Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/GDqcyO2N1yFzI5l5tBqvK1ovRdg.roa
File: GDqcyO2N1yFzI5l5tBqvK1ovRdg.roa (raw, json)
Hash identifier: FlkdPqIsArh7jkmr2F991zYTMFoVzzMSUjiughuJHkc=
Subject key identifier: 18:3A:9C:C8:ED:8D:D7:21:73:23:99:79:B4:1A:AF:2B:5A:2F:45:D8
Certificate issuer: /CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Certificate serial: 01924254396C7932F80B35BEF7AE978D2F4D
Authority key identifier: AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/GDqcyO2N1yFzI5l5tBqvK1ovRdg.roa
Signing time: Mon 30 Sep 2024 09:47:48 +0000
ROA not before: Mon 30 Sep 2024 09:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2872
IP address blocks: 2.58.40.0/24 maxlen: 24
2.58.41.0/24 maxlen: 24
2.58.42.0/24 maxlen: 24
45.115.92.0/24 maxlen: 24
45.115.93.0/24 maxlen: 24
45.115.94.0/24 maxlen: 24
45.115.95.0/24 maxlen: 24
89.43.206.0/24 maxlen: 24
89.43.207.0/24 maxlen: 24
185.123.0.0/22 maxlen: 22
185.123.0.0/24 maxlen: 24
185.123.1.0/24 maxlen: 24
185.123.2.0/24 maxlen: 24
185.123.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:54:39:6c:79:32:f8:0b:35:be:f7:ae:97:8d:2f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Validity
Not Before: Sep 30 09:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=183a9cc8ed8dd72173239979b41aaf2b5a2f45d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:c7:01:fc:41:d5:14:36:80:44:a0:a6:f6:
ed:f8:ba:6b:b3:49:3a:27:30:81:e1:38:3d:b8:66:
fb:3b:d2:f4:f7:55:c7:e6:0a:03:04:ba:ae:e9:76:
10:d8:fc:32:fb:aa:6f:cf:90:a6:3c:35:ee:fb:49:
b0:37:39:e4:21:be:ff:be:a2:f2:b5:80:35:c6:ee:
a9:a0:44:6d:f6:b0:4e:4b:c6:65:24:7e:10:cc:44:
aa:4a:29:af:d0:2f:be:f3:6e:e2:a9:85:9c:70:86:
c7:62:b4:4f:ae:a2:8b:c1:9d:3b:7b:12:67:2c:ed:
c7:a7:f4:cd:3b:1d:c9:f1:bd:3b:8b:64:54:a9:d3:
7b:ad:c0:55:76:18:96:b7:b3:67:e3:e6:7a:5b:6b:
f6:11:7c:78:1e:9d:17:b7:b3:e1:db:c6:f5:99:6b:
e7:70:8d:60:e7:2d:e7:78:28:39:3a:9e:72:a7:15:
38:26:68:d4:0d:88:0d:77:74:1b:b4:d6:2f:12:f0:
93:bf:5d:7f:bb:7a:a4:9a:e2:de:18:5d:af:0c:d7:
12:af:74:5a:ee:1d:61:e2:e0:d5:e5:09:2a:94:46:
cd:3a:be:49:6a:b3:91:fa:f0:5b:92:a3:b6:e1:a1:
54:eb:1a:6e:5b:a7:7c:69:ef:ef:a5:8e:33:98:3c:
79:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3A:9C:C8:ED:8D:D7:21:73:23:99:79:B4:1A:AF:2B:5A:2F:45:D8
X509v3 Authority Key Identifier:
keyid:AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/GDqcyO2N1yFzI5l5tBqvK1ovRdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.40.0-2.58.42.255
45.115.92.0/22
89.43.206.0/23
185.123.0.0/22
Signature Algorithm: sha256WithRSAEncryption
66:82:0a:f8:23:9d:73:31:73:86:a3:2a:1b:92:d0:0b:58:60:
4c:53:fd:0f:b3:1a:61:1a:b7:ad:1f:d2:dd:55:54:8d:7d:0b:
07:74:dd:90:1c:cf:a1:75:22:1e:39:29:47:44:31:16:b8:40:
26:ca:3f:3b:01:43:f4:5d:f2:c3:36:16:af:d7:88:b6:26:9a:
4c:67:ba:5e:1c:bc:9e:d3:60:59:ac:12:bf:08:21:1f:aa:16:
2d:be:3e:77:e2:ab:ec:1f:5f:32:7e:a9:8f:da:e2:d6:e4:b8:
af:9e:d4:ac:43:80:fb:e9:0c:eb:b6:a4:3f:cf:39:68:d6:ce:
37:94:91:f9:25:25:8b:0c:97:27:b3:0c:10:2d:60:2b:82:53:
41:1b:bc:6c:71:86:23:72:0e:09:39:92:90:5c:57:b0:c2:af:
01:7d:36:9a:d0:0b:c8:e5:21:12:e6:9f:0d:3f:2b:b1:eb:d4:
9f:20:f7:4f:c5:3c:3a:3d:40:17:1f:76:87:c2:48:c5:44:11:
4d:e9:f2:d5:30:2f:ae:3c:e3:ca:84:c7:49:64:f5:12:de:1c:
2d:6a:3b:af:0f:a8:02:95:75:c6:6b:95:a5:ff:fc:7b:8c:a8:
87:ee:29:93:a7:c2:32:fa:7c:25:7d:89:0e:d4:2d:0b:f2:25:
7f:05:26:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:41:36 2024 by rpki-client on console-fra.rpki-client.org