Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dkoewsELHCXNrqhvzg9uZU25ICY.roa
File: dkoewsELHCXNrqhvzg9uZU25ICY.roa (raw, json)
Hash identifier: fLr4e21UfM1KLRMq3/X4979yfS/+DR65yWbE85qSlJc=
Subject key identifier: 76:4A:1E:C2:C1:0B:1C:25:CD:AE:A8:6F:CE:0F:6E:65:4D:B9:20:26
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019320320937534162551BC7A81C2988D7E6
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dkoewsELHCXNrqhvzg9uZU25ICY.roa
Signing time: Tue 12 Nov 2024 11:46:10 +0000
ROA not before: Tue 12 Nov 2024 11:46:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5606
IP address blocks: 85.120.16.0/24 maxlen: 24
85.120.17.0/24 maxlen: 24
85.120.18.0/24 maxlen: 24
85.120.19.0/24 maxlen: 24
193.226.68.0/24 maxlen: 24
193.226.69.0/24 maxlen: 24
193.226.70.0/24 maxlen: 24
193.226.71.0/24 maxlen: 24
194.102.91.0/24 maxlen: 24
217.156.46.0/24 maxlen: 24
217.156.47.0/24 maxlen: 24
217.156.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:20:32:09:37:53:41:62:55:1b:c7:a8:1c:29:88:d7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 12 11:46:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=764a1ec2c10b1c25cdaea86fce0f6e654db92026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:6b:b4:71:da:40:89:5c:c2:50:69:7d:99:
cb:c0:b7:95:69:0c:a2:08:be:68:77:ab:3b:a8:38:
c4:cb:cf:b7:e1:7f:bc:d1:23:83:24:01:d0:12:98:
19:5e:e8:ee:2c:14:d6:50:8b:81:a2:b7:17:f1:16:
23:20:09:58:85:c5:8b:b4:ac:96:14:03:2b:d3:d8:
dd:14:cd:67:e3:ed:64:32:06:f4:6d:01:a0:2f:fa:
04:07:48:d0:ad:90:3f:2e:79:27:c5:9b:39:44:73:
42:ac:33:05:f0:d8:32:b2:c1:1a:b6:6a:2f:da:14:
e2:7d:95:09:1b:bc:bc:41:2b:94:9f:4d:34:e0:b3:
3f:2f:7f:89:82:da:f1:2d:b8:84:a5:cf:0c:41:bd:
a1:a2:74:6a:3c:58:63:00:91:b5:91:46:71:e8:eb:
93:74:a6:9c:1b:b9:0a:00:81:60:f4:04:a9:d8:b6:
f8:53:fd:94:89:c1:7b:a4:22:22:35:2b:4e:b4:90:
5d:52:3a:01:fa:c5:3d:dd:cb:3d:ce:9a:cb:4a:31:
87:f4:cd:10:e2:b5:25:c6:98:ed:88:73:03:7b:79:
64:c5:80:7e:ff:16:01:11:0e:14:d1:36:6e:0c:ff:
cb:bf:23:d0:06:2d:e2:b1:14:49:b7:2d:ab:57:a9:
7b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4A:1E:C2:C1:0B:1C:25:CD:AE:A8:6F:CE:0F:6E:65:4D:B9:20:26
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dkoewsELHCXNrqhvzg9uZU25ICY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.16.0/22
193.226.68.0/22
194.102.91.0/24
217.156.46.0/23
217.156.86.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6f:87:28:25:74:7b:3e:d3:3e:f1:56:1a:c9:ea:7a:88:f6:
40:76:52:d8:ee:b1:8b:16:f2:7a:52:22:e5:a2:e8:d8:46:f5:
d1:1a:ab:a6:ce:7c:fe:93:ab:8a:0e:c6:b2:fc:ea:43:bb:52:
e1:34:e5:3d:06:ab:0a:22:40:5b:0e:5d:c8:5b:c5:72:fa:9d:
6f:c1:bd:97:47:a4:7f:7f:02:af:dc:47:70:e8:f3:05:e8:3e:
76:5c:a8:a7:2a:4f:87:2a:e4:81:9c:5e:0b:44:e8:01:13:ec:
77:a5:6a:c6:2f:32:ef:ea:e1:3b:c0:6b:22:70:c5:49:8d:33:
6d:c8:d6:13:8e:d6:e8:75:c9:57:bd:25:7b:70:37:79:c4:5b:
87:95:0e:32:ab:be:9d:f9:40:9d:91:9e:cb:ac:ed:b7:f6:a9:
94:37:73:71:7f:4b:d4:f8:69:f5:02:a4:cf:8c:da:cf:10:1c:
e9:08:5a:24:2a:ea:10:f0:eb:a4:90:69:6b:ad:dc:45:56:72:
cb:94:0e:7c:18:b3:bc:98:03:f0:76:19:67:c3:ae:43:75:82:
6e:28:f2:c8:28:59:9c:91:b9:50:27:f2:d7:b7:4f:b3:79:15:
34:13:3c:cf:0a:6c:48:9b:18:bf:80:d6:75:5c:af:d6:9a:0c:
bc:03:9c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:18:35 2024 by rpki-client on console-ams.rpki-client.org