Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/V0QGcHrUuoo3Zn0t545SC4h_Qp0.roa
File: V0QGcHrUuoo3Zn0t545SC4h_Qp0.roa (raw, json)
Hash identifier: P5amfKqbZ5iLuHMI/raOKCWcq+WyNYvAa65EJxp0hLs=
Subject key identifier: 57:44:06:70:7A:D4:BA:8A:37:66:7D:2D:E7:8E:52:0B:88:7F:42:9D
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 01936382162F5883DD3B32C6B956631E477F
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/V0QGcHrUuoo3Zn0t545SC4h_Qp0.roa
Signing time: Mon 25 Nov 2024 13:28:09 +0000
ROA not before: Mon 25 Nov 2024 13:28:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42831
IP address blocks: 81.92.192.0/22 maxlen: 22
81.92.217.0/24 maxlen: 24
81.92.218.0/24 maxlen: 24
81.92.219.0/24 maxlen: 24
91.109.112.0/21 maxlen: 21
94.46.184.0/22 maxlen: 22
94.46.192.0/22 maxlen: 22
94.46.207.0/24 maxlen: 24
94.46.220.0/22 maxlen: 22
94.46.244.0/22 maxlen: 22
185.99.252.0/24 maxlen: 24
185.99.253.0/24 maxlen: 24
185.99.254.0/24 maxlen: 24
185.109.168.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:82:16:2f:58:83:dd:3b:32:c6:b9:56:63:1e:47:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Nov 25 13:28:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=574406707ad4ba8a37667d2de78e520b887f429d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:74:f8:58:d2:51:99:a3:cf:b0:47:79:e6:84:
dc:8a:98:f1:c1:54:e3:34:7b:c8:e4:11:b6:22:81:
21:4f:7c:35:54:a6:92:c1:7d:d6:c7:2b:be:4b:af:
62:53:1a:43:63:7e:55:8d:f9:de:34:d9:e8:31:9e:
5e:94:86:d6:1d:d8:70:f2:2f:ca:95:5a:81:1b:30:
f7:c7:6b:bb:f0:74:e3:69:b0:02:ac:7e:d8:d0:68:
f2:6f:ae:9e:2e:c9:f5:89:33:f4:91:84:52:fb:a3:
f0:21:b5:2f:51:36:42:b1:f4:04:39:8a:63:13:53:
b2:00:9b:cb:87:f9:bc:86:e1:b5:a2:6f:e0:d5:ac:
16:42:08:c8:ec:bf:44:8f:76:f0:5b:38:07:fc:f0:
1f:71:92:d8:62:d2:b9:d6:3d:57:b8:8f:83:04:36:
16:fc:ec:85:36:69:5e:ec:33:6c:93:91:db:8b:fb:
d4:04:6b:ac:6c:46:7d:f6:9c:93:f0:47:5c:23:89:
82:09:a3:c3:63:f7:6f:4b:91:b6:62:53:4e:76:17:
11:f7:fd:c3:78:0c:2c:bd:86:bd:89:8d:ea:98:bd:
91:14:80:32:9f:4d:d2:f3:a3:51:86:ae:69:50:5a:
ba:19:0c:34:da:80:19:3d:a8:66:a9:a8:3a:c8:f7:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:44:06:70:7A:D4:BA:8A:37:66:7D:2D:E7:8E:52:0B:88:7F:42:9D
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/V0QGcHrUuoo3Zn0t545SC4h_Qp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.192.0/22
81.92.217.0-81.92.219.255
91.109.112.0/21
94.46.184.0/22
94.46.192.0/22
94.46.207.0/24
94.46.220.0/22
94.46.244.0/22
185.99.252.0-185.99.254.255
185.109.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:fb:32:24:be:b0:63:5d:41:ee:c1:05:6c:99:12:fe:28:16:
47:43:59:1d:15:ca:48:48:52:ae:87:e0:fe:b6:59:72:61:99:
f4:64:c1:f3:03:bd:de:f2:8e:7c:89:f5:f9:db:88:54:92:fe:
fd:4e:71:fa:b3:a9:75:a1:af:44:28:07:42:f7:3f:21:81:2b:
73:bf:c7:65:d0:fe:5d:75:87:e0:81:a9:f9:99:37:04:85:c4:
59:b4:47:df:35:0c:66:e5:32:41:28:bb:c2:13:af:70:6d:1d:
39:1f:aa:54:0b:ea:62:5e:60:f8:f2:aa:55:1c:3d:e6:3b:74:
a7:75:46:6f:30:b1:64:80:71:9c:20:fc:31:8f:71:a6:c3:36:
cb:65:a6:53:43:6c:d7:ea:ee:4e:cc:df:52:47:48:4b:7f:41:
10:ab:c2:31:e9:84:52:97:6b:6a:b6:2b:87:a3:d7:ac:38:cf:
e8:82:2e:ca:28:e4:8b:0d:4b:64:7a:e5:86:5a:ff:c5:02:0a:
eb:42:32:f2:96:7a:e0:c1:7e:e9:fd:f9:74:6f:e6:0d:d2:55:
85:dc:be:19:7a:b7:ba:1d:fd:76:e1:07:13:d1:ae:63:5f:b4:
3c:c3:db:09:1d:2d:c2:4e:17:4c:ea:0b:51:0a:a9:f8:6b:c8:
92:7a:b9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:46:32 2024 by rpki-client on console-ams.rpki-client.org