Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/yCnIPs_PPzc2V24ZGu_Hzjdxq-g.roa
File: yCnIPs_PPzc2V24ZGu_Hzjdxq-g.roa (raw, json)
Hash identifier: j5Vg4KEPVmnnvJxOMrLwYd43G3c4mcjHShDpQ8cwyO8=
Subject key identifier: C8:29:C8:3E:CF:CF:3F:37:36:57:6E:19:1A:EF:C7:CE:37:71:AB:E8
Certificate issuer: /CN=e22277fdf65828ef40b58ce101946595507f1330
Certificate serial: 018CC86F4695575E2A963DC6448F9348A42B
Authority key identifier: E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/yCnIPs_PPzc2V24ZGu_Hzjdxq-g.roa
Signing time: Tue 02 Jan 2024 04:29:44 +0000
ROA not before: Tue 02 Jan 2024 04:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200083
IP address blocks: 62.182.16.0/21 maxlen: 21
185.41.8.0/22 maxlen: 22
2a04:84c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:46:95:57:5e:2a:96:3d:c6:44:8f:93:48:a4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22277fdf65828ef40b58ce101946595507f1330
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c829c83ecfcf3f3736576e191aefc7ce3771abe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:43:56:69:9d:ed:10:9a:57:68:eb:d3:62:fb:
09:7e:6e:ea:66:e2:21:72:df:35:2c:12:2e:b7:60:
d9:dc:d2:03:4b:a5:8f:41:88:c0:2c:cb:5c:7a:d4:
a5:00:48:65:59:b8:d5:50:89:72:e9:4c:54:2a:c7:
80:82:0d:5e:ad:a2:ed:8b:da:56:b8:30:86:bb:f3:
81:c1:34:2c:67:23:a9:c2:73:d6:fe:e6:5c:9f:42:
c1:49:2d:b0:a9:66:d3:2a:f3:bb:b3:8d:1a:c3:f9:
b9:54:24:f0:9a:c9:ba:06:22:6d:83:36:c5:cf:c3:
82:f9:89:73:de:52:c6:be:f9:25:2e:c6:9c:a4:fd:
d4:1c:81:91:c2:b3:bf:2b:77:63:ec:0c:97:bc:af:
dc:ac:07:69:e5:2d:22:93:b5:51:12:d9:66:64:b4:
af:23:17:6a:89:40:cc:04:c6:b2:6b:aa:ac:aa:1d:
02:76:e5:74:ab:32:f4:b8:59:07:6b:5d:ef:87:1a:
9b:fa:c0:21:ac:8b:37:37:cf:48:a2:11:bf:c2:c5:
b4:8f:13:49:a7:11:a2:27:06:31:18:f6:6e:53:85:
14:27:2b:00:06:0f:be:23:fc:f7:0d:66:0b:c6:14:
52:fd:2d:b2:61:ff:f7:b2:e5:b8:4e:6c:11:9e:1e:
c4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:29:C8:3E:CF:CF:3F:37:36:57:6E:19:1A:EF:C7:CE:37:71:AB:E8
X509v3 Authority Key Identifier:
keyid:E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/yCnIPs_PPzc2V24ZGu_Hzjdxq-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.16.0/21
185.41.8.0/22
IPv6:
2a04:84c0::/32
Signature Algorithm: sha256WithRSAEncryption
24:8f:df:26:44:ee:eb:d0:f2:eb:e9:c0:16:8b:78:79:fe:5c:
86:b5:07:a2:4e:68:12:37:5f:c7:32:ff:ca:45:d0:56:3b:60:
7e:10:d4:0b:3e:c0:d8:66:ba:ac:16:30:4d:7e:42:cc:1c:07:
0b:c7:09:90:e0:ca:a5:3d:4e:0b:f4:f1:eb:4d:c6:07:3d:ea:
13:d3:db:c4:d7:ab:d9:ff:f0:f9:5f:e6:e6:41:0c:b5:51:29:
df:13:e2:29:c2:43:04:34:16:2a:d6:a8:b8:33:a4:ce:57:bc:
5f:41:95:bc:6d:05:75:64:7a:04:02:de:70:28:e6:8f:44:cc:
3a:f7:3b:e4:a8:05:46:fa:d4:b5:1c:b6:eb:88:62:bb:8e:e3:
4b:46:24:0e:0b:84:02:48:60:95:c6:2b:86:00:87:58:5b:43:
f3:19:d6:1a:ce:cf:d0:19:f1:81:68:dd:2a:31:bf:47:58:b8:
1f:f0:24:61:50:ce:f9:a6:23:ea:0c:e0:cd:cc:0d:04:49:58:
d8:c5:34:55:e9:b1:0f:0b:f2:0e:05:a1:e2:4c:4a:57:73:ea:
22:c0:b8:86:d9:e0:d4:c5:95:53:2e:a1:63:41:98:83:0a:36:
7d:2e:de:d7:c2:bc:a4:db:b4:ea:34:ec:f2:92:4e:24:6e:41:
7c:5d:f1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:53:30 2024 by rpki-client on console-fra.rpki-client.org