Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/j0hbavy4_Sas4WiQN5FqUf6Y5m8.roa
File: j0hbavy4_Sas4WiQN5FqUf6Y5m8.roa (raw, json)
Hash identifier: yJhJqhe88zCebvXz67Q9S4jwnsDBJ6qQ0NaB/25eBos=
Subject key identifier: 8F:48:5B:6A:FC:B8:FD:26:AC:E1:68:90:37:91:6A:51:FE:98:E6:6F
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FEDCEDB064EE699E2289883381DAF9C86
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/j0hbavy4_Sas4WiQN5FqUf6Y5m8.roa
Signing time: Thu 06 Jun 2024 13:48:27 +0000
ROA not before: Thu 06 Jun 2024 13:48:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 07:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:ce:db:06:4e:e6:99:e2:28:98:83:38:1d:af:9c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 6 13:48:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f485b6afcb8fd26ace1689037916a51fe98e66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:48:36:d7:f7:7d:c6:3c:73:77:96:56:b5:c3:
79:5d:9f:5b:90:22:44:b5:ae:af:f7:55:12:2a:7c:
e1:e3:f0:ea:6c:12:cf:53:d7:16:e1:de:2c:a3:45:
81:72:0d:4b:7b:15:bb:59:f1:b8:db:11:5b:d7:9b:
1e:4a:d4:c1:e9:24:22:a8:b8:d1:f0:32:dd:75:85:
9d:33:5b:dd:ea:47:c1:20:d5:16:8f:3b:bf:b0:88:
d7:95:46:9c:79:fd:2a:58:f2:c3:99:d0:1a:6d:0f:
b3:b8:ee:4b:f9:4a:f2:92:e5:aa:da:f8:59:e8:74:
d9:e1:a6:c0:47:78:2b:e0:0b:00:00:30:36:54:2f:
b6:8e:36:b6:03:d9:7a:b3:c2:f2:84:d8:7a:04:0f:
87:6a:74:f2:14:9f:f5:bd:f5:b2:fd:45:0d:60:f5:
f7:69:54:93:37:fa:6a:ed:43:f0:3e:5b:0b:ed:cd:
4d:32:61:23:f5:d1:c1:ce:c5:d3:50:db:0b:c8:4a:
4e:98:36:a7:39:ce:b9:cd:f4:3d:71:01:29:10:38:
6a:1c:2f:0a:0d:7c:d3:1b:d1:e5:ab:1b:e5:1c:21:
2a:1e:ff:a7:15:39:d0:39:08:34:ad:23:47:0e:56:
e8:ce:6b:3a:fc:ac:ae:82:ac:2d:bb:bb:6f:13:cb:
0c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:48:5B:6A:FC:B8:FD:26:AC:E1:68:90:37:91:6A:51:FE:98:E6:6F
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/j0hbavy4_Sas4WiQN5FqUf6Y5m8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
46:bd:d5:af:b1:c4:d3:b9:b3:6d:94:72:8b:33:49:b0:6e:7b:
41:47:19:5f:fe:5b:65:8f:84:bc:9c:1f:15:03:9c:ca:ff:16:
4c:ab:da:de:af:e2:64:02:ef:6c:f9:d5:6c:1c:6e:0b:ae:f4:
49:83:cb:d9:01:e6:7e:6e:2f:e9:60:fc:bb:fb:29:00:66:01:
64:4d:da:90:7f:b6:41:08:bb:45:ac:db:d1:5a:02:59:bf:39:
0a:70:da:f1:df:1c:a1:39:7a:0f:8a:e4:13:4b:8e:35:3f:e1:
57:07:38:dc:a2:33:6a:f3:dc:46:cf:52:64:96:4b:b0:70:7a:
0e:c4:3d:ae:fe:53:c3:d4:9d:a3:46:29:d1:01:fa:b4:f5:5f:
66:a2:11:41:44:ef:14:12:c7:8f:0d:7f:4d:c0:20:64:31:3f:
3f:c0:89:3f:c8:88:f1:01:47:bb:c4:8d:ad:e1:db:b1:fc:0e:
e6:c9:73:d9:96:e8:f0:4a:a2:02:68:e8:03:24:b2:47:ed:78:
15:56:71:ba:7d:1c:1f:e4:85:ec:d7:2e:68:87:ad:75:6c:85:
0d:f2:41:b2:fb:2f:13:21:ce:84:95:40:58:49:95:c1:8b:db:
f5:64:7b:2c:66:6a:1f:0f:68:ed:13:1c:69:3c:d5:ca:b7:cc:
75:37:61:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 12:30:49 2024 by rpki-client on console-fra.rpki-client.org