Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/bEFRv-g_XNIF8db9d2WHVhnLgr4.roa
File: bEFRv-g_XNIF8db9d2WHVhnLgr4.roa (raw, json)
Hash identifier: eJcWXJJhf/VFpWicP/YU1ybOan9K8EGTAsR0VMfLwro=
Subject key identifier: 6C:41:51:BF:E8:3F:5C:D2:05:F1:D6:FD:77:65:87:56:19:CB:82:BE
Certificate issuer: /CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Certificate serial: 018CC5DBF90A89E3AE71681A038915FEFF33
Authority key identifier: 4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/bEFRv-g_XNIF8db9d2WHVhnLgr4.roa
Signing time: Mon 01 Jan 2024 16:29:36 +0000
ROA not before: Mon 01 Jan 2024 16:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58321
IP address blocks: 185.73.88.0/22 maxlen: 22
185.80.212.0/22 maxlen: 22
91.232.44.0/23 maxlen: 24
109.199.0.0/19 maxlen: 24
176.227.160.0/21 maxlen: 24
109.207.48.0/20 maxlen: 24
81.161.192.0/24 maxlen: 24
81.161.192.0/21 maxlen: 21
81.161.192.0/20 maxlen: 20
81.161.193.0/24 maxlen: 24
81.161.194.0/24 maxlen: 24
81.161.195.0/24 maxlen: 24
81.161.196.0/24 maxlen: 24
178.249.88.0/21 maxlen: 24
81.161.197.0/24 maxlen: 24
81.161.198.0/24 maxlen: 24
81.161.199.0/24 maxlen: 24
81.161.203.0/24 maxlen: 24
81.161.204.0/24 maxlen: 24
81.161.200.0/21 maxlen: 21
81.161.205.0/24 maxlen: 24
81.161.206.0/24 maxlen: 24
81.161.200.0/24 maxlen: 24
81.161.201.0/24 maxlen: 24
81.161.202.0/24 maxlen: 24
193.242.169.0/24 maxlen: 24
193.242.168.0/24 maxlen: 24
193.242.168.0/23 maxlen: 23
195.3.232.0/22 maxlen: 22
5.104.248.0/21 maxlen: 24
185.34.76.0/22 maxlen: 24
2a04:4c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:f9:0a:89:e3:ae:71:68:1a:03:89:15:fe:ff:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Validity
Not Before: Jan 1 16:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c4151bfe83f5cd205f1d6fd7765875619cb82be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:5a:f7:e9:28:a1:d5:96:c9:2e:9c:6d:be:
b9:f6:96:78:43:e7:1f:f0:cc:ee:64:77:c5:97:11:
50:c5:e8:d5:83:0c:15:7b:e5:44:80:3a:2d:3b:11:
2b:af:46:d6:b9:18:f4:78:3f:36:d4:c1:06:a6:ad:
d6:e0:62:69:de:a0:6e:d4:94:f7:61:5e:68:c6:3d:
54:ab:61:b6:11:62:c5:31:64:3a:e0:7f:ea:dc:92:
98:ce:49:d6:f8:b3:1e:36:86:27:c0:1b:32:5d:aa:
37:58:f0:2c:71:56:44:67:cc:66:b9:5a:ad:18:b0:
e6:3b:ce:34:a7:dc:18:e0:52:8f:3d:f1:2f:aa:c3:
fa:66:96:57:83:4e:51:ec:f1:b8:a2:1f:93:f0:79:
ba:c8:81:11:3b:47:18:72:c0:bf:c7:41:b6:2a:b2:
75:72:7d:4e:9a:12:9b:f5:32:12:df:04:ea:58:ff:
3d:e8:cc:8e:be:51:49:5a:85:86:30:8d:99:b6:66:
8a:86:3f:c9:07:1f:e2:d7:6c:04:1d:13:c4:92:f7:
d9:3b:75:15:b6:04:52:39:00:1d:ef:4d:a5:b6:48:
e0:a0:31:72:c7:50:25:9e:1d:fc:f6:b4:51:a3:58:
a0:f8:aa:30:c3:b3:09:b0:b6:38:e6:3b:c8:65:c5:
32:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:41:51:BF:E8:3F:5C:D2:05:F1:D6:FD:77:65:87:56:19:CB:82:BE
X509v3 Authority Key Identifier:
keyid:4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/bEFRv-g_XNIF8db9d2WHVhnLgr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.248.0/21
81.161.192.0/20
91.232.44.0/23
109.199.0.0/19
109.207.48.0/20
176.227.160.0/21
178.249.88.0/21
185.34.76.0/22
185.73.88.0/22
185.80.212.0/22
193.242.168.0/23
195.3.232.0/22
IPv6:
2a04:4c0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:32:fa:75:7f:5e:6c:6b:db:9b:9b:d6:6b:d4:9c:78:4d:80:
6e:f3:70:ca:67:df:80:d2:7a:c1:4d:67:4e:e0:58:3c:6a:43:
e7:94:c2:3f:b9:78:10:f1:ab:3e:17:5a:0f:57:ed:75:46:36:
27:89:ad:ed:1e:ba:e7:52:05:17:30:b6:0b:c3:48:54:0c:9a:
61:52:21:67:f6:13:4e:78:d4:27:95:45:13:35:c3:8d:9c:96:
89:cf:d9:ec:68:fb:b5:83:3d:ab:70:0d:53:8a:8f:d6:e1:e8:
f1:3b:78:65:0c:9d:e5:56:23:3f:17:7b:20:42:f4:19:50:e2:
ed:30:5b:85:38:e2:74:fa:32:fb:a6:d6:49:ac:45:e6:ce:55:
56:bb:e3:34:de:c2:b4:b5:78:2a:bf:40:be:aa:f9:16:5f:aa:
e9:3d:3f:60:42:c2:e8:02:f3:78:5d:f9:25:b4:24:51:dd:ac:
87:dd:0b:4c:d0:ae:38:f5:e6:c0:0e:5a:08:a8:8e:16:c8:0f:
d5:11:57:11:7d:8e:52:c2:d0:78:c8:5e:03:38:eb:4a:8c:29:
b0:b5:d9:ec:27:4c:bb:00:bf:7e:b6:25:37:86:05:95:3e:73:
c3:6a:d0:eb:34:dc:b3:81:d7:ed:e5:68:ce:70:fb:4b:fa:15:
eb:78:46:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:45:42 2024 by rpki-client on console-fra.rpki-client.org