Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/sirhSkP7kC9v7db0HNV7h9CaDkw.roa
File: sirhSkP7kC9v7db0HNV7h9CaDkw.roa (raw, json)
Hash identifier: J/x6WfH1y2fNzlaOt+y0wC+e7dyDDhedscEvStRwlJU=
Subject key identifier: B2:2A:E1:4A:43:FB:90:2F:6F:ED:D6:F4:1C:D5:7B:87:D0:9A:0E:4C
Certificate issuer: /CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Certificate serial: 018CC6B90A770AF3951AB76CBAE46159A352
Authority key identifier: 4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/sirhSkP7kC9v7db0HNV7h9CaDkw.roa
Signing time: Mon 01 Jan 2024 20:31:04 +0000
ROA not before: Mon 01 Jan 2024 20:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200414
IP address blocks: 194.29.180.0/23 maxlen: 23
185.101.190.0/24 maxlen: 24
195.110.50.0/24 maxlen: 24
185.11.108.0/23 maxlen: 23
178.219.131.0/24 maxlen: 24
178.219.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:0a:77:0a:f3:95:1a:b7:6c:ba:e4:61:59:a3:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5f0cb06a5a47b4ddac7f4d6dfd44aba4d31f2e
Validity
Not Before: Jan 1 20:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b22ae14a43fb902f6fedd6f41cd57b87d09a0e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:46:f5:61:b3:01:a3:bc:0b:24:c1:54:2f:
97:ef:88:88:aa:0c:b9:9d:65:9a:b6:4f:eb:f7:00:
7d:1f:c8:18:8a:1d:18:83:74:aa:ac:5d:f9:71:38:
fe:0c:3e:a1:d2:04:59:b4:db:33:61:25:22:05:eb:
2f:7e:13:c5:c6:73:3c:3b:2b:47:2c:4a:05:dc:fd:
bd:50:98:1f:73:c3:35:76:ba:fa:af:e2:90:8f:67:
f8:3d:4a:eb:8f:c0:03:6a:a0:1d:99:5c:87:cf:ec:
09:e0:dd:67:df:a0:26:08:a0:73:ff:70:58:44:ed:
20:2e:65:a9:7a:66:8b:93:db:eb:b4:9b:e8:d6:02:
65:41:04:87:f1:db:8d:e0:f6:54:5a:83:de:08:2c:
8d:4f:35:36:4d:02:5c:b3:62:5b:f9:1b:9b:bf:c1:
ce:e8:53:c9:4a:25:4c:ad:61:22:cd:49:1e:69:6e:
ba:09:eb:37:27:84:8a:85:1e:e3:65:55:12:26:28:
96:d8:f5:ca:a2:c3:30:69:ee:96:6c:32:58:f9:de:
41:96:ee:12:89:fd:ec:94:0d:b9:81:2a:76:b7:01:
4c:e1:fe:f7:b3:8f:0f:df:e1:6d:ea:dd:9b:b5:29:
2e:90:a7:ed:57:e4:11:fd:71:c3:fb:69:05:44:a5:
3a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2A:E1:4A:43:FB:90:2F:6F:ED:D6:F4:1C:D5:7B:87:D0:9A:0E:4C
X509v3 Authority Key Identifier:
keyid:4D:5F:0C:B0:6A:5A:47:B4:DD:AC:7F:4D:6D:FD:44:AB:A4:D3:1F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/sirhSkP7kC9v7db0HNV7h9CaDkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/cb8339-cee3-4037-bacc-dc8b52e3ea0a/1/TV8MsGpaR7TdrH9Nbf1Eq6TTHy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.128.0/24
178.219.131.0/24
185.11.108.0/23
185.101.190.0/24
194.29.180.0/23
195.110.50.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:15:a7:f4:80:ed:ea:5d:03:42:b1:69:ba:31:34:8c:d1:44:
2b:69:68:60:85:d3:2f:16:23:16:3b:8a:27:a0:57:e3:7c:f5:
d9:05:87:13:a5:ef:cc:ca:d5:18:8a:65:9a:dd:3b:0f:50:16:
a7:d5:a9:c2:c8:16:a9:b6:40:4a:8f:7d:91:b9:db:ff:d3:19:
56:9e:0d:f3:67:ce:6b:cb:1e:67:48:00:54:ce:cf:a8:15:3c:
a9:a5:eb:26:81:14:83:03:1d:9a:a9:f0:50:3a:a6:a1:22:44:
61:85:ce:c9:4c:6a:0b:0e:b0:a4:c4:c2:52:66:ee:8f:73:b9:
d3:b8:44:08:5a:0c:56:eb:6a:99:d4:f7:35:0c:07:8a:04:0d:
3d:cc:54:8e:09:f2:0e:d0:e0:c9:9c:44:12:f1:ef:d3:cf:8d:
ec:04:7e:36:9f:a2:af:cd:00:f1:db:6a:f7:f0:4d:1d:69:01:
fa:37:db:5d:85:8f:c9:ca:cc:31:2c:56:a4:f4:49:43:95:bb:
08:b3:07:12:17:c0:4c:be:e2:d4:df:c5:ea:b5:44:45:a3:45:
71:83:05:bc:79:c4:93:e6:1b:40:3f:94:1e:d8:fb:b4:4b:c6:
1d:f4:18:9a:33:75:e7:71:ad:8e:40:17:54:53:97:19:ff:3c:
65:69:f8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:16:14 2024 by rpki-client on console-ams.rpki-client.org