Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JrxmMEaf4_5sewiO9Wj7SkjqwEE.roa
File: JrxmMEaf4_5sewiO9Wj7SkjqwEE.roa (raw, json)
Hash identifier: ProJ2xKdyOfaBbvz3a8e2VeWE8Wlip4i7WX5HAo3szA=
Subject key identifier: 26:BC:66:30:46:9F:E3:FE:6C:7B:08:8E:F5:68:FB:4A:48:EA:C0:41
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0190EF1BF308910F82C061001C5FE3CDE704
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JrxmMEaf4_5sewiO9Wj7SkjqwEE.roa
Signing time: Fri 26 Jul 2024 12:55:04 +0000
ROA not before: Fri 26 Jul 2024 12:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50835
IP address blocks: 37.97.120.0/24 maxlen: 24
37.97.121.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
46.173.254.0/23 maxlen: 23
64.43.120.0/22 maxlen: 24
77.36.58.0/24 maxlen: 24
77.36.66.0/23 maxlen: 23
81.161.8.0/22 maxlen: 22
81.161.48.0/22 maxlen: 22
91.193.30.0/23 maxlen: 23
91.200.134.0/23 maxlen: 23
91.224.212.0/24 maxlen: 24
91.232.19.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
91.232.226.0/24 maxlen: 24
91.233.200.0/24 maxlen: 24
91.236.76.0/24 maxlen: 24
91.238.39.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.246.192.0/22 maxlen: 24
91.246.203.0/24 maxlen: 24
93.120.34.0/23 maxlen: 23
93.120.40.0/23 maxlen: 23
109.207.128.0/24 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
176.113.180.0/22 maxlen: 22
176.115.236.0/22 maxlen: 24
176.116.228.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
194.33.66.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:1b:f3:08:91:0f:82:c0:61:00:1c:5f:e3:cd:e7:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jul 26 12:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26bc6630469fe3fe6c7b088ef568fb4a48eac041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:94:dc:7a:cc:ba:40:78:4a:69:06:51:3f:
84:b1:97:28:4e:46:c5:15:6b:3a:e8:02:89:79:28:
09:b9:bb:34:14:32:a0:e4:a7:ee:82:05:9e:0c:6b:
04:5f:8e:43:c6:d0:cf:8a:aa:7a:c1:61:1b:b3:7b:
f0:82:56:37:d5:a2:9c:ca:91:52:24:bf:0d:86:d4:
10:5b:37:14:e0:92:fa:18:4a:92:ea:25:bc:83:2b:
be:89:21:54:80:dc:64:fc:d1:49:a0:77:bb:4a:b4:
c7:3e:92:59:b8:a1:8d:9b:41:36:0c:fa:d1:fb:e6:
08:ce:4f:c0:be:3a:a6:02:15:a9:50:8f:d3:6e:a8:
81:8e:21:5d:bb:22:c5:de:bd:c6:49:fc:25:79:6b:
35:e3:d3:62:9a:79:97:c1:ee:71:18:c2:b9:e2:09:
2c:65:e6:f8:ec:20:01:fa:23:1b:7c:0a:24:66:58:
fa:a6:20:9f:fe:5d:ce:e9:1a:07:7a:55:b6:a3:ca:
fd:e0:14:1e:2f:04:b2:78:aa:23:5e:80:0b:1f:4c:
31:ae:95:ca:1b:55:72:62:3e:7b:a1:5c:f0:de:b5:
3a:93:43:7e:c8:c3:70:c0:27:c0:80:68:c5:c0:11:
61:5a:28:b2:a6:f2:24:37:d5:51:96:b9:85:c9:43:
60:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BC:66:30:46:9F:E3:FE:6C:7B:08:8E:F5:68:FB:4A:48:EA:C0:41
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JrxmMEaf4_5sewiO9Wj7SkjqwEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
77.36.58.0/24
77.36.66.0/23
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.134.0/23
91.224.212.0/24
91.232.19.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
93.120.34.0/23
93.120.40.0/23
109.207.128.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
48:96:bf:ad:e2:c4:01:64:2b:ff:49:69:d9:52:78:b2:06:46:
27:38:ad:d8:08:0d:73:86:a1:e7:47:dd:ae:ab:40:0b:d9:94:
cc:f6:1c:dc:d4:af:c6:20:c8:af:69:e8:d4:cf:c5:2d:49:ee:
bd:64:36:57:31:15:7b:52:54:da:77:0d:95:df:fb:ed:1d:b0:
0e:30:75:d1:fb:07:37:38:8d:d0:50:fb:1d:00:62:0b:23:68:
5c:6c:be:fe:1d:7e:d7:0a:26:25:a4:6f:1d:61:00:1e:df:f4:
52:fc:50:9c:a0:e2:11:3d:32:f8:5e:4f:47:08:1e:61:56:e3:
0f:bc:89:b2:1b:0d:ff:9e:13:49:3a:37:ff:a0:03:b3:f6:92:
53:6c:e3:18:9f:0a:78:8c:22:01:32:8d:6d:d6:51:c5:4a:c0:
81:b5:5d:f5:19:69:21:31:86:4b:80:ff:ef:01:29:21:de:c7:
5d:70:46:df:88:77:4b:76:d7:c1:ba:07:07:04:d6:d0:ac:b1:
14:5e:ce:62:4f:7e:ef:13:72:a0:2b:0c:b6:74:3f:bc:8f:64:
f9:e7:4a:be:0b:86:74:24:2c:f2:f4:35:05:8c:60:86:3d:a5:
b9:42:cb:7a:8f:21:ae:c1:28:26:ab:a6:d6:d8:ed:9a:07:7a:
b7:d8:65:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:49:25 2024 by rpki-client on console-fra.rpki-client.org