Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/UzqzXruN4uykLziphI-D_NhslGQ.roa
File: UzqzXruN4uykLziphI-D_NhslGQ.roa (raw, json)
Hash identifier: BoXKAJt7yfu6GsXXdDJgaE7zRz2KCrUyXmgdR277Oo8=
Subject key identifier: 53:3A:B3:5E:BB:8D:E2:EC:A4:2F:38:A9:84:8F:83:FC:D8:6C:94:64
Certificate issuer: /CN=a4f0bedb978e1928d1e970ca2ed96937118fff68
Certificate serial: 018CC6B8857A306E93AD0DFE8DE9880EA7E0
Authority key identifier: A4:F0:BE:DB:97:8E:19:28:D1:E9:70:CA:2E:D9:69:37:11:8F:FF:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPC-25eOGSjR6XDKLtlpNxGP_2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/UzqzXruN4uykLziphI-D_NhslGQ.roa
Signing time: Mon 01 Jan 2024 20:30:30 +0000
ROA not before: Mon 01 Jan 2024 20:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 196752
IP address blocks: 164.138.30.0/23 maxlen: 24
37.252.120.0/21 maxlen: 24
91.213.195.0/24 maxlen: 24
164.138.24.0/21 maxlen: 24
185.24.220.0/22 maxlen: 24
84.22.96.0/19 maxlen: 24
84.22.96.0/22 maxlen: 24
84.22.100.0/23 maxlen: 24
84.22.118.0/23 maxlen: 24
84.22.122.0/24 maxlen: 24
46.19.32.0/21 maxlen: 24
46.19.36.0/22 maxlen: 24
2a02:2770::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/pPC-25eOGSjR6XDKLtlpNxGP_2g.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/pPC-25eOGSjR6XDKLtlpNxGP_2g.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPC-25eOGSjR6XDKLtlpNxGP_2g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:85:7a:30:6e:93:ad:0d:fe:8d:e9:88:0e:a7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f0bedb978e1928d1e970ca2ed96937118fff68
Validity
Not Before: Jan 1 20:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=533ab35ebb8de2eca42f38a9848f83fcd86c9464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8e:34:97:ff:78:09:35:3d:b1:c5:48:05:50:
b4:c9:43:b3:36:b3:18:31:a8:15:9f:3d:9d:c6:4e:
93:94:12:8f:c7:56:19:50:e4:0b:43:a0:08:26:12:
4a:5a:41:77:a1:09:d0:36:2d:65:48:97:1f:17:b1:
4b:4c:8b:97:5e:b2:de:c8:39:45:b2:f6:76:ae:86:
7b:49:7f:35:38:4f:7d:19:10:24:01:86:ca:84:5c:
1e:ab:41:66:4a:c0:c9:e8:48:11:8a:5a:78:3e:2e:
84:09:fe:64:0d:f9:8f:05:b0:e5:d4:3b:19:5b:cb:
35:1c:47:46:46:44:16:85:f4:25:1d:25:4b:9a:a7:
38:47:a7:c2:81:58:e7:70:bf:50:aa:f1:a3:59:18:
e0:d5:7e:84:4e:00:55:20:a5:fd:eb:d9:64:7f:f7:
29:a6:83:85:31:2a:bd:2c:34:36:37:87:69:c4:7f:
78:0b:b0:70:ef:25:46:b8:cf:ff:7a:05:67:76:02:
3d:6c:13:3f:58:f0:e7:8f:33:c5:44:ca:6b:64:00:
3b:e2:16:ee:cb:19:9e:8a:76:9f:03:2d:06:a0:af:
f0:13:4d:78:57:50:3e:81:97:b2:01:9f:b8:29:26:
83:b9:b3:da:af:0e:b7:bc:f2:04:1a:08:d8:8b:d8:
2c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3A:B3:5E:BB:8D:E2:EC:A4:2F:38:A9:84:8F:83:FC:D8:6C:94:64
X509v3 Authority Key Identifier:
keyid:A4:F0:BE:DB:97:8E:19:28:D1:E9:70:CA:2E:D9:69:37:11:8F:FF:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPC-25eOGSjR6XDKLtlpNxGP_2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/UzqzXruN4uykLziphI-D_NhslGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d8d705-62ef-4e66-b7e6-e83e5ff618dd/1/pPC-25eOGSjR6XDKLtlpNxGP_2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.120.0/21
46.19.32.0/21
84.22.96.0/19
91.213.195.0/24
164.138.24.0/21
185.24.220.0/22
IPv6:
2a02:2770::/32
Signature Algorithm: sha256WithRSAEncryption
6e:30:8b:cb:70:e0:7b:a2:fc:b1:54:99:b9:06:b0:e0:f3:00:
a6:cc:e8:67:da:c8:80:fd:10:80:6e:a8:ca:61:a1:02:9f:83:
ac:86:41:fd:3b:0a:2b:9e:3c:2f:8e:44:67:de:c0:b4:96:f5:
0b:45:5d:84:f6:0c:35:55:7d:b1:ef:6a:af:8c:47:03:77:16:
1a:06:47:fc:f5:7a:99:fe:5f:3b:eb:50:d7:8f:94:c0:5b:04:
44:49:ce:22:7e:cc:d5:28:23:51:7b:3d:d4:d2:78:9a:3e:46:
61:d4:26:1c:9f:17:01:4f:df:b9:1e:b7:f9:fd:7d:8b:2e:58:
ae:68:bf:bd:d8:07:32:98:21:e1:d4:ea:90:f5:8e:24:22:17:
f2:83:75:7d:9c:96:59:24:e4:45:f1:da:30:35:39:82:3b:7f:
4b:22:27:73:2c:08:fb:f3:a1:7a:91:34:3a:3b:f2:14:69:5c:
35:87:2f:70:20:63:a2:1c:81:bf:e2:f3:93:95:40:55:fe:78:
44:c6:79:8a:46:d8:b3:d8:be:c5:e7:d8:be:8b:a0:dc:36:e6:
ec:fe:6f:31:a6:1e:1c:ec:0b:c4:1e:4b:f7:c4:93:97:2a:90:
a0:b1:8a:cb:75:4d:c6:0b:15:b2:f9:a6:84:4c:47:d4:c2:5b:
0f:34:1c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:03:02 2024 by rpki-client on console-ams.rpki-client.org