Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/PS8WrtEjV8A63f5p0a7DMwCpLe8.roa
File: PS8WrtEjV8A63f5p0a7DMwCpLe8.roa (raw, json)
Hash identifier: OOKos+9NyL5AK9cxQtvIJgaUf48CDY2jvt4jxjCb/L8=
Subject key identifier: 3D:2F:16:AE:D1:23:57:C0:3A:DD:FE:69:D1:AE:C3:33:00:A9:2D:EF
Certificate issuer: /CN=5b7a905e25a4d5cccb2eebe4e2d5c3920819758e
Certificate serial: 018CC94DC62A465299F95835F962B883D16E
Authority key identifier: 5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/PS8WrtEjV8A63f5p0a7DMwCpLe8.roa
Signing time: Tue 02 Jan 2024 08:32:46 +0000
ROA not before: Tue 02 Jan 2024 08:32:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62250
IP address blocks: 185.119.165.0/24 maxlen: 24
185.119.164.0/22 maxlen: 22
185.119.166.0/24 maxlen: 24
185.119.164.0/24 maxlen: 24
185.119.167.0/24 maxlen: 24
185.119.166.0/23 maxlen: 23
185.110.252.0/22 maxlen: 22
185.110.253.0/24 maxlen: 24
185.110.252.0/24 maxlen: 24
185.110.254.0/24 maxlen: 24
185.118.152.0/22 maxlen: 22
185.110.255.0/24 maxlen: 24
185.118.152.0/24 maxlen: 24
185.118.153.0/24 maxlen: 24
185.118.154.0/24 maxlen: 24
185.118.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:c6:2a:46:52:99:f9:58:35:f9:62:b8:83:d1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b7a905e25a4d5cccb2eebe4e2d5c3920819758e
Validity
Not Before: Jan 2 08:32:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d2f16aed12357c03addfe69d1aec33300a92def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7d:88:65:0c:b2:a9:7f:6d:a2:89:ce:e2:9f:
d2:0a:36:ed:10:b4:78:4b:b7:4f:a9:38:1d:7f:db:
e0:e6:68:0a:51:cd:f6:89:c7:12:df:ac:15:e8:0c:
b3:ad:01:6e:35:1f:93:6c:92:99:db:03:52:33:b4:
cc:6b:1f:2a:9c:cc:bc:85:4a:68:71:21:db:c1:f5:
5e:0e:47:bb:85:03:d1:e5:31:2e:2f:65:f4:0b:f3:
5c:f6:cd:56:8e:dd:9c:4b:42:d5:55:7b:1f:1a:2e:
4f:ee:1c:13:5d:75:67:bb:69:39:1e:db:d5:d2:bd:
a6:3b:c3:41:53:4a:5b:b5:78:a2:f9:8e:f8:bc:cf:
87:be:2e:2a:00:ff:c3:cd:4f:15:ae:d4:a7:ea:b5:
26:25:51:cf:1b:24:bd:d3:12:87:5c:ae:47:af:a8:
35:ac:2c:75:2d:f9:b6:c6:fb:f3:2e:cb:7d:b0:d3:
e3:4f:7b:b3:92:26:51:6a:29:d8:a1:7e:c0:29:c4:
5d:87:14:17:17:c1:f0:0e:da:36:ca:6e:a9:7c:e8:
fd:96:10:a9:eb:5f:46:fa:72:f9:aa:bf:7a:8e:80:
21:9d:80:a7:d5:e5:da:fa:64:ea:3c:57:f5:eb:8f:
bc:ce:e6:be:21:4e:80:64:27:f3:79:e7:07:0b:d6:
60:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2F:16:AE:D1:23:57:C0:3A:DD:FE:69:D1:AE:C3:33:00:A9:2D:EF
X509v3 Authority Key Identifier:
keyid:5B:7A:90:5E:25:A4:D5:CC:CB:2E:EB:E4:E2:D5:C3:92:08:19:75:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W3qQXiWk1czLLuvk4tXDkggZdY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/PS8WrtEjV8A63f5p0a7DMwCpLe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/c12395-c0f8-4e05-8cb1-73a3d07d2c31/1/W3qQXiWk1czLLuvk4tXDkggZdY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.252.0/22
185.118.152.0/22
185.119.164.0/22
Signature Algorithm: sha256WithRSAEncryption
90:4a:86:ed:68:85:5d:e3:a9:03:13:a9:4d:80:6a:d6:11:22:
57:80:14:db:c3:7f:8f:90:9a:bf:e1:c1:5e:a3:24:19:8f:0f:
18:9f:eb:78:0b:f9:a7:74:7c:bb:d6:5c:88:13:31:ef:54:d4:
27:8a:10:3a:c7:4d:1c:93:45:eb:e1:50:32:92:d1:ff:98:ac:
58:be:38:40:0e:cd:35:2a:a4:10:1e:22:c4:f6:9a:c7:cd:cb:
53:2d:d7:64:bd:51:f4:5d:8f:6d:dc:3f:61:bf:23:42:9e:33:
58:50:92:fe:7e:85:b9:21:51:3e:14:7d:fa:32:65:1b:bd:95:
24:9e:4c:97:c5:cf:cf:4b:00:c0:f2:42:65:d4:e3:16:15:47:
ed:97:4d:98:de:44:69:15:ef:6f:88:1c:eb:5b:4e:01:17:ff:
5e:e5:52:e7:fd:d3:ef:c4:56:51:0c:a4:57:c2:9e:a3:b3:76:
8d:67:96:41:0b:4b:50:e6:5b:0b:6a:82:c7:30:68:8d:0f:91:
35:12:88:2a:6d:e3:03:3f:8f:a1:25:66:5f:75:9e:99:bb:41:
d8:cc:52:43:31:0c:3e:a4:3b:8e:4f:de:00:4b:72:c4:80:c8:
3e:bf:a8:e1:ea:48:22:36:93:9d:e4:49:15:d7:e4:42:06:f3:
06:83:14:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:21:53 2024 by rpki-client on console-fra.rpki-client.org