Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/Y4A45d0CfWkDxh1kLMuI40yvtRM.roa
File: Y4A45d0CfWkDxh1kLMuI40yvtRM.roa (raw, json)
Hash identifier: SaRvaxd1y1jbiKw0uDkpVKkvIcamscb58b5FKh8gifY=
Subject key identifier: 63:80:38:E5:DD:02:7D:69:03:C6:1D:64:2C:CB:88:E3:4C:AF:B5:13
Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Certificate serial: 019327CC70E67443BD5F3389CC8F255388AF
Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/Y4A45d0CfWkDxh1kLMuI40yvtRM.roa
Signing time: Wed 13 Nov 2024 23:12:09 +0000
ROA not before: Wed 13 Nov 2024 23:12:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199912
IP address blocks: 88.214.24.0/24 maxlen: 24
91.238.180.0/24 maxlen: 24
185.55.240.0/24 maxlen: 24
193.24.211.0/24 maxlen: 24
194.24.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:27:cc:70:e6:74:43:bd:5f:33:89:cc:8f:25:53:88:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Validity
Not Before: Nov 13 23:12:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=638038e5dd027d6903c61d642ccb88e34cafb513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:21:3c:8f:6b:84:a3:83:9d:7d:4a:4b:97:3b:
ea:fe:3c:9d:81:b9:4b:29:f4:85:ef:a0:5e:ac:58:
f5:84:31:6d:00:53:03:5c:50:a4:ee:79:ad:d1:e4:
26:2c:87:6d:5e:c4:d3:56:52:68:2f:65:75:ed:42:
91:96:51:c8:d2:85:93:d7:73:f2:37:54:e5:a3:54:
3d:b3:da:ee:a2:76:ca:37:12:73:89:ae:44:a8:bf:
3d:44:d8:82:e6:cd:2c:9c:7f:02:5b:62:81:4c:6e:
f7:26:b0:cf:43:47:0f:77:17:18:2a:59:4d:13:b8:
77:7d:38:56:2c:84:e8:b4:7f:8b:a9:8b:ca:64:6b:
81:b8:f0:6d:8c:33:d8:9c:64:ca:29:b7:f9:cd:7a:
a3:04:5e:4c:3b:a6:b7:b6:b4:c9:e7:f4:1f:23:42:
a9:6b:af:41:2c:a5:a8:b5:31:6e:62:25:8e:c9:43:
c7:70:eb:d6:dd:67:2d:67:0b:43:cb:1c:01:e6:a4:
93:14:1f:a3:10:3c:19:6e:5a:2a:9b:59:2a:c2:0e:
f4:d0:cc:2f:96:ee:f7:96:b3:1a:8e:e9:d2:64:23:
34:ad:ac:45:a0:bb:0c:7c:4b:ce:21:46:9a:49:c5:
82:71:16:e2:c9:d9:75:be:b1:da:9a:44:ee:bf:75:
28:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:80:38:E5:DD:02:7D:69:03:C6:1D:64:2C:CB:88:E3:4C:AF:B5:13
X509v3 Authority Key Identifier:
keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/Y4A45d0CfWkDxh1kLMuI40yvtRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.24.0/24
91.238.180.0/24
185.55.240.0/24
193.24.211.0/24
194.24.161.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f4:65:1b:19:bc:d4:30:a4:61:43:35:c8:85:72:1b:60:d3:
ad:6b:d8:df:d8:1d:16:f3:75:d8:0e:6a:50:7c:8d:75:fc:71:
50:26:67:39:2e:bc:63:02:e7:9e:18:6f:09:6c:fe:d9:c8:e4:
cb:c0:c8:0e:d3:05:02:fc:0f:9c:56:a8:d6:e6:96:ff:be:93:
b5:d3:3b:56:b1:d1:a5:a9:0f:0d:3a:77:69:37:4a:b4:fb:e5:
59:5c:14:36:4e:97:13:a5:71:e0:d9:1c:1c:a6:09:14:10:68:
a2:24:5f:63:4d:98:62:57:de:c9:51:5c:6e:d8:cc:bc:3e:30:
d4:8c:8b:68:79:41:fd:3d:86:52:5f:9b:71:4d:4a:e4:5a:35:
21:cd:0a:13:21:f2:2d:02:ff:37:87:2a:d4:37:ad:0e:77:d7:
41:99:87:17:3d:ec:63:a6:1a:4c:b5:d1:cc:3e:c0:1a:e4:aa:
9c:17:c4:99:54:c6:df:0f:93:b6:71:bd:d8:56:1e:36:b2:04:
78:a4:2a:24:0b:b8:b4:3b:eb:4f:b1:ed:7b:bb:4c:56:fa:32:
4a:b8:cb:85:27:1b:4a:a7:28:a4:ae:fc:fc:fc:9b:73:42:1d:
eb:5d:34:b8:2b:ff:33:40:11:43:21:66:dc:e9:ce:2d:aa:16:
b0:83:31:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:06:37 2024 by rpki-client on console-fra.rpki-client.org