Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/94cfjsncEYMro-gpPSWrT6jEKy8.roa
File: 94cfjsncEYMro-gpPSWrT6jEKy8.roa (raw, json)
Hash identifier: H5m3RmJwOJ0El5psvPJoG6FCZeHDE9GQ2TwkZQz7RWU=
Subject key identifier: F7:87:1F:8E:C9:DC:11:83:2B:A3:E8:29:3D:25:AB:4F:A8:C4:2B:2F
Certificate issuer: /CN=5140b5cb5986084126f68d6032316d3b1b57696e
Certificate serial: 018CC501295D0ABB717871B02EC4AC301549
Authority key identifier: 51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/94cfjsncEYMro-gpPSWrT6jEKy8.roa
Signing time: Mon 01 Jan 2024 12:30:36 +0000
ROA not before: Mon 01 Jan 2024 12:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199462
IP address blocks: 185.101.78.0/24 maxlen: 24
185.101.77.0/24 maxlen: 24
185.101.76.0/24 maxlen: 24
185.101.79.0/24 maxlen: 24
2a06:1b80::/29 maxlen: 29
2a06:1b81::/32 maxlen: 32
2a06:1b84::/32 maxlen: 32
2a06:1b87:e00::/48 maxlen: 48
2a06:1b87:f00::/48 maxlen: 48
2a06:1b87:c00::/48 maxlen: 48
2a06:1b87:100::/48 maxlen: 48
2a06:1b87:800::/48 maxlen: 48
2a06:1b87:d00::/48 maxlen: 48
2a06:1b87:500::/48 maxlen: 48
2a06:1b87:200::/48 maxlen: 48
2a06:1b87:900::/48 maxlen: 48
2a06:1b87:a00::/48 maxlen: 48
2a06:1b87:700::/48 maxlen: 48
2a06:1b87:600::/48 maxlen: 48
2a06:1b87:300::/48 maxlen: 48
2a06:1b87:b00::/48 maxlen: 48
2a06:1b87:400::/48 maxlen: 48
2a06:1b87::/32 maxlen: 32
2001:67c:11bc::/48 maxlen: 48
2a06:1b80::/32 maxlen: 32
2a06:1b86::/32 maxlen: 32
2a06:1b85::/32 maxlen: 32
2a06:1b82::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:29:5d:0a:bb:71:78:71:b0:2e:c4:ac:30:15:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5140b5cb5986084126f68d6032316d3b1b57696e
Validity
Not Before: Jan 1 12:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7871f8ec9dc11832ba3e8293d25ab4fa8c42b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:f5:e4:15:e7:33:f5:29:74:5c:11:88:38:
a8:b2:27:f3:99:94:e2:7f:39:91:12:4f:6c:51:0f:
e8:12:91:8a:91:87:6a:da:bd:3d:60:60:c3:eb:78:
f2:73:2a:a0:e9:69:21:0b:d9:00:a8:c2:71:3c:bb:
e5:1c:33:84:21:e9:35:ec:f6:47:67:08:b9:23:70:
ae:ca:cd:2f:62:e3:33:be:e0:e8:61:c6:97:d0:97:
9b:96:18:7e:73:ad:96:c9:67:3c:4a:cb:d6:30:c6:
b8:56:69:17:cb:ff:0b:7b:e5:47:4c:54:b0:9b:dc:
4b:fc:70:33:06:a7:d6:a6:81:59:51:d9:87:14:18:
79:74:c7:52:27:c1:dc:96:14:4b:f5:1f:d1:aa:01:
e2:13:e8:69:f7:f0:ec:08:57:8f:8c:85:0e:47:39:
69:66:c9:52:9b:66:19:2f:8b:2f:09:9e:66:6d:d7:
b3:4a:c7:bd:70:65:6f:0c:a8:5b:f5:0f:47:50:b2:
a7:4c:31:11:bb:ac:c0:ec:7e:5c:e0:65:d1:17:f6:
1e:1d:c6:c0:50:37:b0:ad:f1:e7:12:31:14:ce:25:
d5:e2:73:77:26:c9:7a:b2:2b:4b:90:51:d2:5e:ae:
7c:42:52:43:6b:10:29:9d:65:97:b8:57:d7:41:f5:
0e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:87:1F:8E:C9:DC:11:83:2B:A3:E8:29:3D:25:AB:4F:A8:C4:2B:2F
X509v3 Authority Key Identifier:
keyid:51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/94cfjsncEYMro-gpPSWrT6jEKy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.76.0/22
IPv6:
2001:67c:11bc::/48
2a06:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
80:37:3d:8a:56:a7:da:e0:b9:f5:10:72:43:25:8c:2a:52:5f:
8f:a2:5a:2f:99:78:6d:52:07:7a:e5:ed:20:32:d6:42:e2:03:
03:9d:03:40:9d:96:d6:6b:7f:37:e5:1d:16:6d:5d:c9:21:a7:
4a:c6:1e:9a:fb:0f:dc:50:eb:9e:d5:e7:d7:42:0a:a1:bc:fd:
42:e6:24:cd:1c:cf:0b:de:2c:ba:eb:e2:4c:c0:94:57:3b:4f:
bb:9d:65:d9:8f:df:f3:57:e7:b1:4b:0b:aa:8a:e4:b5:af:50:
30:1c:85:13:b9:2a:37:d5:40:9c:4e:bf:39:6a:23:68:55:83:
b5:94:61:b1:03:87:7b:f6:6d:4b:23:87:34:e7:f9:8c:f8:bc:
97:76:f4:c0:43:4e:b0:16:5d:6d:87:f7:fe:03:fc:61:b7:35:
86:ac:5d:2c:64:b6:8b:ab:25:0d:01:15:ae:36:43:f1:ac:ca:
9a:18:86:f2:98:fd:ac:85:bc:3d:20:57:d0:47:f9:64:bf:db:
fa:56:1f:a5:c9:38:9a:0b:a5:06:7c:50:65:74:3a:2c:7d:6b:
8e:ac:6e:88:4a:65:60:f4:76:c0:e2:6f:f6:a0:e3:a2:6d:0f:
e8:45:39:2c:15:51:63:18:69:c2:a5:8e:73:fd:69:7f:53:41:
59:53:08:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:19:32 2024 by rpki-client on console-ams.rpki-client.org