Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/2Pi0No-o2M5_k3Fw42pdZeqvSbQ.roa
File: 2Pi0No-o2M5_k3Fw42pdZeqvSbQ.roa (raw, json)
Hash identifier: 9M/W1RbMU+HnkeekKN0NIyVjNoo85jPxSfLQcBjSqQE=
Subject key identifier: D8:F8:B4:36:8F:A8:D8:CE:7F:93:71:70:E3:6A:5D:65:EA:AF:49:B4
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018CC5DCC5576B93783A454E03C3777D2D35
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/2Pi0No-o2M5_k3Fw42pdZeqvSbQ.roa
Signing time: Mon 01 Jan 2024 16:30:29 +0000
ROA not before: Mon 01 Jan 2024 16:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209805
IP address blocks: 212.22.70.0/24 maxlen: 24
212.22.94.0/24 maxlen: 24
185.65.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:c5:57:6b:93:78:3a:45:4e:03:c3:77:7d:2d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 16:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8f8b4368fa8d8ce7f937170e36a5d65eaaf49b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2c:66:53:88:21:1e:88:03:5f:05:04:8f:0f:
07:9e:e8:8f:bf:74:81:9e:fe:07:ac:8c:6c:d9:17:
05:c8:f9:a7:a9:d7:ed:ea:9f:99:e4:46:bc:c8:3c:
eb:a0:fb:41:97:6f:ee:9c:6d:e0:3a:9b:2d:e9:ed:
aa:91:64:ac:4b:47:c6:02:e5:b0:8d:3b:16:ee:85:
9b:41:19:f8:67:94:42:61:b6:66:21:cb:cc:9b:62:
e8:1a:bd:fe:7c:b5:7c:9c:e3:dd:ce:1a:a1:06:b8:
5c:13:49:93:d9:6a:4e:5e:7c:ac:2f:a3:ea:c0:55:
2e:2d:a0:aa:26:a0:89:3f:c2:54:da:3e:cf:06:bf:
fa:fd:17:41:99:ff:39:3f:e4:90:e3:72:bd:ff:15:
fd:18:ed:2b:ee:1c:fc:64:f7:9e:5e:fa:23:79:e2:
f4:26:04:83:fa:58:60:06:b6:49:33:7c:23:16:68:
00:67:d5:f9:d0:cf:a3:ef:d3:79:d4:88:07:33:be:
58:ea:3d:9f:3c:b2:9f:b8:ae:4d:50:ff:7c:67:71:
70:95:01:89:81:f1:d0:8c:3a:1e:56:4e:23:5f:41:
0a:f9:88:e7:b3:da:a0:43:97:73:7b:73:04:36:cb:
f4:4b:41:5d:72:51:80:48:30:97:b6:61:53:65:e2:
2d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F8:B4:36:8F:A8:D8:CE:7F:93:71:70:E3:6A:5D:65:EA:AF:49:B4
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/2Pi0No-o2M5_k3Fw42pdZeqvSbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.200.0/24
212.22.70.0/24
212.22.94.0/24
Signature Algorithm: sha256WithRSAEncryption
92:2c:9c:c5:2b:88:ea:f7:53:e8:b9:20:09:6e:bb:74:f4:84:
29:32:2c:b8:d2:74:6c:04:7f:22:18:94:67:dd:59:d2:17:42:
01:28:22:12:f9:35:7e:33:50:bc:39:17:ac:df:b5:e0:b2:51:
9b:aa:c1:3d:93:5a:94:7e:44:bf:97:b6:06:4f:10:b9:b8:a4:
8f:28:e3:cd:29:73:b0:a7:2d:6b:23:9d:48:c4:8d:05:85:32:
6a:56:d4:5b:4e:0c:70:aa:6a:0e:d7:92:6d:38:2c:a2:ab:ce:
4c:40:4d:fc:b4:f0:aa:0b:77:f2:c3:46:1f:57:8f:a0:32:f4:
43:51:2d:cf:93:c3:06:f8:e5:cf:38:e4:be:da:1e:22:dc:cb:
b9:70:87:d2:81:3a:3d:62:72:21:16:74:3c:f6:9b:60:2d:2b:
b2:51:9f:61:bd:ae:93:84:c2:b4:b0:eb:a8:d2:c0:cb:bd:16:
af:61:c9:62:fc:90:b5:ca:d5:72:3b:0f:3b:e3:ff:be:2c:9d:
45:9f:f3:31:5a:0c:75:86:e1:a0:02:75:c5:5b:38:a1:27:b6:
0d:1f:b9:cd:3d:9f:be:1a:f2:5e:d7:84:53:10:76:da:a3:08:
b4:96:0a:44:2f:7a:0c:4d:32:fc:f0:ff:d7:4e:52:57:40:ca:
cd:85:bc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:26:46 2024 by rpki-client on console-ams.rpki-client.org