Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/1-QgrtpGbNfNmJvToqr3uiDtOovk.roa
File: 1-QgrtpGbNfNmJvToqr3uiDtOovk.roa (raw, json)
Hash identifier: baSU72CsPNrM615wY9pqtq5/5xmgaaIPRRA/+J2W0sA=
Subject key identifier: F9:08:2B:B6:91:9B:35:F3:66:26:F4:E8:AA:BD:EE:88:3B:4E:A2:F9
Certificate issuer: /CN=da8a978b9ce5d26ebcaad0ccb67918a9df318f86
Certificate serial: 018CC80111478B45A229E0442F297CCF0C48
Authority key identifier: DA:8A:97:8B:9C:E5:D2:6E:BC:AA:D0:CC:B6:79:18:A9:DF:31:8F:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2oqXi5zl0m68qtDMtnkYqd8xj4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/1-QgrtpGbNfNmJvToqr3uiDtOovk.roa
Signing time: Tue 02 Jan 2024 02:29:22 +0000
ROA not before: Tue 02 Jan 2024 02:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25455
IP address blocks: 91.107.72.0/21 maxlen: 21
91.107.88.0/21 maxlen: 21
185.79.40.0/22 maxlen: 22
159.253.124.0/22 maxlen: 22
83.143.68.0/22 maxlen: 22
31.210.169.0/24 maxlen: 24
91.90.200.0/21 maxlen: 21
92.43.164.0/23 maxlen: 23
94.232.30.0/24 maxlen: 24
185.91.132.0/22 maxlen: 22
2a05:7144::/30 maxlen: 30
2a05:7140::/32 maxlen: 32
2a05:7142::/31 maxlen: 31
2a05:7141::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/2oqXi5zl0m68qtDMtnkYqd8xj4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/2oqXi5zl0m68qtDMtnkYqd8xj4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/2oqXi5zl0m68qtDMtnkYqd8xj4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 19:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:11:47:8b:45:a2:29:e0:44:2f:29:7c:cf:0c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8a978b9ce5d26ebcaad0ccb67918a9df318f86
Validity
Not Before: Jan 2 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9082bb6919b35f36626f4e8aabdee883b4ea2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:24:e9:e1:8c:29:28:6f:b2:69:fe:2b:0a:c4:
f8:67:3e:84:e7:63:11:a6:76:17:d3:53:c7:e1:c2:
eb:5f:71:aa:db:7e:3a:7a:0a:98:11:9f:8f:6b:11:
65:54:5d:7e:d4:04:e6:30:5e:9f:71:1d:e7:e6:10:
c9:5a:01:30:c3:53:3a:b5:cd:0c:e3:ae:1e:36:2f:
08:20:5c:d5:a0:7e:5b:82:c4:c0:fe:8f:53:35:b6:
3b:65:1a:ce:32:75:de:20:64:41:c2:23:26:ea:d3:
1b:92:8f:af:5d:ca:35:1f:c3:38:0c:44:96:92:7d:
5b:c1:dd:13:81:e8:ad:23:8d:c3:36:9f:3b:37:af:
28:50:61:ac:37:09:47:21:1e:31:c2:a2:2a:05:33:
f4:1d:01:14:29:2c:3b:b8:7e:32:b0:8a:aa:2f:3a:
50:72:40:81:ba:54:0d:d9:fd:88:c3:e2:c4:96:88:
5d:ca:97:2d:15:92:2e:b7:6d:9b:42:16:6c:b0:7a:
66:64:3f:70:b0:7a:ac:f8:cd:53:ba:b4:05:af:93:
64:bf:89:27:34:76:63:b8:05:dd:83:2b:81:19:6e:
9f:68:d7:5b:e4:32:7f:37:d7:eb:b1:94:ae:15:54:
a8:d1:4d:c8:6e:ed:ad:f1:3a:21:be:80:65:d2:c8:
2a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:08:2B:B6:91:9B:35:F3:66:26:F4:E8:AA:BD:EE:88:3B:4E:A2:F9
X509v3 Authority Key Identifier:
keyid:DA:8A:97:8B:9C:E5:D2:6E:BC:AA:D0:CC:B6:79:18:A9:DF:31:8F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2oqXi5zl0m68qtDMtnkYqd8xj4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/1-QgrtpGbNfNmJvToqr3uiDtOovk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/18e48f-5972-4d3f-bb6a-b78dac37eac8/1/2oqXi5zl0m68qtDMtnkYqd8xj4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.169.0/24
83.143.68.0/22
91.90.200.0/21
91.107.72.0/21
91.107.88.0/21
92.43.164.0/23
94.232.30.0/24
159.253.124.0/22
185.79.40.0/22
185.91.132.0/22
IPv6:
2a05:7140::/29
Signature Algorithm: sha256WithRSAEncryption
55:f3:e0:ec:f6:f2:e4:c9:f5:1a:67:97:7d:cf:de:6d:6c:4f:
21:7d:eb:77:76:c2:ee:5d:17:47:30:12:dc:e9:65:e1:46:29:
8e:c6:02:cc:5d:28:f1:b1:6a:f1:78:0f:f0:df:e4:a3:3b:4a:
44:c8:61:a9:5f:bf:f1:ff:df:eb:8d:28:1d:05:ac:4b:e6:82:
39:6e:03:24:f5:35:e2:1d:9a:cb:ca:b3:87:11:38:4d:9d:a4:
3d:ae:3b:5e:f2:8c:0c:77:b6:62:e9:5a:6d:d6:c0:62:f2:67:
52:31:de:7c:f0:43:1d:b8:c0:e8:57:87:56:69:d8:53:a7:7d:
01:93:cd:ba:27:42:c0:cf:12:84:00:26:1e:7c:2b:71:16:70:
a2:88:bd:53:a1:c1:4d:dd:f4:d5:14:79:19:a3:65:27:b8:a6:
09:b9:46:2c:92:86:ec:ce:65:8d:03:ee:5d:6e:bb:86:9f:35:
a8:4d:c7:47:43:90:6a:2e:b0:07:f3:1c:d6:4f:38:a5:f9:33:
b5:1d:b1:22:ab:5f:8e:a1:14:a6:70:bf:19:0a:8e:5d:b6:d2:
29:07:40:97:96:bc:ac:72:60:db:ed:4c:33:6e:e9:d5:73:2f:
aa:88:ba:62:95:62:35:55:87:02:4d:6e:c4:96:67:26:bb:74:
0a:ac:d9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 22:38:32 2024 by rpki-client on console-ams.rpki-client.org