Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/MujkSRFw1pDnM2ASZYVl1m_cBA8.roa
File: MujkSRFw1pDnM2ASZYVl1m_cBA8.roa (raw, json)
Hash identifier: mSF23ykb+zuprjtPhUBohcsxMGWiHxHZeCj5yejan/c=
Subject key identifier: 32:E8:E4:49:11:70:D6:90:E7:33:60:12:65:85:65:D6:6F:DC:04:0F
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 018CC2DB0530207B10BEBEB8E0D1781E7985
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/MujkSRFw1pDnM2ASZYVl1m_cBA8.roa
Signing time: Mon 01 Jan 2024 02:29:42 +0000
ROA not before: Mon 01 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13194
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
185.144.184.0/22 maxlen: 32
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
195.62.128.0/19 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
79.135.128.0/19 maxlen: 32
80.254.208.0/20 maxlen: 32
91.142.0.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 03:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:05:30:20:7b:10:be:be:b8:e0:d1:78:1e:79:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 1 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32e8e4491170d690e7336012658565d66fdc040f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8d:fa:6a:1c:39:1d:11:cb:dc:cc:59:7a:1b:
94:9d:e6:7b:ca:8f:8e:a4:60:87:09:1b:46:ec:e5:
14:54:1a:27:55:54:48:64:aa:dc:de:97:28:21:9a:
89:f7:ce:19:0a:92:25:73:4f:c7:e8:b9:71:be:14:
67:2e:e2:ff:e0:e1:74:3f:9d:2d:10:62:0e:84:2b:
9b:8f:31:2f:30:6f:48:4c:ea:df:67:8f:c5:7a:d5:
6f:60:19:e5:2a:25:d2:63:54:2c:d8:dd:21:a3:3e:
48:f6:59:e0:96:c7:35:1b:58:2a:73:ef:e0:3d:aa:
6a:3d:1e:f0:30:42:9d:94:7f:d9:62:97:e3:56:a5:
68:b2:81:b8:11:de:a7:04:11:ca:0b:40:37:1a:79:
c3:2a:1d:17:bb:44:6c:7d:00:ac:c5:17:73:a0:04:
8e:e9:2b:c1:ad:01:c6:c6:d0:b9:a6:28:e7:20:0a:
2b:3d:88:c5:27:b8:86:98:3f:69:b0:47:02:a9:da:
e4:86:d8:f0:89:0b:e5:0d:0f:4a:fb:c4:3b:4f:35:
4d:f1:40:4c:04:4c:c9:5a:cd:31:0e:55:44:fa:9f:
b7:f1:0c:8a:55:c3:6c:43:00:2c:91:e1:9b:be:84:
d0:36:ab:2e:0a:55:ee:99:a0:90:a2:23:0e:ca:b3:
00:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E8:E4:49:11:70:D6:90:E7:33:60:12:65:85:65:D6:6F:DC:04:0F
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/MujkSRFw1pDnM2ASZYVl1m_cBA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.0.0/19
77.38.128.0/17
79.132.64.0/19
79.135.128.0/19
80.254.208.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.144.184.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
86:d8:e3:d5:d1:d2:cb:4e:d5:a4:d5:51:b3:03:c4:42:ad:ff:
ca:50:64:19:be:a6:81:42:5c:41:93:d6:50:54:9d:1d:9f:29:
be:7e:8c:e3:d6:d3:6b:89:d8:dd:00:7a:f6:7b:20:3c:78:29:
60:fb:e4:4c:86:40:94:2b:b9:2f:cf:21:9b:d0:52:4b:30:22:
37:67:a0:e8:a5:30:d0:26:01:d7:eb:22:9b:cf:e5:18:24:aa:
e7:61:12:8b:6c:08:ea:3d:23:6e:12:cf:a3:40:8c:99:d5:a0:
e5:bc:de:28:c1:66:18:d0:28:63:88:ae:15:e9:6f:a3:ca:71:
e8:2e:57:1e:05:e3:b5:86:c6:b4:6c:00:b2:99:4e:88:0e:62:
28:13:41:6d:6f:e2:dd:bd:c2:55:8d:ce:e1:25:08:7a:de:a4:
1c:f2:e8:de:32:6b:e3:01:70:5b:c4:67:88:03:5e:e4:70:53:
50:1b:72:2e:df:9b:09:a4:47:50:8f:74:ea:a5:0d:f6:b0:35:
05:0d:7e:32:0a:92:1d:9d:ac:ad:9c:63:ca:90:42:b3:95:57:
bc:25:09:2f:31:64:6e:f0:ee:43:28:68:15:22:f8:bd:ca:31:
89:80:fb:35:fb:37:43:5a:92:71:ab:52:53:4f:b3:53:05:93:
8b:fe:f9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 10:21:47 2024 by rpki-client on console-ams.rpki-client.org