Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/Fd_O0meoBJxOr1FhdBT1UrwRHOc.roa
File: Fd_O0meoBJxOr1FhdBT1UrwRHOc.roa (raw, json)
Hash identifier: UidVlB0HyX/vjPax7RE3VFbamOlkG9F6mLlUCCdtqQQ=
Subject key identifier: 15:DF:CE:D2:67:A8:04:9C:4E:AF:51:61:74:14:F5:52:BC:11:1C:E7
Certificate issuer: /CN=2f0342e0d23ef7e06b1dff5cc6ee4fa17af8bd98
Certificate serial: 018CC7258CB8E22EC84C58D6413D4A5B5FE7
Authority key identifier: 2F:03:42:E0:D2:3E:F7:E0:6B:1D:FF:5C:C6:EE:4F:A1:7A:F8:BD:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/Fd_O0meoBJxOr1FhdBT1UrwRHOc.roa
Signing time: Mon 01 Jan 2024 22:29:35 +0000
ROA not before: Mon 01 Jan 2024 22:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44002
IP address blocks: 185.4.200.0/24 maxlen: 24
185.4.201.0/24 maxlen: 24
185.4.202.0/24 maxlen: 24
185.4.203.0/24 maxlen: 24
185.4.200.0/22 maxlen: 22
79.98.79.0/24 maxlen: 24
79.98.76.0/24 maxlen: 24
79.98.77.0/24 maxlen: 24
79.98.78.0/24 maxlen: 24
79.98.72.0/24 maxlen: 24
79.98.73.0/24 maxlen: 24
79.98.74.0/24 maxlen: 24
79.98.75.0/24 maxlen: 24
79.98.72.0/21 maxlen: 21
2a02:970:1028::/48 maxlen: 48
2a02:970:1061::/48 maxlen: 48
2a02:970:1c01::/48 maxlen: 48
2a02:970:1::/48 maxlen: 48
2a02:970:1017::/48 maxlen: 48
2a02:970:1052::/48 maxlen: 48
2a02:970:1192::/48 maxlen: 48
2a02:970:1185::/48 maxlen: 48
2a02:970:1245::/48 maxlen: 48
2a02:970::/32 maxlen: 48
2a02:970:1176::/48 maxlen: 48
2a02:970:1019::/48 maxlen: 48
2a02:970:440::/43 maxlen: 43
2a02:970:470::/48 maxlen: 48
2a02:970:450::/48 maxlen: 48
2a02:970:1366::/48 maxlen: 48
2a02:970:1206::/48 maxlen: 48
2a02:970:1006::/48 maxlen: 48
2a02:970:1446::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 19:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:8c:b8:e2:2e:c8:4c:58:d6:41:3d:4a:5b:5f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f0342e0d23ef7e06b1dff5cc6ee4fa17af8bd98
Validity
Not Before: Jan 1 22:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15dfced267a8049c4eaf51617414f552bc111ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a0:64:01:7b:f5:9e:6b:f2:8e:e9:72:c0:53:
18:ec:2a:e2:82:f5:5c:09:b6:cf:9b:b8:23:c7:92:
27:c4:cd:3a:13:21:d0:e2:16:1a:1f:b2:8a:c6:ad:
4f:f5:d8:0c:cd:85:e0:4c:22:b1:aa:db:a7:82:b4:
18:6c:f1:d7:55:33:e2:c1:ed:5e:20:9a:d2:99:7d:
0c:e3:00:c0:bf:a7:97:ff:46:da:51:8e:ce:e8:d7:
13:6e:99:81:b0:58:cc:e3:1f:e7:39:bc:8d:97:71:
81:d7:6a:52:68:98:b1:c1:1d:9c:d7:6a:f0:71:dd:
5e:79:a0:37:64:c7:cf:76:37:f6:8c:4a:d6:87:39:
13:e6:1e:e8:e6:8a:50:36:d3:e9:b9:f2:67:68:7f:
9a:0f:df:f7:03:f1:ef:91:56:09:cf:3f:25:98:74:
15:6a:ab:82:ba:0d:60:3a:ee:3d:96:15:db:ff:1b:
23:08:04:55:a5:75:34:b0:bc:81:f9:18:b2:c4:47:
a6:f4:cd:e3:31:66:53:4c:1e:4c:c4:04:2b:84:a8:
26:95:ff:59:be:f1:40:79:9f:87:bb:a3:27:ab:7f:
f4:83:52:7b:7b:c3:01:da:d8:10:38:9c:9e:4c:5e:
12:35:00:04:58:66:69:cc:b2:20:45:8f:0d:88:6c:
55:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DF:CE:D2:67:A8:04:9C:4E:AF:51:61:74:14:F5:52:BC:11:1C:E7
X509v3 Authority Key Identifier:
keyid:2F:03:42:E0:D2:3E:F7:E0:6B:1D:FF:5C:C6:EE:4F:A1:7A:F8:BD:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LwNC4NI-9-BrHf9cxu5PoXr4vZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/Fd_O0meoBJxOr1FhdBT1UrwRHOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d1fd48-916b-4d83-96cc-c910af93e426/1/LwNC4NI-9-BrHf9cxu5PoXr4vZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.72.0/21
185.4.200.0/22
IPv6:
2a02:970::/32
Signature Algorithm: sha256WithRSAEncryption
57:8b:8d:8a:4d:4c:28:cf:5c:5b:df:ff:11:83:68:7f:60:18:
72:59:fc:e9:1e:9d:69:7f:5b:be:df:f4:3e:2e:b1:d6:62:03:
58:bd:c2:33:f0:3a:91:5b:f9:ad:c3:dc:b8:45:4c:d9:dd:82:
5d:9b:c6:3c:56:dc:b2:53:2c:d9:50:34:bf:59:f2:a1:57:e7:
79:8c:2a:14:1d:74:d5:26:19:24:79:ef:26:84:e9:12:c3:32:
94:7f:2a:ac:44:ff:a7:b9:73:7c:36:4b:74:d7:9f:08:e9:91:
11:ec:61:dc:91:2f:94:48:13:2f:00:2c:41:e1:1b:84:b6:8f:
d9:8d:5c:81:c3:72:85:16:6d:1a:f0:a3:a6:4e:59:d2:fb:f3:
74:91:ae:1f:3f:a3:e8:39:be:e3:40:d9:4e:81:df:5d:57:0e:
71:69:d1:f7:21:ee:4d:3c:75:c9:d6:2e:b4:e5:48:1e:ab:02:
52:f4:9b:35:31:92:a2:6b:8d:ef:de:5c:54:d6:a5:96:91:1f:
7a:06:13:16:87:0f:78:58:68:18:4a:f7:07:5e:b9:57:42:41:
27:7c:79:7a:1e:91:92:08:cf:7d:43:d9:1e:99:2b:72:db:bb:
7a:12:70:a2:8e:86:7e:c2:a4:79:61:98:a8:8f:6b:d1:ff:4a:
e1:04:2b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 03:02:57 2024 by rpki-client on console-ams.rpki-client.org