Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/1n6aLPRlZ9v6gf-3FbYvKf2Au4Y.roa
File: 1n6aLPRlZ9v6gf-3FbYvKf2Au4Y.roa (raw, json)
Hash identifier: NKue41WRQpgsc/zBcNYqVTmXmes3Im41X7R3nZlUARU=
Subject key identifier: D6:7E:9A:2C:F4:65:67:DB:FA:81:FF:B7:15:B6:2F:29:FD:80:BB:86
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01922925FFDA1B63B58B61C53BEAFB37627C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/1n6aLPRlZ9v6gf-3FbYvKf2Au4Y.roa
Signing time: Wed 25 Sep 2024 12:26:49 +0000
ROA not before: Wed 25 Sep 2024 12:26:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60446
IP address blocks: 31.210.37.0/24 maxlen: 24
31.210.38.0/24 maxlen: 24
31.210.39.0/24 maxlen: 24
31.210.40.0/24 maxlen: 24
78.135.75.0/24 maxlen: 24
78.135.76.0/24 maxlen: 24
188.132.224.0/24 maxlen: 24
188.132.226.0/24 maxlen: 24
188.132.230.0/24 maxlen: 24
188.132.239.0/24 maxlen: 24
188.132.241.0/24 maxlen: 24
188.132.242.0/24 maxlen: 24
188.132.243.0/24 maxlen: 24
188.132.250.0/24 maxlen: 24
188.132.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:25:ff:da:1b:63:b5:8b:61:c5:3b:ea:fb:37:62:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 25 12:26:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d67e9a2cf46567dbfa81ffb715b62f29fd80bb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e7:93:14:14:c2:73:15:6f:a5:fa:1b:60:61:
63:b3:59:a1:0c:56:fc:68:98:2d:c9:2a:ca:85:0e:
8d:ef:4f:a3:a4:2e:73:22:81:ee:d0:24:9b:0e:fb:
03:d0:0e:bb:df:c6:f6:ea:38:bf:0a:aa:e0:b4:40:
2d:ad:fe:f8:41:81:8c:9d:d4:ab:33:5d:9f:72:29:
7c:aa:79:fb:99:53:76:83:7b:cc:65:76:83:3b:8c:
66:1a:b6:4c:6e:bf:8e:f9:2e:91:bd:3b:42:2a:25:
3c:4a:36:f4:72:54:53:c9:ee:6c:16:53:d5:02:50:
f8:63:b4:61:98:9a:d1:b7:63:01:e0:01:86:fb:23:
89:d0:c2:22:9e:c3:2a:53:24:dc:55:32:6d:13:09:
4a:8b:1a:4f:ae:bc:88:51:f1:11:1f:d2:c9:f0:f1:
04:8e:bb:52:62:5a:23:98:9b:0c:0c:10:23:20:bf:
9d:4e:22:57:f9:9a:99:44:9f:bf:88:80:40:f8:6c:
8a:c0:6f:a8:d7:f8:5a:aa:b2:16:5b:f3:f8:df:a6:
69:c9:f3:26:bf:44:19:74:1a:6d:de:38:ab:5d:f1:
cc:45:aa:8c:76:e1:7e:28:88:7d:c1:bc:e0:43:26:
1f:69:51:d8:8b:74:5b:c0:7b:48:65:59:90:17:bb:
2f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7E:9A:2C:F4:65:67:DB:FA:81:FF:B7:15:B6:2F:29:FD:80:BB:86
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/1n6aLPRlZ9v6gf-3FbYvKf2Au4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.37.0-31.210.40.255
78.135.75.0-78.135.76.255
188.132.224.0/24
188.132.226.0/24
188.132.230.0/24
188.132.239.0/24
188.132.241.0-188.132.243.255
188.132.250.0/23
Signature Algorithm: sha256WithRSAEncryption
63:5f:78:ac:16:5d:9d:21:38:0b:77:b6:40:33:fb:1e:89:28:
bc:e3:37:73:5e:89:06:56:40:77:e4:bf:da:58:a0:8a:5f:39:
bb:a5:9c:7a:51:1b:1e:62:9e:63:4a:aa:c5:18:44:dd:91:63:
8c:5e:d3:11:d0:e6:7d:aa:a2:17:e5:37:09:24:33:db:a2:d8:
69:e7:51:57:1a:c3:cc:b1:14:aa:ee:b1:90:b8:1f:1e:6d:ae:
3e:09:4c:6c:3f:3e:f2:cc:bd:27:c9:ae:ce:ce:e4:7b:0a:80:
66:63:19:72:48:7d:9e:c9:01:fa:c5:c8:bc:f8:c4:43:56:9e:
0a:ed:25:97:32:86:36:ca:8c:52:af:d8:ae:b1:56:f0:98:de:
2f:47:f9:26:e9:27:b8:d9:03:06:d7:c4:98:ee:5b:e9:36:1c:
81:b7:ec:c5:a6:50:98:b0:ad:15:e9:d4:d9:a7:ff:ca:51:55:
1d:6e:88:bb:f2:cb:31:d9:9c:73:f8:42:a8:47:86:b1:18:82:
5a:62:c6:d9:e6:48:b5:c8:9b:7a:d1:27:ea:4e:68:22:b9:21:
55:a2:6b:ae:a9:c6:f6:25:a6:01:e6:e1:13:bc:a8:d7:0c:32:
a4:7a:83:fc:c8:31:b0:d0:e7:09:a6:5b:d3:32:e5:8b:d4:b2:
61:fd:e1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:37:09 2024 by rpki-client on console-fra.rpki-client.org