Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/51omOLGiGiTNcsLK7UzpHCI51Kg.roa
File: 51omOLGiGiTNcsLK7UzpHCI51Kg.roa (raw, json)
Hash identifier: r4hPVET4vI80SQtb1iZKuncXtThZlKuV093kZXCXoyo=
Subject key identifier: E7:5A:26:38:B1:A2:1A:24:CD:72:C2:CA:ED:4C:E9:1C:22:39:D4:A8
Certificate issuer: /CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Certificate serial: 018CC5DCE792C9B9F973F62DC770C643DDBC
Authority key identifier: B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/51omOLGiGiTNcsLK7UzpHCI51Kg.roa
Signing time: Mon 01 Jan 2024 16:30:37 +0000
ROA not before: Mon 01 Jan 2024 16:30:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61275
IP address blocks: 188.93.184.0/21 maxlen: 21
185.24.188.0/22 maxlen: 22
85.93.224.0/19 maxlen: 19
178.248.96.0/21 maxlen: 21
91.135.48.0/21 maxlen: 21
91.135.58.0/24 maxlen: 24
5.100.176.0/21 maxlen: 21
91.135.56.0/23 maxlen: 23
77.223.164.0/22 maxlen: 22
77.223.161.0/24 maxlen: 24
185.3.0.0/22 maxlen: 22
77.223.162.0/23 maxlen: 23
77.223.172.0/22 maxlen: 22
5.100.184.0/22 maxlen: 22
91.135.60.0/22 maxlen: 22
77.223.168.0/22 maxlen: 22
91.135.59.0/24 maxlen: 24
77.223.176.0/20 maxlen: 20
2a03:ba02::/32 maxlen: 32
2a03:ba01::/32 maxlen: 32
2a03:ba00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.mft
rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:e7:92:c9:b9:f9:73:f6:2d:c7:70:c6:43:dd:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ac49d1ccdcaedd9a13f4803df1aedce6dc1112
Validity
Not Before: Jan 1 16:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e75a2638b1a21a24cd72c2caed4ce91c2239d4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:36:b8:27:17:07:28:ab:82:70:46:8b:b7:11:
e0:c8:c9:a6:95:d8:a1:24:e7:79:37:9f:6e:b4:03:
79:a5:4f:8c:e0:8f:ee:ba:7d:5b:4c:07:d7:ca:cf:
d5:11:a8:a8:98:34:00:d5:8f:72:88:ca:17:38:06:
a2:f7:ed:d7:b1:15:2f:fd:31:f9:0c:29:ed:e0:34:
44:16:0f:86:0a:9e:ec:e7:18:96:8b:7b:47:b7:6f:
90:46:f4:33:1c:70:5a:9c:4e:37:a2:60:d6:e9:c7:
bb:e4:72:ec:7a:c9:3c:e1:fc:c9:1a:76:19:d5:93:
b1:58:92:97:3f:b8:92:51:2e:48:ab:41:1d:ee:fe:
7d:27:61:5c:6e:ee:f2:df:ee:4a:1a:16:27:bb:53:
e8:80:ca:f1:4b:44:c0:b9:ec:16:63:12:69:fa:0a:
49:1e:e5:8e:00:17:5e:38:96:90:29:ed:82:a4:ab:
73:e5:7d:9b:e4:d5:3c:f5:a1:35:28:3c:96:97:97:
97:05:f7:40:0f:32:8b:7d:ea:00:13:34:5d:00:20:
8c:07:f2:2c:48:63:5d:d8:53:da:1e:f5:1b:58:95:
69:c8:01:7c:3d:a7:4e:03:98:14:53:34:bf:15:bd:
ff:a5:06:75:7a:0d:8e:71:7f:45:67:51:c6:93:0e:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5A:26:38:B1:A2:1A:24:CD:72:C2:CA:ED:4C:E9:1C:22:39:D4:A8
X509v3 Authority Key Identifier:
keyid:B9:AC:49:D1:CC:DC:AE:DD:9A:13:F4:80:3D:F1:AE:DC:E6:DC:11:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaxJ0czcrt2aE_SAPfGu3ObcERI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/51omOLGiGiTNcsLK7UzpHCI51Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/537191-1179-48ec-ad9f-ffe43a52d3f6/1/uaxJ0czcrt2aE_SAPfGu3ObcERI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.176.0-5.100.187.255
77.223.161.0-77.223.191.255
85.93.224.0/19
91.135.48.0/20
178.248.96.0/21
185.3.0.0/22
185.24.188.0/22
188.93.184.0/21
IPv6:
2a03:ba00::-2a03:ba02:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7d:03:7a:f2:a7:19:bd:26:16:8d:42:c7:ba:e0:0c:5b:32:ec:
4d:e6:99:fd:32:a9:b6:3e:27:e1:a7:e0:29:06:2c:bf:26:3e:
11:0b:25:ee:fd:b8:7c:5c:46:0e:48:cf:b7:d7:9f:dc:fc:cf:
54:68:28:37:53:3e:a7:bf:41:bb:43:09:31:6f:fc:c4:43:c8:
af:53:c3:74:cc:d5:bd:fe:74:4b:8a:fd:d7:5f:34:37:12:ca:
a4:a5:da:cf:91:c3:36:44:f9:d0:57:ec:be:42:22:80:31:86:
ba:26:5d:fb:d3:de:5c:28:5a:0d:9f:e1:9f:1f:02:91:a7:d1:
85:06:b4:5c:e2:c3:4f:3a:d3:6e:a2:ef:cd:b1:55:7c:e5:b9:
b4:b3:04:a1:03:4c:23:ca:99:b2:4c:63:c6:cf:32:14:f8:dc:
4a:88:9d:73:6f:89:a3:f1:22:c4:3b:ad:6f:f6:64:3b:fc:5b:
96:14:9b:b6:ce:a3:5e:5a:f6:14:6d:13:88:f6:b6:61:03:1d:
2b:26:14:f5:68:9f:d4:e4:5f:7e:13:94:04:a0:13:9e:da:51:
bb:0f:49:6f:5f:ae:99:c0:5f:46:2e:5b:07:b3:c6:46:3b:71:
7b:99:37:28:e7:65:82:2e:63:46:ee:13:88:6a:1d:12:f5:23:
e8:c7:d4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 16:43:50 2024 by rpki-client on console-ams.rpki-client.org