Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/PdCf3zdm4wRwknMQBfUWK0T6MVs.roa
File: PdCf3zdm4wRwknMQBfUWK0T6MVs.roa (raw, json)
Hash identifier: Ft/O+PIUZPsFXCxQdP2tjD2xCvauIBdbmSuMWU80uck=
Subject key identifier: 3D:D0:9F:DF:37:66:E3:04:70:92:73:10:05:F5:16:2B:44:FA:31:5B
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 018CC56EF7B81FEEC5E436C3B63334305FA7
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/PdCf3zdm4wRwknMQBfUWK0T6MVs.roa
Signing time: Mon 01 Jan 2024 14:30:33 +0000
ROA not before: Mon 01 Jan 2024 14:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34666
IP address blocks: 81.16.240.0/24 maxlen: 24
81.16.241.0/24 maxlen: 24
81.16.246.0/24 maxlen: 24
81.16.244.0/24 maxlen: 24
81.16.245.0/24 maxlen: 24
81.16.242.0/24 maxlen: 24
81.16.243.0/24 maxlen: 24
81.16.247.0/24 maxlen: 24
81.16.248.0/24 maxlen: 24
81.16.253.0/24 maxlen: 24
81.16.251.0/24 maxlen: 24
81.16.252.0/24 maxlen: 24
81.16.249.0/24 maxlen: 24
81.16.250.0/24 maxlen: 24
81.16.254.0/24 maxlen: 24
81.16.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:f7:b8:1f:ee:c5:e4:36:c3:b6:33:34:30:5f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Jan 1 14:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dd09fdf3766e3047092731005f5162b44fa315b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d8:6e:6c:2b:83:66:15:9d:86:0d:91:51:23:
db:95:51:d2:43:59:a7:b0:a0:67:ba:cb:28:49:39:
bf:03:1d:57:42:74:c0:c9:7d:3f:57:3d:9c:eb:58:
33:08:d8:bb:c2:53:f3:db:82:99:fe:9b:12:50:30:
1e:ca:69:c1:cc:eb:4f:ed:c0:bd:e3:12:46:a7:d8:
b8:54:98:17:30:a6:10:9f:bc:11:04:9f:75:0a:85:
19:d1:cf:d2:84:ad:cc:7a:3d:ee:c0:07:af:c1:dd:
a9:45:10:d2:66:0f:f2:5e:47:66:09:36:4a:7e:ea:
da:b6:c6:a8:77:be:0f:e5:df:ce:d9:c3:35:fb:4e:
c7:e6:98:60:39:01:b3:5b:41:9d:69:fe:80:85:75:
38:e3:6d:8c:bb:dd:04:14:72:20:4a:73:c5:2c:30:
ad:3c:d8:75:02:7a:66:3b:a9:e8:5a:c8:75:69:e4:
2d:45:54:50:b1:39:43:9a:89:05:08:17:7c:91:3d:
f0:58:69:5f:9c:3f:9e:e6:8e:4c:ff:7d:bc:1e:f1:
ef:53:9c:f1:8e:c3:73:18:57:2b:71:86:93:bf:51:
b6:71:02:9b:5b:61:98:86:35:61:c2:6d:ba:41:79:
c4:d7:bb:97:2a:ce:67:ed:ef:b4:c8:33:c2:6e:50:
84:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D0:9F:DF:37:66:E3:04:70:92:73:10:05:F5:16:2B:44:FA:31:5B
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/PdCf3zdm4wRwknMQBfUWK0T6MVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.240.0/20
Signature Algorithm: sha256WithRSAEncryption
74:c6:65:87:4d:12:e3:57:f6:d0:64:cc:9e:1b:62:d7:2a:e8:
17:3c:6f:e8:3d:b1:c6:09:5a:51:dd:8f:bf:52:af:b1:b5:27:
73:94:09:36:9c:f7:b3:6c:ce:f1:4f:e9:61:08:cf:27:ee:c7:
22:08:10:29:9a:ca:6c:cf:f2:ab:f0:15:68:96:2a:09:7b:b9:
4b:f1:29:91:da:5a:e3:db:6b:27:96:b4:8f:81:2c:39:ae:d7:
43:dc:91:f1:68:d5:02:cb:f4:7d:4c:33:20:fb:c2:9a:e2:6a:
63:dc:ac:b0:ba:28:b4:16:2c:d4:1e:54:b1:14:7e:9c:20:5e:
49:a7:c9:2c:23:05:3d:38:8a:6a:dc:fd:68:e3:7e:ae:d4:eb:
3b:b1:29:b3:3b:08:d1:d7:65:85:79:27:50:cb:fe:e9:27:f8:
ab:93:8b:92:0a:68:9f:6c:4b:66:3a:44:f2:4f:5a:db:e4:ab:
1d:6a:e5:4d:d6:3c:0c:21:f2:96:90:96:a1:0d:9f:71:6f:fd:
1f:42:9c:e3:bd:2d:bc:97:44:e8:b7:d6:74:b1:ab:d2:ca:95:
a6:58:df:f4:d2:c0:15:61:4b:34:f9:55:99:88:a4:05:14:c4:
e4:40:59:25:47:3d:6e:39:81:40:3b:22:b8:02:f6:83:06:f0:
11:04:93:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:58:20 2024 by rpki-client on console-fra.rpki-client.org