Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/0tM4wR1ayQePluCCPyD62q1zUzc.roa
File: 0tM4wR1ayQePluCCPyD62q1zUzc.roa (raw, json)
Hash identifier: F0Ju056CuUfmFKAJAgH7W1A87/icjAgXkG7wxL4TCXg=
Subject key identifier: D2:D3:38:C1:1D:5A:C9:07:8F:96:E0:82:3F:20:FA:DA:AD:73:53:37
Certificate issuer: /CN=241455f852c6ad4a0412e5ea308aa66172d1d147
Certificate serial: 018CC79361C246679F2C1AA6C780AE43E832
Authority key identifier: 24:14:55:F8:52:C6:AD:4A:04:12:E5:EA:30:8A:A6:61:72:D1:D1:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/0tM4wR1ayQePluCCPyD62q1zUzc.roa
Signing time: Tue 02 Jan 2024 00:29:33 +0000
ROA not before: Tue 02 Jan 2024 00:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51569
IP address blocks: 185.159.55.0/24 maxlen: 24
185.159.52.0/22 maxlen: 22
185.159.52.0/24 maxlen: 24
185.159.53.0/24 maxlen: 24
185.159.54.0/24 maxlen: 24
46.20.82.0/24 maxlen: 24
46.20.80.0/20 maxlen: 20
46.20.83.0/24 maxlen: 24
46.20.84.0/24 maxlen: 24
46.20.85.0/24 maxlen: 24
46.20.80.0/24 maxlen: 24
46.20.81.0/24 maxlen: 24
46.20.89.0/24 maxlen: 24
46.20.90.0/24 maxlen: 24
46.20.91.0/24 maxlen: 24
46.20.86.0/24 maxlen: 24
46.20.87.0/24 maxlen: 24
46.20.88.0/24 maxlen: 24
46.20.92.0/24 maxlen: 24
46.20.93.0/24 maxlen: 24
46.20.94.0/24 maxlen: 24
46.20.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:61:c2:46:67:9f:2c:1a:a6:c7:80:ae:43:e8:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=241455f852c6ad4a0412e5ea308aa66172d1d147
Validity
Not Before: Jan 2 00:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2d338c11d5ac9078f96e0823f20fadaad735337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:81:55:c7:3e:ff:5e:41:b8:dc:ec:63:ba:72:
92:61:03:61:87:a3:93:ad:ae:41:ed:64:6e:8a:b8:
6f:49:33:35:33:75:98:69:ce:90:c2:e7:a0:57:62:
42:88:64:ed:1d:08:74:fa:ba:db:32:21:08:20:a9:
86:2d:c3:36:77:45:54:1c:10:3e:46:d0:84:02:f3:
71:31:70:cb:7a:65:37:b0:60:21:cb:bd:84:73:13:
58:ba:72:e5:e9:fc:c1:9d:80:44:16:23:9b:98:df:
67:90:d4:a5:c3:bb:89:1a:7c:a9:6d:4b:67:cd:0c:
cb:29:61:8d:f7:26:4e:bd:94:b1:b9:0f:55:71:d8:
24:11:8f:c3:55:6d:42:29:75:7c:83:be:ae:ce:e0:
60:04:06:81:97:5c:df:10:08:ca:54:3c:7d:d0:eb:
11:eb:fb:e8:50:8d:3c:1f:dd:cb:8d:6d:35:94:d5:
bc:20:83:1f:5e:9c:c6:15:6e:be:15:fd:ca:0f:a6:
22:f0:23:4a:a5:97:ab:ed:e2:5e:26:37:02:8e:79:
5e:4b:76:21:ff:0c:ec:42:7b:6b:91:e8:ba:0f:61:
02:6f:4d:1a:15:b8:7b:e9:e7:5d:e6:49:8f:a3:6b:
79:6e:0d:ff:af:de:87:6e:d7:bb:db:f7:1e:bd:b6:
c4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D3:38:C1:1D:5A:C9:07:8F:96:E0:82:3F:20:FA:DA:AD:73:53:37
X509v3 Authority Key Identifier:
keyid:24:14:55:F8:52:C6:AD:4A:04:12:E5:EA:30:8A:A6:61:72:D1:D1:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/0tM4wR1ayQePluCCPyD62q1zUzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/90add8-f3be-48a8-9e92-3b32c19f6385/1/JBRV-FLGrUoEEuXqMIqmYXLR0Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.80.0/20
185.159.52.0/22
Signature Algorithm: sha256WithRSAEncryption
84:40:18:ff:21:f1:aa:e8:a9:d8:df:70:2f:97:49:45:86:32:
b3:f4:ec:17:21:57:c6:6c:ee:c8:15:bf:1d:6d:ad:ab:04:58:
9e:0f:67:95:2e:a9:43:b1:27:eb:cd:46:f1:4f:48:4d:d5:eb:
9d:18:99:c2:1e:81:5e:51:b0:33:9f:6a:41:98:f0:90:47:1f:
b5:49:d3:9f:0e:07:e1:59:84:71:08:54:4b:da:81:3d:f4:85:
26:26:64:3f:79:6c:f2:8e:02:e6:40:46:26:5a:0e:63:f6:d1:
90:e0:60:18:0d:5c:6b:fe:e6:23:e0:77:36:e9:5c:98:4b:c1:
95:dc:ee:7e:95:e3:5f:d2:8c:7b:35:ce:cd:e9:56:26:94:c4:
22:7e:52:e6:c9:38:89:71:46:bc:b8:81:f9:53:d4:35:4a:a1:
5d:5d:b4:37:13:05:9e:e6:c3:51:67:06:65:b5:15:9f:c2:9a:
5a:fc:24:88:df:c7:06:19:0d:df:7f:2a:2c:cf:e1:fe:36:db:
e4:1f:e6:1f:15:8f:40:90:90:31:13:6c:c8:fa:0e:74:11:f5:
ac:51:04:2e:7e:d7:93:53:81:bf:79:c8:b8:c4:e3:4d:d2:54:
27:7e:98:80:09:96:e8:83:70:22:af:b3:28:c2:37:17:cc:f9:
3e:79:49:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 11:48:27 2024 by rpki-client on console-fra.rpki-client.org