Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/8WnQQClmmnonwHSAjakIAsIXIUk.roa
File: 8WnQQClmmnonwHSAjakIAsIXIUk.roa (raw, json)
Hash identifier: INE27SFDl9KIDNQmP7o1V1kiH1GP1j9lxZrG7BgIj4g=
Subject key identifier: F1:69:D0:40:29:66:9A:7A:27:C0:74:80:8D:A9:08:02:C2:17:21:49
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0190C6994F0C16380485972D5666A95351AC
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/8WnQQClmmnonwHSAjakIAsIXIUk.roa
Signing time: Thu 18 Jul 2024 16:07:34 +0000
ROA not before: Thu 18 Jul 2024 16:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53856
IP address blocks: 94.131.64.0/22 maxlen: 24
94.131.72.0/21 maxlen: 24
95.164.24.0/22 maxlen: 22
95.164.28.0/22 maxlen: 22
95.164.96.0/21 maxlen: 21
95.164.104.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c6:99:4f:0c:16:38:04:85:97:2d:56:66:a9:53:51:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jul 18 16:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f169d04029669a7a27c074808da90802c2172149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:21:10:23:3c:df:65:24:5c:99:39:29:40:ab:
d1:29:d4:4e:62:98:49:1d:4d:53:b1:d2:30:35:d6:
20:1c:86:85:ae:7e:5f:19:9e:53:29:bb:68:2d:9d:
da:67:05:37:46:4e:c1:6b:e0:b0:d0:e5:39:46:91:
8d:c8:93:8f:60:ee:64:b3:8b:7b:56:cf:66:7b:42:
1c:99:8e:5c:2c:51:c0:10:02:42:4f:b0:07:bd:11:
8b:12:36:60:f7:b7:fb:16:a0:8b:ed:21:c7:05:45:
03:41:1c:8a:12:56:cd:a8:52:df:26:71:02:49:fb:
3a:41:a6:4f:9a:02:e6:d6:10:88:88:18:c0:ac:d5:
a9:a6:9d:82:fd:71:1e:60:cd:d0:96:af:e6:66:2c:
f8:6e:57:87:fc:1f:1f:cd:66:ef:ab:c7:a8:d2:d9:
65:44:84:96:27:8f:0e:b6:41:4e:e3:cc:29:73:ca:
30:b2:87:90:ac:89:fa:53:63:88:77:85:77:43:ad:
8f:e6:23:9a:39:a5:0c:c1:f3:05:35:cd:c7:f9:c8:
46:7a:83:6d:d9:ac:d4:df:9e:07:db:bd:8a:09:9f:
37:f5:15:b7:64:30:27:f0:c4:bd:ad:34:8c:ce:8e:
07:70:53:88:f3:87:6f:65:9a:b2:46:79:b8:5c:dd:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:69:D0:40:29:66:9A:7A:27:C0:74:80:8D:A9:08:02:C2:17:21:49
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/8WnQQClmmnonwHSAjakIAsIXIUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.64.0/22
94.131.72.0/21
95.164.24.0/21
95.164.96.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:f9:06:14:db:35:18:b2:df:53:87:4b:3b:1f:fb:43:44:0d:
8d:e8:c6:7d:59:86:1b:6f:03:4c:40:e6:13:36:82:ab:b9:57:
01:74:10:73:39:f0:5c:c0:ad:d8:59:2b:52:89:34:6f:81:6b:
4d:59:b6:d8:d9:88:b2:44:24:b8:08:f2:6f:57:c4:ed:e4:86:
25:e0:b6:1d:b3:c7:66:73:4a:bb:c3:c2:45:7d:1d:47:be:41:
1e:6c:03:1d:b2:e1:4b:d1:e6:19:07:d4:48:0c:93:f0:4d:21:
bb:9a:fc:a0:b8:7c:f2:1f:cb:08:34:55:3d:94:55:49:78:a8:
08:84:2e:40:44:ea:10:56:a0:8d:02:e6:fb:de:53:9c:75:b9:
6d:e8:f3:c6:b1:f1:35:c5:ff:15:8e:e2:dd:57:c4:c0:9b:5f:
0d:70:16:ae:4d:77:e6:19:19:09:50:80:a2:21:53:3b:af:1a:
bb:95:30:67:d2:74:25:17:e6:dd:57:f3:b0:7b:10:f3:d4:37:
29:22:83:13:c3:a5:86:4e:30:78:0e:02:5a:38:a5:b2:fe:12:
d8:fd:a7:15:49:d6:80:c6:77:dc:14:d2:b5:89:0a:b0:97:a2:
4b:2e:1e:d0:89:5f:c0:10:a5:22:89:10:ba:ef:a9:c3:05:3d:
41:44:07:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:29:39 2024 by rpki-client on console-fra.rpki-client.org