Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/FQL-xR9Gs9GDSr31sEgyCYeuGtQ.roa
File: FQL-xR9Gs9GDSr31sEgyCYeuGtQ.roa (raw, json)
Hash identifier: DRC/mPMoPdr4UwGlVHtBb5Cpf7uuIYmiVWqSyfl5H/s=
Subject key identifier: 15:02:FE:C5:1F:46:B3:D1:83:4A:BD:F5:B0:48:32:09:87:AE:1A:D4
Certificate issuer: /CN=2236b2b8afa6036d2c8e8317736faaa72d80c4f2
Certificate serial: 018CC94DB6FDF6524F8414F62CAAC2401EF5
Authority key identifier: 22:36:B2:B8:AF:A6:03:6D:2C:8E:83:17:73:6F:AA:A7:2D:80:C4:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IjayuK-mA20sjoMXc2-qpy2AxPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/FQL-xR9Gs9GDSr31sEgyCYeuGtQ.roa
Signing time: Tue 02 Jan 2024 08:32:42 +0000
ROA not before: Tue 02 Jan 2024 08:32:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29067
IP address blocks: 193.29.220.0/24 maxlen: 24
185.159.140.0/24 maxlen: 24
185.159.141.0/24 maxlen: 24
195.47.253.0/24 maxlen: 24
109.70.104.0/22 maxlen: 24
109.70.111.0/24 maxlen: 24
109.70.108.0/24 maxlen: 24
109.70.109.0/24 maxlen: 24
2001:4130:50f1::/48 maxlen: 48
2001:4130:141::/48 maxlen: 48
2001:4130::/32 maxlen: 48
2001:67c:258::/48 maxlen: 48
2001:4130:20::/48 maxlen: 48
2001:4130:b0::/48 maxlen: 48
2001:4130:ce::/48 maxlen: 48
2001:4130:cd::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/IjayuK-mA20sjoMXc2-qpy2AxPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/IjayuK-mA20sjoMXc2-qpy2AxPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IjayuK-mA20sjoMXc2-qpy2AxPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:b6:fd:f6:52:4f:84:14:f6:2c:aa:c2:40:1e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2236b2b8afa6036d2c8e8317736faaa72d80c4f2
Validity
Not Before: Jan 2 08:32:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1502fec51f46b3d1834abdf5b048320987ae1ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:70:98:3d:9f:44:ee:da:a4:1e:33:a9:27:59:
b2:87:57:72:75:e3:50:99:dd:8c:5d:3e:6f:3c:57:
65:db:91:71:7b:af:b0:0e:69:13:05:0e:28:f3:d7:
77:40:fa:bf:7a:de:af:01:0f:8a:df:44:cb:2f:c3:
56:12:cf:87:b3:67:42:f0:2d:cc:72:66:75:3d:c2:
c6:95:f4:05:9f:64:80:91:81:2b:ca:06:ca:84:15:
8c:8f:7b:06:d0:78:87:90:c6:41:03:cc:06:3d:43:
20:5f:b7:48:1e:4a:c2:27:22:4e:93:af:87:a5:7e:
8b:53:f9:6a:28:ee:ec:f2:10:50:26:bd:3e:c1:5c:
96:1c:09:81:a2:11:26:58:9d:2f:16:d1:de:ad:bb:
ad:17:e7:f0:1e:42:84:89:f1:3d:a9:a7:14:e3:f8:
e3:e7:e3:06:f4:87:67:1f:7a:b4:28:4a:70:1d:5c:
b7:a9:84:cd:dd:65:ba:f5:40:55:b7:bd:10:58:30:
c4:5d:73:e5:01:93:de:24:36:f4:f0:04:98:9c:ff:
c8:b3:b8:32:63:71:28:df:a4:33:1e:e9:8d:a9:80:
49:17:7f:53:7f:09:dd:53:65:aa:98:8c:81:de:22:
b4:5e:a5:1e:b6:00:82:f7:e4:1d:4c:25:4a:4b:cd:
53:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:02:FE:C5:1F:46:B3:D1:83:4A:BD:F5:B0:48:32:09:87:AE:1A:D4
X509v3 Authority Key Identifier:
keyid:22:36:B2:B8:AF:A6:03:6D:2C:8E:83:17:73:6F:AA:A7:2D:80:C4:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IjayuK-mA20sjoMXc2-qpy2AxPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/FQL-xR9Gs9GDSr31sEgyCYeuGtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6f895b-7977-445d-b72c-8b5ef41d8c25/1/IjayuK-mA20sjoMXc2-qpy2AxPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.104.0-109.70.109.255
109.70.111.0/24
185.159.140.0/23
193.29.220.0/24
195.47.253.0/24
IPv6:
2001:67c:258::/48
2001:4130::/32
Signature Algorithm: sha256WithRSAEncryption
40:31:38:e6:9d:5e:87:2d:42:13:48:7b:25:a0:8e:30:29:2a:
eb:d8:a1:2f:bd:8e:8d:c3:74:3e:77:99:22:4c:a0:44:61:01:
cc:66:70:14:00:76:70:29:7f:47:68:1b:af:bd:68:d6:74:31:
f5:fd:af:49:32:6a:db:73:7d:a5:ed:c2:73:6d:1a:2c:22:ce:
1a:51:61:0b:06:ba:ec:61:60:69:01:1d:15:76:b1:1a:3f:f5:
0f:34:f0:43:be:83:00:2d:90:c8:e6:4f:2c:9e:e6:9d:35:33:
5a:e4:ff:42:92:45:ab:6b:7b:3d:51:88:1a:ec:8b:0c:c5:de:
f6:aa:b3:91:4d:83:6b:67:2f:c8:be:26:56:ad:f4:87:27:44:
45:b7:d4:c1:55:3c:1b:79:2a:a0:24:84:af:a4:40:16:44:b4:
30:b7:99:43:01:89:ca:3f:06:2a:7e:a7:32:88:4e:72:fc:58:
e6:3c:19:42:67:44:cc:6e:48:95:a6:64:af:10:d0:ef:ef:ce:
91:5b:b2:e2:2d:7f:6f:c1:a8:11:60:7e:c4:94:bd:62:4f:e6:
ce:dc:63:b1:20:e7:38:53:cd:34:0e:ec:d6:c5:9e:68:dd:79:
e0:ef:26:52:d5:ee:5c:cc:0e:62:c2:f8:f1:5e:04:f7:8d:3f:
49:57:10:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:28 2024 by rpki-client on console-ams.rpki-client.org