Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C_V3ywhMMiZf-5d-MsYMldvuZrI.roa
File: C_V3ywhMMiZf-5d-MsYMldvuZrI.roa (raw, json)
Hash identifier: TqqKfBRHFm0G2ecG/gyRctNffFxTOjYKaX66nsVFiPc=
Subject key identifier: 0B:F5:77:CB:08:4C:32:26:5F:FB:97:7E:32:C6:0C:95:DB:EE:66:B2
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018F5C8515CBA813FB58D8C18F1CC2F2F0F5
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C_V3ywhMMiZf-5d-MsYMldvuZrI.roa
Signing time: Thu 09 May 2024 08:42:56 +0000
ROA not before: Thu 09 May 2024 08:42:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6663
IP address blocks: 81.180.201.0/24 maxlen: 24
81.180.206.0/24 maxlen: 24
81.181.88.0/21 maxlen: 21
193.226.61.0/24 maxlen: 24
193.226.113.0/24 maxlen: 24
193.226.114.0/24 maxlen: 24
193.226.117.0/24 maxlen: 24
193.226.119.0/24 maxlen: 24
193.226.122.0/24 maxlen: 24
193.226.124.0/24 maxlen: 24
193.226.126.0/24 maxlen: 24
193.230.176.0/24 maxlen: 24
193.230.178.0/24 maxlen: 24
193.230.181.0/24 maxlen: 24
193.230.183.0/24 maxlen: 24
193.230.189.0/24 maxlen: 24
193.230.200.0/24 maxlen: 24
193.230.201.0/24 maxlen: 24
193.231.65.0/24 maxlen: 24
193.231.68.0/24 maxlen: 24
193.231.73.0/24 maxlen: 24
193.231.76.0/24 maxlen: 24
193.231.78.0/24 maxlen: 24
193.231.80.0/24 maxlen: 24
193.231.137.0/24 maxlen: 24
194.153.246.0/24 maxlen: 24
217.156.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 02:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5c:85:15:cb:a8:13:fb:58:d8:c1:8f:1c:c2:f2:f0:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 9 08:42:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bf577cb084c32265ffb977e32c60c95dbee66b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1e:b2:14:8a:ca:ac:5c:86:e6:22:b0:f6:5b:
89:90:cc:89:98:30:fc:26:ac:78:a1:ab:92:64:c5:
ff:82:54:93:40:27:b3:8b:a4:f5:10:51:17:95:95:
67:f0:c8:82:91:27:2d:17:63:c1:34:3b:c5:bb:0c:
c0:57:bc:d1:d6:60:96:85:93:02:6e:01:ce:85:a5:
ef:9c:eb:9a:8c:e7:5e:83:a5:f2:af:d5:c5:38:3f:
70:38:1a:7c:00:be:27:38:5e:a0:79:a7:d4:b6:14:
1d:b6:c2:f8:58:b2:19:8d:be:db:91:3a:08:38:3e:
74:df:06:69:53:42:7b:40:25:d2:08:24:c9:c6:6f:
ea:0d:78:6c:b9:f2:a0:18:6d:d1:a4:5b:65:c7:2d:
79:4f:b1:f1:e5:45:dc:fb:da:47:2a:dc:d6:31:f6:
17:0e:1e:13:1e:f6:a0:da:b1:8f:d7:a6:13:e5:e4:
38:7c:ec:c3:bc:a7:22:89:4b:85:bf:f8:29:06:4e:
61:5b:c3:51:5e:7c:20:07:0d:d8:07:23:9f:c3:b1:
59:34:6c:43:55:ad:dc:2b:6b:23:17:a1:87:65:f6:
e0:27:7c:85:07:a3:bc:ff:e3:da:ce:38:a5:87:cb:
17:0e:66:3c:e7:5b:08:49:00:7c:26:9a:05:f8:c6:
a5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F5:77:CB:08:4C:32:26:5F:FB:97:7E:32:C6:0C:95:DB:EE:66:B2
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C_V3ywhMMiZf-5d-MsYMldvuZrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.180.201.0/24
81.180.206.0/24
81.181.88.0/21
193.226.61.0/24
193.226.113.0-193.226.114.255
193.226.117.0/24
193.226.119.0/24
193.226.122.0/24
193.226.124.0/24
193.226.126.0/24
193.230.176.0/24
193.230.178.0/24
193.230.181.0/24
193.230.183.0/24
193.230.189.0/24
193.230.200.0/23
193.231.65.0/24
193.231.68.0/24
193.231.73.0/24
193.231.76.0/24
193.231.78.0/24
193.231.80.0/24
193.231.137.0/24
194.153.246.0/24
217.156.53.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9e:26:1d:7f:fa:b0:8b:f7:26:ab:2a:83:0d:5e:4b:ee:9c:
e1:02:64:76:75:43:1c:1b:0b:a2:25:a7:83:8d:98:cb:8c:75:
13:0c:a6:36:02:aa:c0:ed:cc:c8:ab:fe:33:48:a5:4a:89:76:
1d:33:06:a3:66:58:f9:67:d7:da:20:53:71:e7:18:c2:51:7f:
ae:99:ce:ba:ba:d8:fa:d3:ab:93:4a:d3:b2:2b:dc:26:ee:3c:
a3:84:5d:85:ff:d6:84:84:7e:8c:78:30:77:0d:ed:7d:32:8a:
42:5c:bb:8d:50:0c:63:ac:e3:2f:06:c4:e0:cd:96:d1:72:25:
52:23:72:08:c0:be:62:b2:83:ee:2c:97:71:33:61:24:13:2d:
ec:91:2d:60:c3:af:27:01:5c:8d:df:91:30:66:90:ff:a2:dc:
8f:47:34:d1:85:3f:73:2b:fd:c5:dc:5b:1e:5a:57:af:94:64:
b5:3a:33:69:8e:52:3f:ba:c5:ec:d8:59:54:25:05:7c:7d:f4:
4e:87:a9:d0:ef:b1:c9:de:7b:00:39:0f:15:cc:1a:63:7a:e2:
ed:1c:26:45:2e:59:5e:8a:da:e5:3f:f1:16:d3:bb:1b:63:e9:
f3:44:f0:fa:25:90:91:98:87:e5:fa:2c:a7:50:f9:73:5a:4f:
25:e9:d4:ae
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Jun 3 11:26:55 2024 by rpki-client on console-fra.rpki-client.org