Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/xqvJdSKmoeXowRIorhDSi7mhuO8.roa
File: xqvJdSKmoeXowRIorhDSi7mhuO8.roa (raw, json)
Hash identifier: KmC41TJL7YCo4CNsv1TUgf+BNDC5Ti3LqekkD2HKEuc=
Subject key identifier: C6:AB:C9:75:22:A6:A1:E5:E8:C1:12:28:AE:10:D2:8B:B9:A1:B8:EF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E795435592C424682873AA02A6A8CA0C8
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/xqvJdSKmoeXowRIorhDSi7mhuO8.roa
Signing time: Tue 26 Mar 2024 05:55:45 +0000
ROA not before: Tue 26 Mar 2024 05:55:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 45.87.120.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
45.88.14.0/24 maxlen: 24
45.88.15.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
79.110.227.0/24 maxlen: 24
85.204.18.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.46.42.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
93.115.104.0/24 maxlen: 24
93.115.105.0/24 maxlen: 24
93.115.106.0/24 maxlen: 24
93.115.107.0/24 maxlen: 24
93.118.36.0/24 maxlen: 24
93.119.154.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
185.198.233.0/24 maxlen: 24
185.212.119.0/24 maxlen: 24
188.212.121.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
188.241.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:79:54:35:59:2c:42:46:82:87:3a:a0:2a:6a:8c:a0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 26 05:55:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6abc97522a6a1e5e8c11228ae10d28bb9a1b8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:89:d8:f2:da:6f:89:04:d6:e1:f1:f7:ea:af:
65:1d:08:c9:0f:a9:e4:16:c2:4c:d7:d7:ab:d7:97:
37:29:50:7b:6f:32:41:a0:10:ee:f0:8d:0c:f3:2c:
2a:26:5c:ae:dc:69:b7:27:ec:7a:98:a2:05:8b:c4:
03:7b:9f:55:c5:e0:0a:6f:87:45:a0:14:f6:eb:6e:
cf:3b:fa:f7:1d:bb:32:e8:f4:54:f0:c8:dc:ae:a9:
5e:68:e9:20:63:28:9d:df:13:9d:86:ce:e6:65:90:
77:91:5a:d7:db:d4:7c:fe:ad:cd:9c:20:a3:7b:85:
40:ad:27:d2:4a:fe:46:c6:df:81:74:3f:74:0b:f6:
6a:10:2e:60:40:bb:e6:08:71:1d:09:54:76:7b:05:
49:37:18:be:c5:3e:50:87:e3:a1:f3:cd:01:9e:04:
dc:61:c2:9e:33:f9:9d:54:1b:96:ad:c5:1d:b6:99:
7a:db:0d:cc:b5:76:58:4b:fc:cc:b9:d5:bc:d2:d1:
3d:20:00:b0:8c:59:84:bd:16:10:c9:22:7c:83:12:
e8:e0:c1:39:c4:c4:60:b6:54:29:d3:7e:2c:e5:2f:
31:76:49:55:85:0c:c5:b6:06:13:d7:0e:c8:bc:0f:
a1:53:4e:74:e3:39:f6:d2:6b:75:17:4f:8d:e2:a4:
d0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AB:C9:75:22:A6:A1:E5:E8:C1:12:28:AE:10:D2:8B:B9:A1:B8:EF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/xqvJdSKmoeXowRIorhDSi7mhuO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.120.0/24
45.88.12.0/24
45.88.14.0/23
62.192.152.0/24
77.81.182.0/24
79.110.227.0/24
85.204.18.0/24
89.34.106.0/24
89.35.129.0/24
89.37.192.0/24
89.40.36.0/24
89.40.215.0/24
89.45.35.0/24
89.46.42.0/24
89.47.36.0/24
93.115.104.0/22
93.118.36.0/24
93.119.154.0/24
94.198.171.0/24
128.0.41.0/24
176.223.188.0/24
185.198.233.0/24
185.212.119.0/24
188.212.121.0/24
188.215.31.0/24
188.241.221.0/24
Signature Algorithm: sha256WithRSAEncryption
57:38:af:cd:4e:ce:e7:d7:51:df:e7:47:55:14:79:eb:aa:49:
31:e3:60:12:c5:01:49:d5:d9:ef:16:f5:17:2d:37:98:50:63:
8e:0c:b7:68:95:79:7f:83:bb:af:16:35:b8:82:b6:d2:0a:43:
41:19:4c:da:82:0e:eb:dc:cf:07:22:44:0c:fd:f8:51:41:0f:
64:80:99:ff:52:45:e3:08:bf:b5:9f:af:5f:c4:c8:bd:b7:5b:
83:d7:dd:aa:33:90:b5:f3:7a:0d:4c:76:9c:1e:b5:26:a4:d6:
39:f7:37:91:ba:64:72:51:5a:78:ff:c8:94:02:1b:b5:eb:a4:
0b:f2:2c:d2:9c:b1:5f:eb:65:fe:25:6c:5a:88:2a:a6:13:6e:
10:3f:ef:fe:f4:c3:5a:4b:1e:12:f5:ca:d9:9f:f2:02:41:2a:
c5:68:49:3e:57:68:6c:57:27:80:9f:c8:3c:ad:64:b9:9b:b9:
cf:0c:06:83:4b:43:a7:37:77:7a:c0:37:84:32:d3:87:93:13:
0e:fa:d5:25:a3:1f:f9:d4:19:1f:c3:83:42:e6:cd:25:4a:ad:
f6:45:6a:99:83:41:8b:e6:52:00:93:e5:75:1c:38:6b:db:8e:
8b:56:07:e6:9d:81:4b:ef:11:28:80:9d:90:5d:0a:14:ab:d0:
0b:3c:61:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 01:52:18 2024 by rpki-client on console-fra.rpki-client.org