.16.0/24
94.103.127.0/24
94.156.2.0/24
94.156.79.0/24
94.156.113.0/24
141.98.4.0/24
193.58.120.0/24
194.31.204.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f0:8f:dc:65:e2:4a:b9:1a:5c:f1:35:be:3b:56:ac:45:29:
33:a7:3e:92:ed:a2:ba:12:ef:93:12:ee:01:79:77:34:53:54:
fb:c3:6e:c2:c2:6e:3b:7a:32:8b:cd:7a:fd:08:a5:fd:af:0d:
31:95:37:ff:b0:d8:55:a0:cb:0a:fa:a3:1b:fe:2c:c1:4a:6d:
d6:91:24:06:8a:01:a0:41:24:8e:f2:2a:b4:da:19:e3:22:11:
8f:98:09:7b:82:f5:3c:d3:5c:cc:4b:df:99:12:eb:0d:6e:c2:
64:d7:3e:b2:4c:3d:48:b8:b5:1a:55:14:25:72:47:47:38:58:
28:26:2e:e8:79:6b:8f:20:09:56:fd:19:61:fc:ba:22:64:22:
2f:88:bb:28:36:87:ba:b8:e6:5a:16:63:21:ef:d4:be:fa:dc:
6f:7a:a5:eb:25:74:3f:69:50:72:75:a4:ac:e3:26:b8:b6:7a:
4f:0c:bb:1f:14:0d:a6:a3:48:69:a0:65:45:84:b1:a4:11:49:
3a:b5:af:a7:88:49:98:80:c4:08:ee:9a:19:b8:cc:aa:4e:66:
d2:68:ec:0e:ec:02:81:e5:27:df:5b:d0:a3:81:4e:29:62:92:
af:c7:de:df:bd:15:35:82:f1:ad:0c:0f:63:47:7c:5d:cb:49:
25:6b:95:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:15:18 2024 by rpki-client on console-ams.rpki-client.org