Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/1NxAwe_HHRo7Q-S7uu8u9x91aAA.roa
File: 1NxAwe_HHRo7Q-S7uu8u9x91aAA.roa (raw, json)
Hash identifier: ys4xbui4lca1F9c4kKQx/Rz6PEoH9ZiNz+KGQBMngfA=
Subject key identifier: D4:DC:40:C1:EF:C7:1D:1A:3B:43:E4:BB:BA:EF:2E:F7:1F:75:68:00
Certificate issuer: /CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Certificate serial: 018CC4938EA039CFB27D80543BFF286355B1
Authority key identifier: 81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/1NxAwe_HHRo7Q-S7uu8u9x91aAA.roa
Signing time: Mon 01 Jan 2024 10:30:53 +0000
ROA not before: Mon 01 Jan 2024 10:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197965
IP address blocks: 185.176.17.0/24 maxlen: 24
185.176.16.0/24 maxlen: 24
185.176.16.0/22 maxlen: 22
185.176.19.0/24 maxlen: 24
185.176.18.0/24 maxlen: 24
93.180.74.0/24 maxlen: 24
93.180.73.0/24 maxlen: 24
93.180.72.0/24 maxlen: 24
93.180.78.0/24 maxlen: 24
93.180.72.0/21 maxlen: 21
93.180.77.0/24 maxlen: 24
93.180.76.0/24 maxlen: 24
93.180.75.0/24 maxlen: 24
93.180.79.0/24 maxlen: 24
2a00:4c40::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:8e:a0:39:cf:b2:7d:80:54:3b:ff:28:63:55:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Validity
Not Before: Jan 1 10:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4dc40c1efc71d1a3b43e4bbbaef2ef71f756800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e2:c3:40:b0:ea:1d:22:98:9f:e7:ce:bd:8e:
23:3f:01:2f:cb:f4:0c:9a:d3:56:73:2f:be:d2:91:
48:3f:96:f5:f2:4e:0a:7b:8c:59:ad:bf:ff:6b:31:
56:32:09:cb:47:ae:2a:ca:8a:f4:7d:f3:ab:9d:1b:
80:60:df:f2:68:1e:c8:ff:db:e0:67:af:e7:ce:5d:
bd:0e:9f:1f:b2:75:96:1d:63:45:aa:51:ba:1d:28:
ea:40:a4:07:66:dd:11:f8:56:07:a4:ec:20:89:61:
6e:47:b2:87:31:6e:f9:a6:1e:43:b2:82:45:2a:d7:
0d:f5:03:6f:c3:01:d8:4b:70:6d:05:38:02:40:dd:
6f:f0:ea:fc:f2:38:b0:e6:91:7c:7d:19:25:ed:a7:
30:68:82:ca:34:38:22:c0:91:74:9f:03:52:23:d3:
b8:34:25:3e:0b:dc:19:5d:d9:4a:dd:05:ea:73:d9:
c2:38:72:df:e7:c3:89:69:64:34:1b:61:d1:b4:49:
8d:7f:b2:2b:92:67:7d:ac:d9:c3:7b:cb:a9:58:ef:
bc:58:e4:5c:47:10:e8:23:6b:0d:dd:c8:5a:73:fb:
19:2e:83:7e:01:b7:37:cd:e6:05:be:9e:5b:81:00:
a1:d5:89:f0:72:2d:fd:da:d9:07:bf:57:06:98:31:
b9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DC:40:C1:EF:C7:1D:1A:3B:43:E4:BB:BA:EF:2E:F7:1F:75:68:00
X509v3 Authority Key Identifier:
keyid:81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/1NxAwe_HHRo7Q-S7uu8u9x91aAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.72.0/21
185.176.16.0/22
IPv6:
2a00:4c40::/32
Signature Algorithm: sha256WithRSAEncryption
8d:4c:41:1c:75:4e:a4:86:35:03:17:1b:32:d8:37:3e:04:24:
ec:fa:56:00:df:98:e5:47:56:bb:78:7c:73:1d:95:c1:ee:74:
fe:d3:7e:21:dd:04:5b:f7:f7:3e:80:a8:34:a8:96:3a:58:0f:
2a:ed:8f:43:2c:24:aa:0f:c3:e5:57:09:32:7d:04:9f:d9:28:
b6:a8:c7:00:4f:d4:6a:cf:5c:57:fa:fd:63:56:a3:e0:5d:91:
30:be:47:f2:2d:1c:ac:87:6e:4e:b7:63:d5:c1:bf:0a:29:ac:
d0:fb:62:27:a8:76:0d:a3:fe:a3:eb:93:50:55:da:68:33:d7:
ff:0e:15:4f:62:8d:f8:c4:de:c8:09:a8:25:15:ef:28:23:3a:
48:ab:2f:f5:9d:b0:d9:ad:de:6a:6a:ed:8d:d5:c9:6e:bb:d2:
dc:1a:36:a6:fa:f2:49:64:9f:07:78:5c:a9:a4:24:b5:e0:72:
d2:ff:30:70:d7:7d:07:ae:f0:9a:9e:fc:4a:86:8f:68:8e:75:
c1:8a:d5:2f:ec:32:05:44:ba:23:db:19:72:b0:2f:06:05:30:
ec:f3:04:f3:97:a7:37:cf:1c:f0:b3:44:12:22:56:6a:40:a0:
c4:7e:c1:cc:63:9a:66:d5:31:5c:a9:8b:60:66:ee:91:58:84:
f0:99:99:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:40:37 2024 by rpki-client on console-ams.rpki-client.org