Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/M6d_gp1qZ_x1CSUxGUJa1HtgeRE.roa
File: M6d_gp1qZ_x1CSUxGUJa1HtgeRE.roa (raw, json)
Hash identifier: MWm47Nd7lSKTOwVTg5dqPPThvefWWI8IWLqoda9u9MM=
Subject key identifier: 33:A7:7F:82:9D:6A:67:FC:75:09:25:31:19:42:5A:D4:7B:60:79:11
Certificate issuer: /CN=5484b53ec069e302623596fb3aa79f5d782c09f9
Certificate serial: 018CC9BCD0C200FD9ED2CD98D6625BFBE585
Authority key identifier: 54:84:B5:3E:C0:69:E3:02:62:35:96:FB:3A:A7:9F:5D:78:2C:09:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VIS1PsBp4wJiNZb7OqefXXgsCfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/M6d_gp1qZ_x1CSUxGUJa1HtgeRE.roa
Signing time: Tue 02 Jan 2024 10:34:03 +0000
ROA not before: Tue 02 Jan 2024 10:34:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34949
IP address blocks: 185.60.24.0/23 maxlen: 23
185.60.24.0/24 maxlen: 24
185.60.25.0/24 maxlen: 24
185.60.26.0/23 maxlen: 23
185.60.26.0/24 maxlen: 24
185.85.227.0/24 maxlen: 24
159.100.35.0/24 maxlen: 24
159.100.34.0/23 maxlen: 23
159.100.34.0/24 maxlen: 24
159.100.32.0/24 maxlen: 24
159.100.32.0/23 maxlen: 23
159.100.33.0/24 maxlen: 24
159.100.38.0/24 maxlen: 24
159.100.38.0/23 maxlen: 23
159.100.39.0/24 maxlen: 24
159.100.40.0/24 maxlen: 24
159.100.40.0/23 maxlen: 23
217.112.58.0/24 maxlen: 24
217.112.52.0/24 maxlen: 24
217.112.52.0/23 maxlen: 23
217.112.53.0/24 maxlen: 24
217.112.58.0/23 maxlen: 23
217.112.57.0/24 maxlen: 24
217.112.54.0/24 maxlen: 24
217.112.54.0/23 maxlen: 23
217.112.56.0/24 maxlen: 24
217.112.56.0/23 maxlen: 23
217.112.55.0/24 maxlen: 24
217.112.59.0/24 maxlen: 24
217.112.61.0/24 maxlen: 24
217.112.60.0/23 maxlen: 23
217.112.60.0/24 maxlen: 24
217.112.63.0/24 maxlen: 24
217.112.62.0/23 maxlen: 24
217.112.50.0/23 maxlen: 23
217.112.51.0/24 maxlen: 24
217.112.50.0/24 maxlen: 24
217.112.49.0/24 maxlen: 24
217.112.48.0/23 maxlen: 24
185.85.224.0/24 maxlen: 24
185.85.224.0/23 maxlen: 23
185.85.226.0/24 maxlen: 24
185.85.225.0/24 maxlen: 24
185.85.226.0/23 maxlen: 23
109.239.112.0/24 maxlen: 24
109.239.112.0/23 maxlen: 23
109.239.114.0/23 maxlen: 24
109.239.113.0/24 maxlen: 24
109.239.118.0/23 maxlen: 23
109.239.118.0/24 maxlen: 24
109.239.116.0/24 maxlen: 24
109.239.116.0/23 maxlen: 23
109.239.117.0/24 maxlen: 24
109.239.119.0/24 maxlen: 24
109.239.125.0/24 maxlen: 24
109.239.122.0/23 maxlen: 23
109.239.122.0/24 maxlen: 24
109.239.123.0/24 maxlen: 24
109.239.124.0/23 maxlen: 23
109.239.126.0/24 maxlen: 24
109.239.126.0/23 maxlen: 23
109.239.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/VIS1PsBp4wJiNZb7OqefXXgsCfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/VIS1PsBp4wJiNZb7OqefXXgsCfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/VIS1PsBp4wJiNZb7OqefXXgsCfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:d0:c2:00:fd:9e:d2:cd:98:d6:62:5b:fb:e5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5484b53ec069e302623596fb3aa79f5d782c09f9
Validity
Not Before: Jan 2 10:34:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33a77f829d6a67fc7509253119425ad47b607911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:a8:b2:79:34:58:8e:e3:e4:5c:d5:53:d1:
01:4c:88:a2:dc:45:11:21:22:71:d7:c3:e4:54:2c:
ef:62:ef:d6:b8:1e:09:10:1c:46:b2:c5:97:eb:42:
a8:7c:30:01:9e:e8:e3:c7:a6:55:41:8f:70:50:bd:
2f:8c:ab:f7:ba:b8:96:f3:ab:cb:3d:47:34:7a:84:
59:0f:4a:3d:53:f2:15:72:de:5e:8c:ee:cf:b5:3c:
67:81:a4:1a:69:6e:ec:d9:62:63:e2:1a:c1:d2:23:
1a:92:29:6d:f7:c3:6e:cc:5d:75:f8:31:a1:97:2d:
08:66:f2:39:70:87:5b:9a:b8:d1:3d:50:7c:c4:7a:
40:a3:3a:74:cb:c9:a9:3b:6b:a7:99:82:9b:70:79:
45:2a:a1:ec:c6:45:fc:d2:eb:90:8f:4c:f1:80:b7:
f9:31:e6:81:aa:6e:99:27:54:89:00:c2:db:21:e0:
c8:e6:2b:c4:df:b7:72:ff:4b:a8:78:4b:31:ee:7d:
63:7c:00:7e:f4:b6:3f:86:2e:13:32:73:00:dd:15:
fb:5d:eb:74:56:c9:88:f8:c8:a4:71:1b:d1:5e:bf:
b2:34:fd:84:cb:5e:f3:15:84:30:af:5f:23:2c:aa:
a8:65:1d:56:fe:33:b8:95:07:93:0f:10:b3:68:3a:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A7:7F:82:9D:6A:67:FC:75:09:25:31:19:42:5A:D4:7B:60:79:11
X509v3 Authority Key Identifier:
keyid:54:84:B5:3E:C0:69:E3:02:62:35:96:FB:3A:A7:9F:5D:78:2C:09:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VIS1PsBp4wJiNZb7OqefXXgsCfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/M6d_gp1qZ_x1CSUxGUJa1HtgeRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ca618c-35ce-4d31-bb89-ce8dd6898b27/1/VIS1PsBp4wJiNZb7OqefXXgsCfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.239.112.0/21
109.239.122.0-109.239.127.255
159.100.32.0/22
159.100.38.0-159.100.41.255
185.60.24.0/22
185.85.224.0/22
217.112.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:9b:a6:24:21:b4:fe:c1:1b:6d:03:2e:44:b6:30:5f:0a:73:
63:c8:de:50:4f:7f:5f:ba:d2:27:21:9b:db:de:4a:0a:63:43:
8e:45:b8:cd:50:e2:83:79:4f:41:aa:15:8f:fa:d2:40:f7:60:
11:2a:63:e2:63:ab:0c:da:ea:aa:a7:79:77:f0:0b:14:50:a1:
c9:bb:02:6c:69:a3:a8:56:a2:8d:5d:39:6a:c8:84:a8:d3:f3:
e3:59:4d:4c:7b:8a:94:f8:27:14:20:2b:1f:21:b6:dd:37:d8:
54:3b:c9:11:65:e5:c6:db:17:48:12:c6:c3:56:86:5e:f1:2b:
49:e4:46:75:23:4d:17:69:67:da:88:0d:0f:58:32:a5:ba:e3:
0a:30:f0:24:9c:e7:47:b1:5e:2b:4e:2a:61:8d:2e:cb:85:68:
1b:27:6c:f7:99:1a:4a:aa:55:07:96:7b:55:c4:76:3e:11:ba:
34:e8:72:d1:07:79:92:ca:70:1e:a9:a7:1b:4e:73:ef:24:1c:
af:a2:b3:0e:51:3f:70:e6:a7:f7:6c:50:8d:bd:13:08:1b:4e:
50:46:c5:60:76:10:56:1e:c4:ca:bb:38:4a:48:ce:cb:65:a5:
02:16:76:e2:c2:21:6c:21:59:e5:95:ca:00:f8:bc:51:5c:18:
eb:78:24:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 06:20:46 2024 by rpki-client on console-ams.rpki-client.org