Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/YMqG18E0rkuHr594SXXYods01Es.roa
File: YMqG18E0rkuHr594SXXYods01Es.roa (raw, json)
Hash identifier: RSqk7ZvL/9qvnoWbkimYD7FOk/jKa8iMGUsgB8KuXTs=
Subject key identifier: 60:CA:86:D7:C1:34:AE:4B:87:AF:9F:78:49:75:D8:A1:DB:34:D4:4B
Certificate issuer: /CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Certificate serial: 01921E3BCD8C9207C6C8066247D98B4802C2
Authority key identifier: C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/YMqG18E0rkuHr594SXXYods01Es.roa
Signing time: Mon 23 Sep 2024 09:34:48 +0000
ROA not before: Mon 23 Sep 2024 09:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 45.88.76.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
45.91.202.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
91.211.248.0/24 maxlen: 24
91.211.249.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
185.203.241.0/24 maxlen: 24
185.209.20.0/24 maxlen: 24
185.209.21.0/24 maxlen: 24
185.219.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 15:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1e:3b:cd:8c:92:07:c6:c8:06:62:47:d9:8b:48:02:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Validity
Not Before: Sep 23 09:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60ca86d7c134ae4b87af9f784975d8a1db34d44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6e:d6:4d:ad:cc:80:71:26:bc:5a:6e:41:a6:
f7:59:7c:88:d7:85:9f:66:0f:71:4d:12:cc:c5:f3:
ac:b8:fe:e1:48:c6:c6:a8:25:95:bb:63:8c:7d:ad:
d8:e8:a8:b9:54:29:bc:3d:e4:c7:fa:33:e0:4d:c3:
9d:f4:bb:17:7c:8f:cf:80:c7:e2:61:f7:3f:bb:0e:
78:b2:14:6e:d7:4b:0d:ac:d5:c0:35:3f:1b:97:e3:
0a:c8:ac:d3:0c:13:dc:e3:37:d4:52:1a:97:b6:6b:
07:b5:e1:f0:b9:a7:07:87:e9:7c:3a:31:9e:12:77:
ad:71:f9:f9:9d:1f:28:7b:c3:42:54:cf:0b:d4:7d:
71:c3:9b:c9:64:d7:d2:c8:6e:27:c8:80:cf:88:79:
2c:6a:fc:46:6c:d1:ae:e4:17:2f:8e:ac:b4:7d:1d:
ab:03:9e:ba:29:21:e8:3b:e7:64:10:c1:f0:1e:bd:
ab:8b:a1:18:0a:58:bd:1b:c8:c7:35:d4:89:95:9f:
4a:81:9b:1f:b8:14:bb:db:3f:ae:63:a7:3d:d0:6f:
12:1c:99:ef:f5:db:28:fe:be:41:d7:95:2e:ea:b4:
11:87:6d:58:f7:4a:98:b9:cf:c9:13:91:df:39:74:
76:d4:16:64:9e:73:b8:fe:0c:3f:17:87:82:f9:3b:
8f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CA:86:D7:C1:34:AE:4B:87:AF:9F:78:49:75:D8:A1:DB:34:D4:4B
X509v3 Authority Key Identifier:
keyid:C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/YMqG18E0rkuHr594SXXYods01Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.76.0/24
45.88.105.0/24
45.91.200.0-45.91.202.255
45.132.107.0/24
77.83.175.0/24
91.211.248.0/23
92.119.114.0/24
185.203.241.0/24
185.209.20.0/23
185.219.83.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f1:9f:45:47:43:c0:47:46:69:e9:a6:4c:59:b5:fb:64:c6:
a7:34:fd:5f:fe:a9:e5:6f:9e:65:08:ff:df:0d:ce:4f:ca:89:
fe:5f:63:d4:54:14:03:3f:2c:80:55:85:d4:c5:a9:5e:fc:84:
ad:b8:e9:e1:ca:f7:8d:52:7e:1c:e3:44:45:c8:aa:5b:23:59:
2c:5e:99:b3:25:eb:1e:8b:d2:35:46:31:88:b7:c5:e2:77:f5:
a8:f6:9d:ed:27:de:d3:11:c8:17:0a:8c:fd:84:8e:4a:36:6f:
7f:a4:1b:f6:a3:10:f1:4f:5b:cf:10:c9:53:00:d2:4a:81:41:
ea:81:c7:c4:04:08:73:5e:6f:73:5e:f7:25:25:e7:ac:7e:be:
f0:5e:d3:31:fa:cc:6f:2d:95:52:73:f0:71:6f:97:43:11:3c:
78:72:de:a5:1c:e8:a5:ab:21:a1:95:f9:4a:e6:15:10:59:38:
ef:c2:49:c6:19:7e:fd:6b:74:8e:23:37:87:92:fd:f6:a3:9e:
65:f9:bf:3f:26:5d:08:c4:83:d4:9a:5b:5f:9b:ee:48:84:b0:
45:71:c1:e7:d8:ae:15:5a:43:ff:69:cc:6d:8c:20:8a:9d:96:
21:71:e2:49:75:e7:92:63:6a:fb:3f:67:43:e9:f9:e9:ec:37:
af:29:ef:b7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Sep 29 00:15:59 2024 by rpki-client on console-fra.rpki-client.org