Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/hUj1yXfuF1gp8zuT4HjYGLWpL6g.roa
File: hUj1yXfuF1gp8zuT4HjYGLWpL6g.roa (raw, json)
Hash identifier: T2LAaA0Yt+iJYh9fnBuYrkbB5VONirLa+CMhvIex0wM=
Subject key identifier: 85:48:F5:C9:77:EE:17:58:29:F3:3B:93:E0:78:D8:18:B5:A9:2F:A8
Certificate issuer: /CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Certificate serial: 018CC7950DC288C19F3209EC760529D7B8C4
Authority key identifier: 34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/hUj1yXfuF1gp8zuT4HjYGLWpL6g.roa
Signing time: Tue 02 Jan 2024 00:31:23 +0000
ROA not before: Tue 02 Jan 2024 00:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42837
IP address blocks: 212.42.105.0/24 maxlen: 24
212.42.103.0/24 maxlen: 24
212.42.124.0/24 maxlen: 24
212.42.125.0/24 maxlen: 24
212.42.126.0/24 maxlen: 24
212.42.127.0/24 maxlen: 24
77.95.56.0/24 maxlen: 24
77.95.57.0/24 maxlen: 24
77.95.58.0/24 maxlen: 24
77.95.61.0/24 maxlen: 24
31.192.252.0/24 maxlen: 24
31.192.253.0/24 maxlen: 24
31.192.255.0/24 maxlen: 24
31.192.254.0/24 maxlen: 24
94.143.196.0/24 maxlen: 24
94.143.198.0/24 maxlen: 24
94.143.197.0/24 maxlen: 24
94.143.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/NAd7QemIc-fwb7HfP105xyGxND8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/NAd7QemIc-fwb7HfP105xyGxND8.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:0d:c2:88:c1:9f:32:09:ec:76:05:29:d7:b8:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Validity
Not Before: Jan 2 00:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8548f5c977ee175829f33b93e078d818b5a92fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:7f:58:c8:f5:b1:0e:83:b9:e5:94:7c:1e:
34:96:44:87:b4:a8:40:ef:ce:ae:78:ae:44:b4:03:
c5:ca:42:29:30:de:b2:90:8b:1e:51:27:0e:c8:a1:
4b:15:c7:bd:13:5f:f7:43:19:d8:17:8b:43:fd:59:
e3:25:91:8e:ed:0a:ea:bb:84:77:79:3a:46:54:0f:
cf:c8:12:20:71:d4:37:4e:b1:46:52:28:a0:74:b9:
f3:8e:64:41:be:1b:f6:88:e9:a1:ef:d1:56:41:af:
6a:ac:e2:cd:41:1a:8f:b4:07:25:2e:4c:97:59:99:
30:d6:a0:17:56:30:db:9f:bf:7a:51:43:cb:66:52:
33:fe:f8:11:63:0d:3c:56:91:7d:30:55:30:ac:1d:
eb:ee:ef:07:48:82:02:2a:a1:14:6b:c1:74:9f:de:
30:b0:75:99:26:06:02:ba:50:da:8f:a7:d1:66:71:
b6:a8:36:22:5e:1e:9d:ac:64:f7:24:90:d9:75:f4:
cd:14:fb:9e:b8:ad:a6:f1:b6:c9:27:bd:19:0f:e0:
72:59:a3:08:50:bb:c2:89:57:8e:34:0c:e5:94:2f:
4e:31:de:25:74:17:73:08:36:14:93:de:64:17:62:
52:d6:fe:d9:34:8a:f8:cf:14:75:7d:ce:ca:67:17:
ae:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:48:F5:C9:77:EE:17:58:29:F3:3B:93:E0:78:D8:18:B5:A9:2F:A8
X509v3 Authority Key Identifier:
keyid:34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/hUj1yXfuF1gp8zuT4HjYGLWpL6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/NAd7QemIc-fwb7HfP105xyGxND8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.192.252.0/22
77.95.56.0-77.95.58.255
77.95.61.0/24
94.143.196.0/22
212.42.103.0/24
212.42.105.0/24
212.42.124.0/22
Signature Algorithm: sha256WithRSAEncryption
68:fb:d3:14:8f:e8:5b:ff:3f:4d:a1:35:78:64:3d:ab:c2:b9:
78:a6:48:35:5a:29:f3:6d:e2:05:d3:07:b4:a0:47:2b:6c:fd:
5d:39:5d:48:36:bc:50:d4:8d:07:20:54:5a:cc:e1:53:ad:de:
3e:9d:ac:d1:2c:b5:64:55:ee:62:cd:9f:99:30:fd:ae:75:a3:
6d:e3:dd:f0:d3:4c:db:76:8a:60:a9:70:ef:8c:ad:67:25:87:
29:e2:20:bd:3a:78:79:ce:d0:a0:38:2e:bf:7c:3a:a7:ec:87:
34:54:3f:46:d5:d9:7b:9a:55:06:4f:4d:29:0b:62:10:a5:c9:
a4:48:31:98:a5:6a:fb:8b:f9:e3:f1:db:86:d8:e5:79:7f:0d:
6a:c1:bc:00:c2:65:45:11:ff:b4:b3:7d:c6:21:d4:60:c4:88:
4a:1e:30:c5:91:96:ad:be:7c:49:1a:ff:fd:7c:ac:5d:4f:3a:
8d:d0:5e:a2:58:66:1e:e1:32:9a:92:ec:91:94:7d:66:64:b6:
c1:4b:63:3c:d1:b6:2c:ed:65:b1:3a:b3:b2:1b:40:38:e3:65:
95:07:ee:59:bd:44:9f:d2:6a:ed:f2:d4:67:e0:03:c2:b5:04:
62:20:81:b3:c3:54:f3:ae:8e:37:e7:35:61:e2:8c:95:f0:c7:
90:9e:51:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:40:15 2024 by rpki-client on console-fra.rpki-client.org