Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/8nom1_1rLOcr5U6HM1mSYNha5OA.roa
File: 8nom1_1rLOcr5U6HM1mSYNha5OA.roa (raw, json)
Hash identifier: LdhHZ9aVHu04FDJYvzyUrcAx0Koc9ueq7HKB5NaFIn8=
Subject key identifier: F2:7A:26:D7:FD:6B:2C:E7:2B:E5:4E:87:33:59:92:60:D8:5A:E4:E0
Certificate issuer: /CN=293e0cd8b3e044edb823aef688aafb0b75de8675
Certificate serial: 019113CE2DD60FF3FD7E32062DBDF5DECBA0
Authority key identifier: 29:3E:0C:D8:B3:E0:44:ED:B8:23:AE:F6:88:AA:FB:0B:75:DE:86:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT4M2LPgRO24I672iKr7C3XehnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/8nom1_1rLOcr5U6HM1mSYNha5OA.roa
Signing time: Fri 02 Aug 2024 15:56:04 +0000
ROA not before: Fri 02 Aug 2024 15:56:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208555
IP address blocks: 45.129.36.0/22 maxlen: 22
45.129.36.0/24 maxlen: 24
45.129.37.0/24 maxlen: 24
45.129.38.0/23 maxlen: 23
45.129.38.0/24 maxlen: 24
45.129.39.0/24 maxlen: 24
185.53.140.0/22 maxlen: 24
185.53.140.0/23 maxlen: 23
185.53.140.0/24 maxlen: 24
185.53.141.0/24 maxlen: 24
185.53.142.0/23 maxlen: 23
185.53.142.0/24 maxlen: 24
185.53.143.0/24 maxlen: 24
185.126.202.0/23 maxlen: 23
185.126.202.0/24 maxlen: 24
185.126.203.0/24 maxlen: 24
2a0a:2fc4::/64 maxlen: 64
2a0e:4a40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/KT4M2LPgRO24I672iKr7C3XehnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/KT4M2LPgRO24I672iKr7C3XehnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT4M2LPgRO24I672iKr7C3XehnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:13:ce:2d:d6:0f:f3:fd:7e:32:06:2d:bd:f5:de:cb:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293e0cd8b3e044edb823aef688aafb0b75de8675
Validity
Not Before: Aug 2 15:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f27a26d7fd6b2ce72be54e8733599260d85ae4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:95:5d:b8:6a:2a:b6:d5:79:27:e9:86:3a:9a:
14:db:5a:af:2c:fd:65:1d:33:37:7a:6b:07:ed:a2:
f9:06:65:9c:e0:d5:84:68:84:af:d5:f7:56:2a:dd:
ab:53:2f:3a:ec:54:af:0e:a1:ba:33:8b:b1:b8:f1:
0d:98:3b:87:0b:64:54:65:15:30:73:b6:04:e3:d3:
74:65:a2:bd:47:7e:74:7e:a1:19:06:1b:df:26:29:
d8:be:36:6d:3f:43:fe:71:31:94:0a:74:d3:00:d2:
a9:61:1f:43:72:f1:25:b4:45:68:28:f6:f2:15:11:
d6:62:ec:99:f5:b7:8c:22:f8:7a:e6:36:04:38:45:
b8:9d:17:e3:4d:a9:e6:c3:2c:c9:c5:91:7f:d7:35:
b1:a3:5b:94:85:27:eb:12:b9:d2:c3:18:c3:29:33:
86:86:62:57:87:06:ef:8c:8d:a4:c7:7e:a2:b9:e3:
46:d8:4d:3f:0d:9c:25:3a:1a:44:45:cf:ee:c0:16:
b7:b5:8e:5a:fb:18:06:cb:41:43:59:cf:fe:47:e5:
04:b1:d6:ad:a2:f6:26:59:e2:1f:f5:ba:82:00:56:
56:29:53:e3:6d:33:48:86:97:97:61:74:9b:91:dd:
ed:30:a6:8b:bb:bb:5b:66:5e:d7:37:ee:19:e5:17:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7A:26:D7:FD:6B:2C:E7:2B:E5:4E:87:33:59:92:60:D8:5A:E4:E0
X509v3 Authority Key Identifier:
keyid:29:3E:0C:D8:B3:E0:44:ED:B8:23:AE:F6:88:AA:FB:0B:75:DE:86:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT4M2LPgRO24I672iKr7C3XehnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/8nom1_1rLOcr5U6HM1mSYNha5OA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/6da1c2-252d-4bd2-b56c-bb217cc3b78d/1/KT4M2LPgRO24I672iKr7C3XehnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.36.0/22
185.53.140.0/22
185.126.202.0/23
IPv6:
2a0a:2fc4::/64
2a0e:4a40::/29
Signature Algorithm: sha256WithRSAEncryption
5a:75:63:5b:eb:71:39:25:28:9c:6b:af:3d:45:f9:62:57:b0:
cc:32:32:23:da:4c:0f:26:32:9c:95:5a:b3:26:0b:59:8a:36:
58:d9:7a:0f:39:a1:21:3c:9f:2b:23:4b:2e:a8:d0:a2:54:22:
7e:91:61:18:c8:4f:ca:84:a4:62:e0:50:b8:af:ed:15:de:39:
be:d3:7f:44:dd:80:a2:c9:40:5e:c4:50:63:f5:4a:d6:56:0d:
97:1d:6c:46:c0:5d:32:f3:51:b0:8e:44:6b:e0:eb:4e:85:47:
5e:5d:56:ee:73:ac:80:1d:5f:ec:60:ff:f2:e2:43:21:30:f6:
93:a6:66:c2:65:c8:90:08:01:f2:44:77:e1:dd:ea:f2:0b:57:
a3:68:f0:a0:14:fb:b3:ee:da:ac:0d:cc:99:55:76:91:b4:39:
50:08:e4:47:c0:df:86:51:13:1c:88:fc:1e:04:20:22:e5:a3:
d6:96:00:cc:5b:c1:d4:6d:9d:43:f1:da:53:22:d1:b7:4f:e0:
a6:d4:d9:09:88:ef:ec:3d:83:35:11:ad:94:8c:bb:6b:f1:de:
75:84:46:63:c2:0d:03:01:13:ac:92:49:40:17:e9:cd:a9:b4:
77:01:ab:cb:fb:fc:79:dd:ec:08:2c:19:17:c7:c3:c8:27:86:
a9:9d:3a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:21:15 2024 by rpki-client on console-fra.rpki-client.org