Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/W-YX6jDDfq3ftu8mGhB3FjpzDaE.roa
File: W-YX6jDDfq3ftu8mGhB3FjpzDaE.roa (raw, json)
Hash identifier: sRFGArVxaSfVeF+SPsGlXqoHISva2NLXCWGdnsS0QH0=
Subject key identifier: 5B:E6:17:EA:30:C3:7E:AD:DF:B6:EF:26:1A:10:77:16:3A:73:0D:A1
Certificate issuer: /CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Certificate serial: 018CC726D87C2438751AE33F344C7AE062D4
Authority key identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/W-YX6jDDfq3ftu8mGhB3FjpzDaE.roa
Signing time: Mon 01 Jan 2024 22:31:00 +0000
ROA not before: Mon 01 Jan 2024 22:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25591
IP address blocks: 93.190.176.0/22 maxlen: 22
93.190.180.0/22 maxlen: 22
37.75.216.0/22 maxlen: 22
37.75.220.0/22 maxlen: 22
217.175.0.0/22 maxlen: 22
80.242.96.0/20 maxlen: 20
80.242.96.0/22 maxlen: 22
217.175.4.0/22 maxlen: 22
80.242.100.0/22 maxlen: 22
217.175.8.0/22 maxlen: 22
80.242.104.0/22 maxlen: 22
217.175.12.0/22 maxlen: 22
80.242.108.0/22 maxlen: 22
31.3.24.0/22 maxlen: 22
31.3.28.0/22 maxlen: 22
185.14.16.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 19:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:d8:7c:24:38:75:1a:e3:3f:34:4c:7a:e0:62:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Validity
Not Before: Jan 1 22:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be617ea30c37eaddfb6ef261a1077163a730da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:cf:2a:06:95:b6:17:2a:62:3b:b8:1f:9a:
b9:b2:1e:18:ce:86:bc:75:7d:5e:1f:02:78:31:85:
21:31:96:7e:6a:bf:16:bc:39:73:42:bf:77:d9:13:
16:83:bc:dc:9c:d2:ac:70:b1:4b:75:01:46:e1:49:
45:4c:75:2e:af:d1:7e:68:4a:2a:b0:87:c4:f1:e0:
d8:54:27:e0:72:92:da:ea:f6:69:eb:36:03:d1:f1:
c9:b8:9e:88:d7:19:34:d5:af:08:b2:58:ec:96:b8:
6e:a3:50:b0:84:d1:88:0c:7a:cc:d6:93:7e:f6:59:
7c:e9:35:bb:b3:05:f5:a3:84:6a:aa:42:72:83:a1:
08:ae:36:ab:a7:0f:7a:f0:bf:c0:96:ed:a1:20:55:
dc:f3:49:ee:75:d2:0a:1d:9f:a3:58:2c:12:29:38:
f0:80:c5:7c:8a:8b:c3:3c:e7:de:4a:27:cc:b0:5d:
ed:fc:30:9d:e1:9d:39:8f:31:d1:a8:91:17:1b:08:
2e:3f:24:38:93:2e:b3:1f:52:87:65:17:00:18:a6:
65:ee:17:03:87:8f:39:82:d3:dc:86:48:8a:46:23:
1a:a8:a5:e3:db:b7:a9:62:07:c2:4c:9a:a1:74:39:
d0:c9:b4:c8:26:83:de:40:12:7f:f7:75:38:29:a0:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E6:17:EA:30:C3:7E:AD:DF:B6:EF:26:1A:10:77:16:3A:73:0D:A1
X509v3 Authority Key Identifier:
keyid:83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/W-YX6jDDfq3ftu8mGhB3FjpzDaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.24.0/21
37.75.216.0/21
80.242.96.0/20
93.190.176.0/21
185.14.16.0/22
217.175.0.0/20
Signature Algorithm: sha256WithRSAEncryption
62:23:55:98:87:5e:34:1d:c1:12:46:12:e1:a1:f6:74:c4:aa:
a1:45:ad:19:b9:3b:de:4c:17:14:94:b6:b1:17:5e:ad:e4:42:
63:36:8b:65:c6:3b:7e:b1:83:b9:07:70:f4:5b:2b:a5:5a:28:
f6:56:0c:ba:a6:56:c8:66:e3:66:f6:0c:8e:3b:09:76:1c:5d:
0e:3f:42:2c:a8:c1:64:9d:28:f8:af:23:3e:36:7e:83:f8:b4:
7b:a2:6b:6c:1f:f9:b1:57:0a:e4:a2:8a:13:a4:73:be:ef:24:
d6:62:95:63:57:e9:f7:6c:41:dd:36:2a:d7:36:69:9f:28:0e:
99:34:32:66:73:7a:9b:72:e5:80:df:d0:e7:14:0b:7b:15:92:
51:dd:07:ed:7b:6b:a7:f8:d1:9e:6c:7d:0d:1f:ee:ea:62:4e:
dc:9d:d7:fa:98:50:03:0f:42:51:4c:c3:a4:df:be:47:8f:5e:
de:7f:3c:96:4a:c5:3e:2d:bf:4b:12:78:be:e6:8a:8c:0f:da:
bf:f4:5c:f5:3c:79:35:7c:69:3c:93:59:28:86:aa:1e:85:35:
65:fd:ab:74:62:f7:5f:cf:1a:be:64:59:e4:ff:eb:3d:35:76:
0f:8a:96:d5:52:02:a2:2a:ed:e6:1e:48:bb:d7:22:d3:ca:ac:
e8:22:f2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:17:23 2024 by rpki-client on console-fra.rpki-client.org