Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/75Bo6CMXF2CQy_b9Z8aY5c7-Ng0.roa
File: 75Bo6CMXF2CQy_b9Z8aY5c7-Ng0.roa (raw, json)
Hash identifier: r3NEGizxqmPCW6ZvNB3WCvNJi49EIypq2vRosJUfJCg=
Subject key identifier: EF:90:68:E8:23:17:17:60:90:CB:F6:FD:67:C6:98:E5:CE:FE:36:0D
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 0192710D06522582108A4ECB59EE338B65C5
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/75Bo6CMXF2CQy_b9Z8aY5c7-Ng0.roa
Signing time: Wed 09 Oct 2024 11:32:11 +0000
ROA not before: Wed 09 Oct 2024 11:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 5.252.192.0/24 maxlen: 24
5.252.193.0/24 maxlen: 24
5.252.194.0/24 maxlen: 24
5.252.195.0/24 maxlen: 24
185.158.112.0/23 maxlen: 23
185.158.114.0/24 maxlen: 24
185.158.115.0/24 maxlen: 24
185.248.100.0/24 maxlen: 24
185.248.101.0/24 maxlen: 24
185.248.102.0/24 maxlen: 24
185.248.103.0/24 maxlen: 24
193.19.118.0/23 maxlen: 23
195.62.52.0/23 maxlen: 23
2a07:ac80::/29 maxlen: 29
2a09:4d40::/32 maxlen: 32
2a09:4d42::/32 maxlen: 32
2a09:4d43::/32 maxlen: 32
2a09:4d47::/32 maxlen: 32
2a0d:e280::/32 maxlen: 32
2a0d:e283::/32 maxlen: 32
2a0d:e286::/32 maxlen: 32
2a0d:e287::/32 maxlen: 32
2a12:2206::/32 maxlen: 32
2a12:2207::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:0d:06:52:25:82:10:8a:4e:cb:59:ee:33:8b:65:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Oct 9 11:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef9068e82317176090cbf6fd67c698e5cefe360d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f9:fa:5d:51:93:6b:5d:46:66:92:b1:d0:8e:
2a:e0:99:2f:c4:58:b3:3e:02:79:31:43:38:72:6a:
f2:08:82:32:2b:59:19:bd:b5:df:e7:84:97:19:1d:
f0:58:d2:b1:32:cc:1b:fc:e5:e3:7d:78:fd:38:6d:
57:f6:f5:a7:c3:2b:29:55:68:90:cc:00:08:4b:8f:
98:1d:b6:b6:04:9d:c1:88:8f:4c:c6:2f:6d:7e:e2:
c5:84:ed:73:dc:db:4f:ef:eb:b6:40:c0:98:ce:83:
6c:53:b9:4c:1e:d0:91:33:f3:c2:c7:d4:ac:1e:e7:
b4:a1:d2:a8:93:bd:5c:25:20:5d:41:02:0f:85:44:
3e:d6:a7:0e:a8:b1:b6:eb:d8:fb:3b:7b:af:90:c5:
2f:11:70:3e:20:dc:6c:b4:68:27:de:58:5d:96:ea:
5b:bc:7e:52:39:86:37:3e:08:57:62:43:61:40:1f:
b9:af:d9:3c:7a:ac:c6:a5:7c:78:9b:4d:ef:c0:5a:
e5:93:c6:ba:da:18:bf:48:c0:a6:c8:06:46:00:bc:
55:a8:32:8d:8b:34:ec:50:0e:29:d7:f0:52:ac:e9:
89:3a:94:bc:e4:8c:7e:2b:32:0c:7e:02:57:bb:d9:
ae:8c:03:98:8e:d6:2c:c1:14:d1:c2:52:48:53:65:
dc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:90:68:E8:23:17:17:60:90:CB:F6:FD:67:C6:98:E5:CE:FE:36:0D
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/75Bo6CMXF2CQy_b9Z8aY5c7-Ng0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.192.0/22
185.158.112.0/22
185.248.100.0/22
193.19.118.0/23
195.62.52.0/23
IPv6:
2a07:ac80::/29
2a09:4d40::/32
2a09:4d42::/31
2a09:4d47::/32
2a0d:e280::/32
2a0d:e283::/32
2a0d:e286::/31
2a12:2206::/31
Signature Algorithm: sha256WithRSAEncryption
b7:c3:e0:20:fd:57:4e:8e:3a:8d:02:c7:4d:ac:09:9e:7d:78:
27:65:55:02:dc:94:f6:b5:a6:51:52:a0:c8:ee:3c:4d:34:e5:
9d:9b:72:15:aa:dc:f8:d2:9e:bf:23:99:e2:79:00:46:ec:56:
bb:f9:b8:01:36:af:bf:0a:23:23:62:eb:e7:c7:0f:7b:2a:9a:
bc:98:54:7a:19:44:e4:e5:e5:55:42:a6:4f:77:ef:7e:04:d8:
c2:40:36:b6:eb:53:0e:e1:f1:5c:1f:29:d9:88:c7:c3:e4:83:
74:b4:52:cf:27:83:85:f8:6d:25:d1:41:02:10:63:fd:66:c7:
47:d0:19:52:ce:1e:5b:19:86:45:de:61:f9:36:c4:59:f0:61:
df:79:8a:3f:10:c8:0b:58:05:8b:59:d2:c1:f6:e1:f6:e2:be:
c8:6d:e3:56:f1:76:44:50:72:45:5b:d8:0b:61:cc:8b:f1:0a:
5b:68:33:20:bc:91:6a:cd:e5:b8:45:d2:1e:ce:92:35:04:29:
31:0b:66:29:e5:8d:f3:f9:49:7a:85:46:bc:3c:1b:25:8c:1a:
18:77:b1:cf:f8:ec:98:b8:c1:54:54:39:85:26:03:1e:cd:c8:
61:38:78:27:d3:5e:37:97:55:d1:a3:45:ef:d0:1b:4b:2a:03:
ed:21:00:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:12 2024 by rpki-client on console-fra.rpki-client.org