Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/dv24McwdC8hBNPpZKmpENpnYDR4.roa
File: dv24McwdC8hBNPpZKmpENpnYDR4.roa (raw, json)
Hash identifier: IJqXdfLXfO3jZZiqGWzX9DgmZH7M6jKPpZOS2h1ZdnQ=
Subject key identifier: 76:FD:B8:31:CC:1D:0B:C8:41:34:FA:59:2A:6A:44:36:99:D8:0D:1E
Certificate issuer: /CN=db0a55a3ed6aaeff9ab02253917ac99d1537026c
Certificate serial: 018CC871393DEA4CF09302F4C6ECE6626D08
Authority key identifier: DB:0A:55:A3:ED:6A:AE:FF:9A:B0:22:53:91:7A:C9:9D:15:37:02:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wpVo-1qrv-asCJTkXrJnRU3Amw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/dv24McwdC8hBNPpZKmpENpnYDR4.roa
Signing time: Tue 02 Jan 2024 04:31:52 +0000
ROA not before: Tue 02 Jan 2024 04:31:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34402
IP address blocks: 91.203.52.0/24 maxlen: 24
91.203.53.0/24 maxlen: 24
91.203.54.0/24 maxlen: 24
91.203.55.0/24 maxlen: 24
91.203.52.0/22 maxlen: 22
91.227.56.0/24 maxlen: 24
91.227.57.0/24 maxlen: 24
91.227.58.0/24 maxlen: 24
91.227.56.0/22 maxlen: 22
91.227.59.0/24 maxlen: 24
195.225.76.0/24 maxlen: 24
195.225.77.0/24 maxlen: 24
195.225.76.0/22 maxlen: 22
195.225.78.0/24 maxlen: 24
195.225.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/2wpVo-1qrv-asCJTkXrJnRU3Amw.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/2wpVo-1qrv-asCJTkXrJnRU3Amw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wpVo-1qrv-asCJTkXrJnRU3Amw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:39:3d:ea:4c:f0:93:02:f4:c6:ec:e6:62:6d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0a55a3ed6aaeff9ab02253917ac99d1537026c
Validity
Not Before: Jan 2 04:31:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76fdb831cc1d0bc84134fa592a6a443699d80d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:24:01:88:79:90:0b:eb:61:8e:19:2f:f9:a4:
a9:71:ea:ed:5e:23:e5:a3:71:0e:f4:1b:b0:eb:e5:
66:7f:ee:30:eb:32:f8:7f:df:f1:38:96:ae:38:a5:
32:81:a7:5c:03:66:d9:66:b1:67:c5:fa:55:0d:18:
a6:a7:32:b4:6a:af:c8:8b:18:99:dc:d4:e4:9b:48:
56:00:0b:6a:69:05:a0:9b:58:0f:21:55:e0:72:64:
47:78:2a:c0:c8:75:bf:60:de:e8:45:b5:66:eb:11:
c9:47:4f:a2:94:ff:bb:6f:31:83:54:d0:52:ba:fa:
ac:f3:51:5c:f4:94:44:f5:69:9f:72:49:f5:34:bc:
36:ec:50:ec:ad:1f:c1:b4:37:d0:64:1b:0f:20:14:
32:0f:cd:60:77:b2:9b:f3:2e:ee:9d:18:d0:18:b2:
7b:65:8a:ab:eb:23:89:68:4e:5b:32:72:4e:2c:ab:
7b:c2:78:eb:00:17:43:dd:b8:a1:9a:d6:54:cf:7f:
57:85:9e:ce:3d:0e:de:a1:8d:e1:7e:95:d3:7e:2f:
eb:17:27:95:39:4a:fb:ad:e1:28:20:04:52:5b:83:
ec:32:69:99:d6:3e:85:45:7a:77:b7:d9:8e:72:28:
f3:c5:65:e9:73:a8:a1:1a:49:cf:e1:53:5e:60:08:
ac:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FD:B8:31:CC:1D:0B:C8:41:34:FA:59:2A:6A:44:36:99:D8:0D:1E
X509v3 Authority Key Identifier:
keyid:DB:0A:55:A3:ED:6A:AE:FF:9A:B0:22:53:91:7A:C9:9D:15:37:02:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wpVo-1qrv-asCJTkXrJnRU3Amw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/dv24McwdC8hBNPpZKmpENpnYDR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/136492-21de-4ab2-a436-88c2cd00848d/1/2wpVo-1qrv-asCJTkXrJnRU3Amw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.52.0/22
91.227.56.0/22
195.225.76.0/22
Signature Algorithm: sha256WithRSAEncryption
03:3a:e7:37:99:17:ee:ff:47:1d:55:3e:ff:27:cf:16:64:3a:
48:5f:ed:59:fe:e9:56:86:1a:50:6a:a4:b4:f8:5d:c7:40:ac:
c3:f4:15:76:63:20:27:9d:4e:b2:a2:62:81:7e:e3:4b:3a:87:
8a:8a:d2:a1:31:58:36:eb:aa:08:13:b2:6d:bb:9d:9d:a2:6c:
fe:21:e1:b4:fc:b6:8e:11:92:07:8e:a6:9e:55:dc:61:30:d4:
f4:24:3b:17:83:3a:0d:a3:38:16:49:36:b1:f3:43:ca:5c:ce:
0f:3c:f2:b8:18:a0:cc:aa:29:85:16:e1:4f:d7:b5:7f:64:0d:
90:b8:d4:75:35:25:47:71:3b:f7:8c:3a:ac:58:9b:91:b3:51:
ed:8d:b7:a8:d8:fe:c5:94:a7:b2:e6:a9:93:fe:95:77:bb:ae:
f5:c0:4f:59:1d:fd:fa:7e:bc:01:2e:f2:68:cc:53:f3:fd:31:
4a:a8:ad:62:06:ec:c9:1c:a6:b2:fc:2e:76:7e:bd:ed:b5:8c:
39:b1:2f:ff:6e:c5:60:4a:b3:f7:ec:fd:c2:23:5f:63:3a:38:
b7:6c:83:da:a5:5b:5c:6c:72:8d:1d:88:f9:ac:2d:cd:b2:fd:
fe:52:c0:e4:12:b9:c2:f0:80:86:2b:22:b7:96:7d:ce:3b:39:
21:08:a4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:05:26 2024 by rpki-client on console-fra.rpki-client.org