Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P-Jf1sQ6VzzwRaxwDei1tS_o37Q.roa
File: P-Jf1sQ6VzzwRaxwDei1tS_o37Q.roa (raw, json)
Hash identifier: rgazYEzuC/NcIDsL4Yof0qj9/TAVLul8JQx0kivTlpA=
Subject key identifier: 3F:E2:5F:D6:C4:3A:57:3C:F0:45:AC:70:0D:E8:B5:B5:2F:E8:DF:B4
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191D659DFB15100A2985E6E4D0FB07B4949
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P-Jf1sQ6VzzwRaxwDei1tS_o37Q.roa
Signing time: Mon 09 Sep 2024 10:34:59 +0000
ROA not before: Mon 09 Sep 2024 10:34:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.15.255.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.90.44.0/24 maxlen: 24
45.90.47.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
45.128.228.0/22 maxlen: 22
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.18.98.0/24 maxlen: 24
212.52.13.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:59:df:b1:51:00:a2:98:5e:6e:4d:0f:b0:7b:49:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Sep 9 10:34:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fe25fd6c43a573cf045ac700de8b5b52fe8dfb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2d:30:79:52:53:44:0e:23:b0:62:15:30:1f:
3f:46:10:b6:71:41:47:2e:df:0f:e9:34:24:65:83:
6c:fa:e9:fb:ae:bc:b2:e3:9d:14:f1:b8:45:c8:8d:
95:66:07:9a:d5:b5:17:cd:33:22:4e:4d:40:08:3d:
d0:de:c6:ea:89:3c:f5:a2:4e:42:3f:09:e3:15:db:
07:eb:37:33:6d:71:e7:29:e0:b4:93:63:30:0f:64:
42:61:6d:31:7b:ed:d0:d0:cf:90:6e:79:6c:3a:6b:
3a:6b:50:de:7a:08:76:bf:4d:cd:86:c0:eb:cf:d6:
c4:95:ae:22:86:54:56:08:e3:73:42:7d:80:b8:49:
bb:c2:c6:46:05:1f:62:c1:44:21:22:8b:81:2d:af:
ac:cd:cb:bd:b8:55:46:a1:51:c5:8d:fd:ee:4a:7a:
ea:71:a4:47:e6:39:a6:90:61:75:6a:f5:92:3a:a4:
7a:24:1e:28:be:a2:ad:45:21:69:77:0a:11:46:2d:
b4:d4:35:f3:95:97:1d:6c:d3:31:51:bb:93:51:07:
fa:4f:c7:79:ec:53:08:76:b4:44:da:22:23:f7:47:
c6:f1:b2:e3:00:6a:c1:43:dc:69:2e:d9:65:a4:e0:
e9:0f:b1:a9:cf:2c:8f:2a:f3:7b:65:40:2f:df:11:
3d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E2:5F:D6:C4:3A:57:3C:F0:45:AC:70:0D:E8:B5:B5:2F:E8:DF:B4
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P-Jf1sQ6VzzwRaxwDei1tS_o37Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.15.255.0/24
45.86.3.0/24
45.90.44.0/24
45.90.47.0/24
45.128.130.0/23
45.128.228.0/22
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.18.98.0/24
212.52.13.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ad:da:c3:db:05:6c:75:21:09:22:83:ad:e7:5f:08:aa:8f:
13:88:3e:3b:72:cb:9f:36:a2:ff:cd:ff:34:60:b3:62:17:f8:
fd:0f:c2:b2:90:71:f9:95:7b:26:da:ed:67:78:f6:a6:65:58:
0e:e1:05:33:7c:50:e5:80:f9:7e:79:68:b4:28:63:30:3f:f8:
79:68:81:87:7d:26:0f:b4:29:85:b7:c5:d7:ca:e9:37:9d:ff:
72:7a:12:89:28:fc:f4:e1:40:b0:1a:34:82:fb:b3:bc:af:5f:
6d:84:91:d2:8c:ed:23:83:4b:e6:dc:8f:1d:7b:1c:89:09:b2:
32:91:3b:8e:e5:4d:52:d8:a3:5c:e7:19:31:20:b5:5f:23:b1:
9e:6f:e3:4c:a0:b1:f7:52:35:3a:1f:0e:fb:97:db:8c:ea:85:
ed:ec:c9:69:97:a8:3a:f9:0c:92:04:50:d5:14:47:42:2b:5e:
35:95:9f:45:fb:d4:7a:d1:7a:9c:cc:f6:83:c2:b6:db:31:09:
e8:04:67:87:3a:46:6f:b7:58:16:f9:69:9a:1f:98:6f:29:02:
79:99:97:54:da:03:cb:65:89:38:11:8d:b3:50:a3:ed:c0:ba:
60:99:7f:bc:59:db:cf:4c:c8:26:e9:d3:2c:e1:0d:dd:9a:dd:
5e:05:27:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:02:54 2024 by rpki-client on console-fra.rpki-client.org