Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/RmYUuhyQknxk9bnGyV0xIMilXZ8.roa
File: RmYUuhyQknxk9bnGyV0xIMilXZ8.roa (raw, json)
Hash identifier: pfFJ/E6cW7Ra4+sylInuWb7zBYexPg1OOqrXaLYNjvQ=
Subject key identifier: 46:66:14:BA:1C:90:92:7C:64:F5:B9:C6:C9:5D:31:20:C8:A5:5D:9F
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F9B0A0DE4F7748A912C8DD98927AE331A
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/RmYUuhyQknxk9bnGyV0xIMilXZ8.roa
Signing time: Tue 21 May 2024 12:04:38 +0000
ROA not before: Tue 21 May 2024 12:04:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27176
IP address blocks: 5.172.181.0/24 maxlen: 24
37.77.146.0/24 maxlen: 24
193.142.242.0/24 maxlen: 24
193.142.249.0/24 maxlen: 24
193.192.1.0/24 maxlen: 24
193.192.15.0/24 maxlen: 24
213.170.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:0a:0d:e4:f7:74:8a:91:2c:8d:d9:89:27:ae:33:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 21 12:04:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=466614ba1c90927c64f5b9c6c95d3120c8a55d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f6:2b:c9:7b:a1:b1:fd:87:bf:df:37:99:87:
e8:b2:c2:04:6d:e8:86:9f:32:ec:30:8b:4e:13:8a:
0f:17:0b:0a:1e:76:57:0b:26:94:ae:d0:33:aa:0e:
23:bb:21:86:c9:0e:53:29:c5:9c:7d:8f:1a:14:f1:
8c:28:ac:cc:8a:87:3a:27:08:9a:9c:f8:58:00:6e:
18:3a:29:a2:54:b5:34:b3:76:62:91:6c:91:a9:21:
10:14:56:60:0c:9b:b7:a9:3c:e1:d2:93:44:ea:3c:
f4:53:f5:48:14:97:ef:bd:63:2a:4f:cc:8c:d4:06:
bd:1d:21:f4:bf:ad:d8:45:72:41:c7:e9:02:b6:88:
8a:9a:dd:5d:db:d6:b7:10:4d:bc:50:35:d4:c7:1a:
fc:f9:bb:99:eb:03:73:66:71:30:f1:39:07:50:b3:
1c:f5:96:09:3f:54:c5:f6:83:ca:01:04:46:ad:ee:
eb:d8:19:49:a1:aa:64:5c:62:f4:46:c8:57:1b:0e:
4e:4f:1d:92:45:54:51:57:27:3d:8f:2c:21:e9:b1:
05:43:5c:3c:4b:57:d0:94:93:0c:1b:c4:84:18:2c:
f9:87:b9:7d:16:2a:99:92:e7:33:a8:f6:c6:00:b6:
39:e4:08:45:c4:ba:68:56:26:d3:f7:53:73:e0:2a:
54:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:66:14:BA:1C:90:92:7C:64:F5:B9:C6:C9:5D:31:20:C8:A5:5D:9F
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/RmYUuhyQknxk9bnGyV0xIMilXZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.181.0/24
37.77.146.0/24
193.142.242.0/24
193.142.249.0/24
193.192.1.0/24
193.192.15.0/24
213.170.192.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:f6:be:97:e0:7c:2b:4a:f7:3b:93:4b:a8:67:28:d6:47:ce:
59:0a:d6:14:21:d8:a4:a2:1c:14:d4:0a:91:d2:e3:a8:1f:e0:
48:73:b6:fc:52:cb:06:94:b1:f1:55:49:c8:73:11:b2:4b:b1:
1e:45:3f:89:cf:64:8b:b0:6d:24:df:37:8a:8f:a9:f5:50:fb:
57:f5:a5:22:3a:a8:87:d4:65:18:be:fd:94:78:67:1d:3b:4c:
f0:32:5b:bc:b4:3a:7f:f6:70:9a:48:cd:9b:c9:98:0a:e0:e7:
3e:9a:20:62:53:3a:e4:23:b5:c4:97:80:2d:6c:41:b5:6b:08:
85:cb:4a:a1:b8:65:a8:b6:ed:3b:df:46:b4:39:8f:49:81:8b:
b1:f1:1c:96:7f:6c:87:2f:12:d2:3f:6b:78:4a:90:6c:03:6b:
1f:87:15:24:14:bb:5c:ab:39:c1:f9:b2:eb:f6:1f:53:43:03:
3d:d9:99:ce:a2:d2:60:6f:8d:17:be:7f:2e:31:6c:6b:ef:e1:
50:30:ba:64:f5:04:7e:bb:fa:33:71:21:7d:c8:05:f2:b2:00:
93:8c:6d:c9:eb:15:22:95:ce:d5:7e:c7:5a:85:67:f8:cd:d6:
1c:d1:5a:ab:e2:e5:91:56:13:f4:f7:87:1a:e8:47:36:4c:8b:
a8:66:7c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:43:18 2024 by rpki-client on console-fra.rpki-client.org