Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/DeqOYWIyDAYQ93C2nwhf051qwU8.roa
File: DeqOYWIyDAYQ93C2nwhf051qwU8.roa (raw, json)
Hash identifier: MVU4ZHv2Tu8O0dVyCrFxn4fsnn1DdRwtGb3KAMnqy+E=
Subject key identifier: 0D:EA:8E:61:62:32:0C:06:10:F7:70:B6:9F:08:5F:D3:9D:6A:C1:4F
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018E864AFC90A823979FB8B622AAB0C80234
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/DeqOYWIyDAYQ93C2nwhf051qwU8.roa
Signing time: Thu 28 Mar 2024 18:20:45 +0000
ROA not before: Thu 28 Mar 2024 18:20:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 5.181.19.0/24 maxlen: 24
5.182.244.0/24 maxlen: 24
5.182.245.0/24 maxlen: 24
5.182.246.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
89.200.217.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
146.19.12.0/24 maxlen: 24
185.93.52.0/24 maxlen: 24
185.93.53.0/24 maxlen: 24
185.93.54.0/24 maxlen: 24
185.93.55.0/24 maxlen: 24
185.107.132.0/24 maxlen: 24
185.195.253.0/24 maxlen: 24
185.195.254.0/24 maxlen: 24
185.195.255.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
185.233.247.0/24 maxlen: 24
2a05:f740::/29 maxlen: 29
2a06:af40::/29 maxlen: 29
2a0a:61c0::/29 maxlen: 29
2a0c:f700::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:4a:fc:90:a8:23:97:9f:b8:b6:22:aa:b0:c8:02:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Mar 28 18:20:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0dea8e6162320c0610f770b69f085fd39d6ac14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:02:f5:cb:9d:eb:2d:7a:a8:1d:26:41:c0:
c8:7c:82:de:08:42:0c:91:c2:c1:59:eb:d2:3f:47:
b9:8a:34:17:93:41:a4:6e:b3:fc:6d:64:2d:5d:0e:
88:fe:96:81:e5:5f:b2:87:f9:b1:95:2e:e6:d4:cd:
c0:fe:95:f4:7d:8b:70:29:e9:69:2e:5f:85:c1:97:
fe:6b:82:cd:7c:1a:ce:eb:49:66:dd:c9:15:fc:14:
f8:f8:29:37:0e:50:db:20:4b:83:69:55:df:f1:34:
42:a7:96:1d:4d:cb:df:74:85:e0:68:bd:bd:e0:c9:
97:95:6d:f2:c6:f2:d6:81:c1:65:6d:61:56:37:33:
7c:fa:68:bd:e5:90:2c:35:3c:a6:33:4b:1a:be:6d:
43:8a:44:91:d2:47:7e:1f:73:17:78:2e:b8:ac:22:
78:0a:de:4e:da:5e:de:24:ed:33:9d:45:a4:3b:9c:
4f:60:7a:7f:db:fb:71:cd:13:65:76:c3:95:ea:b5:
ea:d5:96:d0:86:4d:4e:c7:3f:a3:63:ad:b3:99:d9:
e8:01:0d:d4:20:85:74:4e:93:15:19:b2:18:c1:66:
a2:47:b0:09:85:79:66:c1:a4:ab:54:e0:0a:63:63:
fb:55:1c:d6:fd:f1:c1:12:0c:9a:ff:84:93:df:09:
7c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EA:8E:61:62:32:0C:06:10:F7:70:B6:9F:08:5F:D3:9D:6A:C1:4F
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/DeqOYWIyDAYQ93C2nwhf051qwU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.19.0/24
5.182.244.0-5.182.246.255
89.200.216.0-89.200.218.255
93.157.189.0/24
93.157.191.0/24
146.19.12.0/24
185.93.52.0/22
185.107.132.0/24
185.195.253.0-185.195.255.255
185.233.246.0/23
IPv6:
2a05:f740::/29
2a06:af40::/29
2a0a:61c0::/29
2a0c:f700::/29
Signature Algorithm: sha256WithRSAEncryption
9c:a1:6e:aa:a7:84:89:ac:58:5a:24:0b:c4:ca:44:ec:18:2e:
69:41:87:ea:22:e1:82:e1:a7:ea:05:80:c1:ff:4b:f8:25:47:
67:97:c9:79:25:cc:35:21:94:0c:5c:9b:10:29:53:51:18:5c:
91:13:29:23:f4:32:18:5a:e2:a9:7a:fe:55:50:19:c7:55:ae:
ad:9b:77:6c:23:0e:32:d4:14:d6:8b:5e:7c:0f:c3:ff:38:2e:
07:67:ea:1a:2f:95:7d:08:3a:6d:f3:ed:33:6e:28:18:17:8d:
73:c0:08:0d:18:5e:71:c6:dc:eb:bc:b6:5b:69:b1:d9:82:c6:
62:a4:f5:fd:e3:55:67:d6:46:91:fb:a7:7f:0d:da:00:db:97:
6a:96:f5:9d:4b:07:50:fb:96:f9:ad:74:67:47:8a:93:be:d1:
0d:99:4a:da:22:66:29:43:b9:a0:81:40:5c:47:92:24:77:5a:
42:ee:a2:2d:61:5f:20:a1:1c:33:05:ab:98:72:89:1c:28:f0:
56:87:fa:9f:d5:be:c4:55:53:dc:a0:13:e7:cc:bd:20:7a:19:
0a:47:a3:81:72:2c:e8:09:74:17:48:78:c5:90:c9:1b:a0:61:
f5:0a:7f:43:22:fa:cf:f1:00:e5:e9:e7:bb:9c:e0:1b:3e:76:
8b:51:80:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:04:25 2024 by rpki-client on console-fra.rpki-client.org