Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/NJEyDFdgPuwQ5u0Jfe2qmsaUK-4.roa
File: NJEyDFdgPuwQ5u0Jfe2qmsaUK-4.roa (raw, json)
Hash identifier: 6LRjOIsvwQ5wnTHJQ6QuJrrgZY7X0ZpkBxsyOfu7vXc=
Subject key identifier: 34:91:32:0C:57:60:3E:EC:10:E6:ED:09:7D:ED:AA:9A:C6:94:2B:EE
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018CC649DAFCA69DB8C266E90378BE0BB243
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/NJEyDFdgPuwQ5u0Jfe2qmsaUK-4.roa
Signing time: Mon 01 Jan 2024 18:29:38 +0000
ROA not before: Mon 01 Jan 2024 18:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42794
IP address blocks: 88.203.213.0/24 maxlen: 24
88.203.210.0/23 maxlen: 23
88.203.208.0/23 maxlen: 23
88.203.212.0/24 maxlen: 24
88.203.214.0/24 maxlen: 24
88.203.215.0/24 maxlen: 24
88.203.232.0/24 maxlen: 24
88.203.233.0/24 maxlen: 24
212.36.17.0/24 maxlen: 24
82.103.112.0/24 maxlen: 24
92.247.125.0/24 maxlen: 24
92.247.124.0/22 maxlen: 22
92.247.120.0/22 maxlen: 22
92.247.124.0/24 maxlen: 24
92.247.128.0/23 maxlen: 23
92.247.126.0/24 maxlen: 24
92.247.127.0/24 maxlen: 24
2a01:288:4004::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:da:fc:a6:9d:b8:c2:66:e9:03:78:be:0b:b2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 1 18:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3491320c57603eec10e6ed097dedaa9ac6942bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fb:59:9c:2c:0c:10:01:8d:33:be:e4:8d:0d:
c2:8b:cb:1c:f4:b0:f5:7a:40:82:e9:1e:f8:1c:17:
bc:37:0e:bb:ce:85:8b:76:02:88:ae:d1:ef:5a:ba:
80:76:8c:d4:6b:30:7b:88:af:95:22:73:8e:c0:83:
17:78:45:91:6d:d7:50:e9:b5:b4:58:15:fd:db:93:
02:c4:51:69:47:33:13:f7:20:d1:34:84:47:d5:ff:
73:05:6f:45:d0:79:52:5b:9e:f8:b9:63:e5:6a:34:
f9:c6:1e:b1:09:b2:1b:88:b4:a5:92:14:0a:90:13:
8e:5c:e6:2d:e5:60:16:0e:5f:ec:69:7a:77:68:e0:
8f:90:44:71:4e:d7:88:72:4e:00:31:12:75:d4:eb:
3e:cc:db:c8:86:c1:33:6e:eb:b8:bd:b7:65:53:4c:
c5:68:0e:52:db:13:70:59:fa:2f:95:23:c1:f7:45:
2f:c0:a2:85:e4:e2:07:ab:fa:db:a2:ff:a6:3c:5c:
98:e7:2e:65:f9:76:50:f4:91:c8:e3:b7:e5:a3:17:
28:0b:54:f0:6e:5c:f7:8b:62:d7:e9:60:e6:4d:48:
77:b2:42:42:17:7e:fc:1c:63:8f:b3:7a:ee:ba:c9:
01:fb:3f:fa:f9:b2:9e:61:4d:3a:6c:a6:64:7c:82:
e0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:91:32:0C:57:60:3E:EC:10:E6:ED:09:7D:ED:AA:9A:C6:94:2B:EE
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/NJEyDFdgPuwQ5u0Jfe2qmsaUK-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.112.0/24
88.203.208.0/21
88.203.232.0/23
92.247.120.0-92.247.129.255
212.36.17.0/24
IPv6:
2a01:288:4004::/48
Signature Algorithm: sha256WithRSAEncryption
89:d8:c3:43:18:87:b7:40:6e:d3:36:32:ed:41:a2:6c:ba:76:
d4:e0:47:81:32:03:ae:2c:2b:be:66:74:88:e3:91:45:15:fc:
06:5c:0a:5a:47:98:3e:eb:98:7f:18:36:82:b3:09:8c:33:85:
2f:50:52:5a:82:1b:b2:bb:5c:53:d5:34:75:73:69:45:cf:ab:
f2:e5:ef:23:e8:30:9e:63:71:09:f0:95:47:42:1f:7c:f3:48:
26:73:35:e0:16:6b:3b:4a:a8:34:86:24:ae:b6:2e:d8:52:00:
8a:40:f5:de:fd:49:1e:96:93:d9:7b:8f:e5:be:2d:9d:04:af:
42:fd:3e:2f:91:d7:ae:c7:33:ac:0a:23:20:8e:3d:f4:45:ce:
8f:56:7f:53:41:e8:bc:85:2a:a2:5f:4b:40:0b:e1:17:ee:d5:
e7:74:5d:7b:8b:ca:7b:b8:1f:7d:bf:cf:10:d1:a7:25:21:24:
bc:3c:d9:68:57:a1:3d:5d:b8:1d:e9:82:4b:e4:d4:8d:99:93:
a3:57:7d:bb:8d:1c:06:9a:fb:9d:74:e3:2b:89:82:b5:8b:35:
cc:dc:d8:aa:72:ad:1b:f0:89:7c:ef:72:ff:de:36:93:87:20:
15:39:a5:48:8a:43:eb:bf:57:cd:9e:af:0c:cf:ab:b5:54:84:
26:6e:35:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:31:49 2024 by rpki-client on console-ams.rpki-client.org