Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jQy7HDhcb0l3Zd0ukufZP4hBMAg.roa
File: jQy7HDhcb0l3Zd0ukufZP4hBMAg.roa (raw, json)
Hash identifier: eML0L0lBaVkvyO3Vzd7rScBKdzi8fTAtn2pAQlumx7k=
Subject key identifier: 8D:0C:BB:1C:38:5C:6F:49:77:65:DD:2E:92:E7:D9:3F:88:41:30:08
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 019007F9DF73293BC2FB1B2F833FE6C897C8
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jQy7HDhcb0l3Zd0ukufZP4hBMAg.roa
Signing time: Tue 11 Jun 2024 15:45:34 +0000
ROA not before: Tue 11 Jun 2024 15:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35277
IP address blocks: 5.8.44.0/24 maxlen: 24
5.8.45.0/24 maxlen: 24
5.8.46.0/24 maxlen: 24
5.8.47.0/24 maxlen: 24
5.101.44.0/24 maxlen: 24
5.101.45.0/24 maxlen: 24
5.101.46.0/24 maxlen: 24
5.101.47.0/24 maxlen: 24
5.188.50.0/24 maxlen: 24
5.188.200.0/24 maxlen: 24
5.188.201.0/24 maxlen: 24
5.188.202.0/24 maxlen: 24
5.189.216.0/24 maxlen: 24
5.189.217.0/24 maxlen: 24
5.189.218.0/24 maxlen: 24
5.189.219.0/24 maxlen: 24
5.189.252.0/24 maxlen: 24
5.189.253.0/24 maxlen: 24
5.189.254.0/24 maxlen: 24
5.189.255.0/24 maxlen: 24
91.243.40.0/24 maxlen: 24
91.243.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:f9:df:73:29:3b:c2:fb:1b:2f:83:3f:e6:c8:97:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jun 11 15:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d0cbb1c385c6f497765dd2e92e7d93f88413008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:54:2e:fb:f4:9f:5d:74:1d:99:b2:b3:b8:1a:
37:b4:d2:3c:41:a3:4d:33:65:ee:79:69:34:20:ff:
d8:65:b5:b5:45:40:bd:fd:46:11:a1:13:c1:e2:fb:
02:f8:ac:8a:13:ae:83:5b:d0:ec:d4:ab:e7:24:5f:
06:5a:3d:2f:61:87:6a:d6:3a:09:69:c4:6c:fc:0f:
bb:f2:ba:cb:60:ce:c0:bf:a7:07:7d:e6:1b:9c:6f:
0d:18:1a:7e:99:5f:f9:09:a0:0b:9e:c3:9b:73:03:
e4:ef:c9:5d:23:f8:3e:ef:a8:e0:b9:b9:09:ad:31:
1b:f8:12:da:64:52:59:ec:71:14:6b:5d:d8:2b:87:
a1:db:3b:79:c2:fe:af:62:78:e0:d7:a2:db:0b:7f:
1b:0a:ab:b2:17:a5:37:b1:6e:48:9c:ba:f4:ac:28:
51:55:c8:5f:44:3b:f2:ac:a8:55:6f:8a:d4:9f:8e:
61:52:e8:38:bd:c1:9d:de:1b:67:a2:63:f8:27:28:
f0:66:6b:64:15:25:dd:af:13:11:9e:1d:3e:b7:ac:
b3:30:50:01:dd:25:be:3b:34:ca:d0:61:56:2a:82:
f1:1a:e4:89:35:dd:88:93:5f:6d:1a:c7:47:02:6c:
54:dd:32:01:5d:4e:e8:51:c7:fe:df:0f:57:29:2d:
9a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:0C:BB:1C:38:5C:6F:49:77:65:DD:2E:92:E7:D9:3F:88:41:30:08
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jQy7HDhcb0l3Zd0ukufZP4hBMAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.44.0/22
5.101.44.0/22
5.188.50.0/24
5.188.200.0-5.188.202.255
5.189.216.0/22
5.189.252.0/22
91.243.40.0/24
91.243.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:e5:5b:d3:42:16:a6:c2:7b:ef:99:ae:17:ee:d2:40:76:d7:
93:95:9f:07:d8:e0:81:82:97:2d:19:c1:97:5a:7a:16:7d:15:
7f:0a:33:8a:cf:8a:d0:f5:2f:5e:6a:3d:80:bb:b8:09:b8:e0:
28:38:65:0f:12:a9:7f:75:a3:d6:e8:04:c7:bb:38:91:3e:90:
e3:a2:aa:e1:f0:9f:30:7a:63:ef:08:eb:42:a7:26:b8:fd:0b:
51:c5:e4:19:29:80:f0:5f:12:f9:fc:a7:e4:53:7d:63:54:c7:
23:ef:34:18:b5:82:b7:41:fa:12:9b:f5:58:9e:b8:16:90:cd:
c6:6a:e2:97:33:99:d7:d1:fe:b4:1f:05:48:25:35:fa:33:81:
c8:72:ed:e8:e3:68:01:a6:93:dd:29:c7:14:2d:4f:e4:d7:8a:
69:a5:58:36:d6:01:3d:19:9d:79:1a:ba:c3:e7:ff:26:ed:da:
ae:db:cf:5b:e5:5c:07:83:83:94:44:eb:27:c4:04:a6:14:54:
49:fd:6b:1c:a7:37:31:33:65:b7:9e:38:0a:65:34:e5:c7:c9:
af:bc:46:05:dc:dc:60:fa:a2:71:45:f9:a7:b8:09:94:94:0e:
50:07:13:03:d9:8e:a7:20:1c:5e:17:65:98:72:45:c1:c0:97:
2b:b9:ba:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 17:10:25 2024 by rpki-client on console-fra.rpki-client.org