Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/psBbQ2p9V6bQMqQT0qMIQpItMTI.roa
File: psBbQ2p9V6bQMqQT0qMIQpItMTI.roa (raw, json)
Hash identifier: 6fMuzQ+qMKw8UPgaB02hk3ps1Ya5TM+deV2ChQHVEpw=
Subject key identifier: A6:C0:5B:43:6A:7D:57:A6:D0:32:A4:13:D2:A3:08:42:92:2D:31:32
Certificate issuer: /CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Certificate serial: 018CC64B50F81F80519DCC5A0F67EB55A676
Authority key identifier: DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/psBbQ2p9V6bQMqQT0qMIQpItMTI.roa
Signing time: Mon 01 Jan 2024 18:31:13 +0000
ROA not before: Mon 01 Jan 2024 18:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59931
IP address blocks: 109.75.64.0/24 maxlen: 24
109.75.66.0/24 maxlen: 24
109.75.67.0/24 maxlen: 24
109.75.65.0/24 maxlen: 24
109.75.70.0/24 maxlen: 24
109.75.71.0/24 maxlen: 24
109.75.68.0/24 maxlen: 24
109.75.69.0/24 maxlen: 24
109.75.73.0/24 maxlen: 24
109.75.74.0/24 maxlen: 24
109.75.72.0/24 maxlen: 24
109.75.77.0/24 maxlen: 24
109.75.78.0/24 maxlen: 24
109.75.75.0/24 maxlen: 24
109.75.76.0/24 maxlen: 24
109.75.79.0/24 maxlen: 24
185.204.48.0/24 maxlen: 24
185.204.50.0/24 maxlen: 24
185.204.51.0/24 maxlen: 24
185.204.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 Nov 2024 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:50:f8:1f:80:51:9d:cc:5a:0f:67:eb:55:a6:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Validity
Not Before: Jan 1 18:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6c05b436a7d57a6d032a413d2a30842922d3132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:66:b6:58:2a:7b:bb:1d:a2:df:7a:a2:9d:da:
6d:09:b9:c8:0f:f9:99:f8:a6:fc:8b:dd:cf:94:8b:
69:72:fc:12:21:b0:ef:90:27:e7:e2:30:fa:76:42:
63:be:36:b9:55:99:38:e4:1e:0a:8e:9d:0c:af:91:
01:28:89:81:86:8f:4c:ee:68:72:a6:cb:de:45:00:
13:9f:5d:41:34:e6:ba:64:21:2f:17:1d:4a:46:dd:
34:1c:5b:70:b3:93:d9:47:b4:07:4a:2d:10:d7:c1:
bd:9c:57:2a:3c:cd:2b:7c:0f:f2:eb:58:9c:32:0e:
47:95:c9:6e:9c:df:d8:a2:ec:72:48:c7:6f:36:ee:
bc:9e:b4:dd:97:f5:37:3d:b0:7e:ed:56:a5:f7:b6:
28:dd:b6:0a:6c:55:38:78:ce:15:0f:9e:56:b8:22:
25:3c:1e:6d:4c:b5:0d:44:cf:54:bd:c3:16:82:75:
16:7f:ff:37:6e:e6:62:bf:2f:d3:1a:bf:30:c0:5b:
4f:57:e8:63:f3:56:96:5f:5f:f2:7a:d6:83:bc:38:
e9:4f:a6:1a:bd:27:98:05:ac:4d:79:5a:a9:01:f5:
3f:22:9d:d7:23:ab:e1:15:a2:36:31:e6:3c:6f:1f:
58:0b:f8:3e:03:ff:28:56:d9:88:1d:03:d2:92:49:
2d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C0:5B:43:6A:7D:57:A6:D0:32:A4:13:D2:A3:08:42:92:2D:31:32
X509v3 Authority Key Identifier:
keyid:DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/psBbQ2p9V6bQMqQT0qMIQpItMTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.75.64.0/20
185.204.48.0/22
Signature Algorithm: sha256WithRSAEncryption
84:37:4f:16:03:75:42:da:2e:57:ae:d4:39:a1:c1:40:7a:79:
67:b9:c4:51:4d:39:e1:35:90:c0:01:e7:16:70:01:1b:e5:ce:
41:23:5a:76:e5:86:44:ca:67:aa:4a:95:30:50:36:5b:e7:80:
f7:2e:8f:18:20:69:2b:04:fa:d8:f0:8d:17:cf:6c:1a:6b:bc:
d8:e0:ed:5e:c6:5b:c7:ef:32:7a:7c:bf:29:15:bd:d8:7d:a7:
37:c8:39:d1:4a:3b:7e:81:0a:bf:8a:c5:19:be:04:b1:9d:c2:
a9:0c:42:2e:86:c9:8f:39:02:6c:bc:3d:ac:66:36:d2:da:b2:
59:cd:31:c3:de:34:41:eb:f2:88:3a:3a:bd:1c:b5:8e:1b:c7:
33:f5:98:d4:2a:83:d3:d7:35:df:d5:24:e1:6a:82:9d:77:d4:
5a:3d:6e:98:80:df:38:b5:da:b9:e9:73:a2:3c:35:32:fd:12:
cc:0a:bd:00:11:43:71:8e:1e:88:c3:17:86:4a:76:02:aa:f1:
ed:0e:69:8b:9b:8e:3f:f4:ed:c1:4b:99:bc:59:0a:66:65:b3:
d9:5c:8b:d1:36:e7:00:f7:84:58:0d:50:20:4c:96:c5:a2:a9:
b2:41:79:eb:56:4f:98:41:70:60:21:0a:60:81:35:a5:e3:ff:
23:a1:c6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 11:39:31 2024 by rpki-client on console-ams.rpki-client.org