Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/bQFd1OkTo8sPAu2l-tQXS6wM-Z4.roa
File: bQFd1OkTo8sPAu2l-tQXS6wM-Z4.roa (raw, json)
Hash identifier: ZhHQJq5/1mpe1hUOCJ14cT2aXjtsodReWBeR72tGrvk=
Subject key identifier: 6D:01:5D:D4:E9:13:A3:CB:0F:02:ED:A5:FA:D4:17:4B:AC:0C:F9:9E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EE35787E3D7CC18E488D745DF82AC380D
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/bQFd1OkTo8sPAu2l-tQXS6wM-Z4.roa
Signing time: Mon 15 Apr 2024 19:59:08 +0000
ROA not before: Mon 15 Apr 2024 19:59:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:57:87:e3:d7:cc:18:e4:88:d7:45:df:82:ac:38:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 15 19:59:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d015dd4e913a3cb0f02eda5fad4174bac0cf99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:77:6a:ea:0a:3f:25:55:ae:73:91:69:d7:b7:
45:61:e5:53:0b:bb:58:a8:ef:13:dd:17:35:b4:a3:
17:1c:c0:7b:73:ed:c5:42:a5:ec:dd:91:d6:3d:f4:
84:c5:a1:fe:2e:08:0d:09:81:f9:36:a8:59:11:3b:
b1:90:24:eb:75:04:29:7e:19:3d:44:66:0d:b2:4d:
0e:49:13:dd:24:76:14:4a:28:65:91:a6:c4:01:7d:
f3:de:29:e6:7d:7e:1e:66:4f:87:e0:13:a6:97:1c:
54:c9:af:23:ff:c4:2d:09:1e:e2:06:6a:48:f8:5f:
4a:79:d0:0b:41:0a:ae:a9:70:4b:84:2e:26:53:bf:
a3:69:a5:ba:56:f9:8c:d5:22:e8:e6:24:31:4f:f4:
c5:79:c3:43:4f:19:91:3a:aa:7a:e4:72:49:f9:5a:
fa:2a:27:7b:e4:59:e7:a5:8c:e7:1b:6b:0a:33:ee:
29:d0:74:7a:09:10:93:f9:d6:87:d4:8d:d7:02:64:
d0:33:6e:bc:f5:09:48:f7:07:8e:9d:52:bf:76:60:
79:11:c2:65:b4:2e:f3:10:39:be:14:9c:0f:24:bf:
ef:43:1d:60:13:73:d1:59:71:d0:30:4e:99:09:f7:
49:67:a9:ed:9c:b2:a3:80:7c:cd:48:9b:f8:8f:f3:
f8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:01:5D:D4:E9:13:A3:CB:0F:02:ED:A5:FA:D4:17:4B:AC:0C:F9:9E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/bQFd1OkTo8sPAu2l-tQXS6wM-Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.128.130.0/23
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.60.6.0/24
212.107.24.0/24
Signature Algorithm: sha256WithRSAEncryption
52:01:70:c6:af:61:3e:e8:13:a2:25:9b:b3:74:39:d0:53:4a:
de:c4:8c:3d:4e:44:a7:a5:99:c4:24:a2:f8:a6:05:5f:c1:7b:
8d:a7:c5:66:02:0a:a2:e4:c1:39:ea:4b:c3:34:b6:c2:db:f7:
b2:6d:f3:34:b4:a5:f4:c8:a8:26:94:0f:0a:81:65:1d:1a:57:
2a:b3:c4:71:75:fe:27:a5:09:2e:c0:aa:42:26:c1:3a:83:df:
30:c8:90:55:00:24:18:bd:3e:f5:30:94:d5:70:71:c5:00:3a:
99:4c:57:d3:02:42:1a:18:e6:93:dc:8e:10:d5:e9:c0:5f:7a:
f5:56:9f:7c:9a:d7:bf:35:77:9a:45:d0:2d:e1:4b:95:14:ce:
42:76:f3:da:9c:39:95:6b:63:9e:e8:f8:2c:5a:fb:36:ae:98:
a5:ac:e4:20:47:0d:eb:58:2c:37:52:96:c9:59:c4:a9:c3:4d:
bc:eb:fc:a3:13:1e:44:8b:04:15:2e:ac:be:56:b5:da:77:da:
1f:16:bc:95:d7:4d:a2:e5:0d:4e:1a:0c:de:60:38:6a:74:d1:
50:4e:67:37:bf:2b:60:dd:ca:4f:72:e3:b9:14:12:30:88:84:
ab:86:7d:72:e1:89:58:a3:b7:29:73:41:04:18:61:b2:f8:d4:
14:bd:ff:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 11:55:53 2024 by rpki-client on console-fra.rpki-client.org