Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Gb_mVveX2SaBVuQyj9potFRRcSE.roa
File: Gb_mVveX2SaBVuQyj9potFRRcSE.roa (raw, json)
Hash identifier: Ssap68vvs59UmN9b2aX5wZETfhyW8h2NXhpD3qE7cEI=
Subject key identifier: 19:BF:E6:56:F7:97:D9:26:81:56:E4:32:8F:DA:68:B4:54:51:71:21
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 0192AA6769DB6EEEE047F040291302E015D4
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Gb_mVveX2SaBVuQyj9potFRRcSE.roa
Signing time: Sun 20 Oct 2024 14:49:16 +0000
ROA not before: Sun 20 Oct 2024 14:49:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47890
IP address blocks: 2.57.122.0/24 maxlen: 24
45.13.38.0/24 maxlen: 24
45.13.212.0/24 maxlen: 24
45.13.213.0/24 maxlen: 24
45.129.14.0/24 maxlen: 24
45.129.15.0/24 maxlen: 24
45.134.48.0/24 maxlen: 24
45.138.96.0/24 maxlen: 24
45.138.97.0/24 maxlen: 24
45.138.98.0/24 maxlen: 24
45.148.9.0/24 maxlen: 24
45.148.11.0/24 maxlen: 24
80.94.92.0/24 maxlen: 24
80.94.94.0/24 maxlen: 24
92.118.39.0/24 maxlen: 24
185.232.64.0/24 maxlen: 24
185.232.66.0/24 maxlen: 24
193.32.162.0/24 maxlen: 24
193.46.254.0/24 maxlen: 24
193.46.255.0/24 maxlen: 24
193.47.69.0/24 maxlen: 24
2a0c:9f00::/48 maxlen: 48
2a0c:9f00:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.mft
rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:aa:67:69:db:6e:ee:e0:47:f0:40:29:13:02:e0:15:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Oct 20 14:49:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19bfe656f797d9268156e4328fda68b454517121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:6d:35:a8:47:b6:d5:6c:42:a8:fe:cb:5e:
bb:09:e5:65:04:ca:70:27:2b:4c:cb:4a:47:ef:99:
bd:55:97:99:9b:b1:38:e8:e6:a6:2b:67:20:2d:f7:
d4:57:b9:d0:9a:4c:6c:3c:1a:a0:2a:f5:05:18:e1:
64:65:b9:6a:ea:1e:09:27:26:e5:c4:77:4f:75:44:
b1:b3:96:8d:81:83:84:18:a7:d7:49:04:32:7b:f9:
e8:19:a3:77:88:e6:50:7b:12:60:12:7a:00:dc:48:
0f:4d:06:58:74:fc:66:04:df:78:bf:d5:94:02:50:
c7:07:29:1e:ef:ad:2f:be:32:75:c4:e6:2f:4a:93:
5b:ec:8c:e7:00:d4:c6:0f:ea:9f:a8:df:25:3d:d0:
7a:c2:b0:7c:67:cf:ed:33:c7:2c:98:57:a9:a0:46:
3e:b7:8c:1d:38:d7:7f:e9:1f:e3:aa:7a:3d:ac:54:
56:37:1c:95:5f:38:56:0f:68:a1:22:26:e9:86:e1:
84:cb:f0:ca:bc:8c:2d:5a:65:5e:a0:11:0b:84:f2:
a9:0d:68:82:59:c5:7b:77:ed:df:17:fa:85:46:6e:
26:44:0f:3c:6f:96:84:88:3c:e2:48:03:4a:c4:13:
c5:7f:0d:e5:06:b6:66:eb:5b:e4:b5:97:96:57:18:
49:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BF:E6:56:F7:97:D9:26:81:56:E4:32:8F:DA:68:B4:54:51:71:21
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Gb_mVveX2SaBVuQyj9potFRRcSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.122.0/24
45.13.38.0/24
45.13.212.0/23
45.129.14.0/23
45.134.48.0/24
45.138.96.0-45.138.98.255
45.148.9.0/24
45.148.11.0/24
80.94.92.0/24
80.94.94.0/24
92.118.39.0/24
185.232.64.0/24
185.232.66.0/24
193.32.162.0/24
193.46.254.0/23
193.47.69.0/24
IPv6:
2a0c:9f00::/48
2a0c:9f00:2::/48
Signature Algorithm: sha256WithRSAEncryption
a8:96:aa:2b:07:1a:77:87:85:6f:4e:8c:3d:6e:e7:c5:1b:31:
7f:69:ec:04:4d:e2:df:4a:0b:a1:08:70:ff:cc:b8:ca:03:b4:
a7:35:8a:91:b3:7d:39:5b:65:e7:ed:dc:b3:78:1e:54:22:ff:
dc:88:49:06:14:d1:98:db:2c:6a:2e:d3:b8:2a:e5:fd:62:f0:
92:46:f6:18:16:5d:e6:43:6f:76:3f:52:f9:3e:6f:24:82:e5:
12:1f:e2:2b:45:04:b1:d7:c8:11:39:52:95:51:11:2f:65:44:
b6:21:ae:e9:bb:87:59:54:0f:bf:32:4b:d5:d4:5c:f7:41:eb:
0c:c5:01:78:92:37:ae:11:26:6f:75:b2:de:e3:b7:52:11:79:
6b:80:6c:b1:f8:6a:37:da:c8:1a:ee:fc:9f:a9:29:a7:d5:10:
6c:91:02:94:3b:84:58:c9:13:7f:b3:cd:0c:3a:a2:d8:fb:89:
82:92:3f:fe:48:99:58:ce:6a:18:4b:35:f3:8d:c8:ca:db:f6:
ba:47:00:16:02:f7:23:09:2f:c2:1e:f3:5f:61:93:24:7d:09:
d5:42:e9:0d:6c:4f:5b:b2:48:e5:c4:8a:87:f9:a3:93:02:23:
61:a5:0f:5a:d4:8c:57:61:17:ed:bb:d4:7e:77:06:b7:3c:29:
ef:98:ae:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:25:49 2024 by rpki-client on console-fra.rpki-client.org