Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/Hc9dm_WXtJg5xVdUhVBNJ6CrqkU.roa
File: Hc9dm_WXtJg5xVdUhVBNJ6CrqkU.roa (raw, json)
Hash identifier: dCSH8ZtkfTz3vYKNcztt/ouJ2iR+lZj3RdfwlfJ02nE=
Subject key identifier: 1D:CF:5D:9B:F5:97:B4:98:39:C5:57:54:85:50:4D:27:A0:AB:AA:45
Certificate issuer: /CN=374dcfcf67b82b7ca7622fcc709209ecce37570e
Certificate serial: 018CC50046D0E93817C76F375B37A8CA1EB8
Authority key identifier: 37:4D:CF:CF:67:B8:2B:7C:A7:62:2F:CC:70:92:09:EC:CE:37:57:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N03Pz2e4K3ynYi_McJIJ7M43Vw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/Hc9dm_WXtJg5xVdUhVBNJ6CrqkU.roa
Signing time: Mon 01 Jan 2024 12:29:38 +0000
ROA not before: Mon 01 Jan 2024 12:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39232
IP address blocks: 178.237.72.0/21 maxlen: 21
185.81.84.0/23 maxlen: 23
185.81.84.0/22 maxlen: 22
185.81.86.0/23 maxlen: 23
178.237.64.0/21 maxlen: 21
178.237.64.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/N03Pz2e4K3ynYi_McJIJ7M43Vw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/N03Pz2e4K3ynYi_McJIJ7M43Vw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/N03Pz2e4K3ynYi_McJIJ7M43Vw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:46:d0:e9:38:17:c7:6f:37:5b:37:a8:ca:1e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374dcfcf67b82b7ca7622fcc709209ecce37570e
Validity
Not Before: Jan 1 12:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dcf5d9bf597b49839c5575485504d27a0abaa45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f4:89:d9:b3:01:c1:92:22:9f:ff:88:71:39:
2d:b6:44:85:a4:93:dc:d7:0e:29:eb:32:f8:88:7b:
48:10:02:b3:8a:69:e1:20:e6:25:e0:79:a8:70:2e:
34:37:61:cc:df:34:a5:26:32:bd:f7:fa:d6:61:f2:
f3:45:6e:82:c9:0d:1a:ac:0f:80:cb:d8:ce:b6:26:
13:3b:db:d5:ba:4a:cb:e6:bc:cf:0c:ca:f3:cf:d9:
44:1a:3e:c2:ca:f3:1c:95:42:2c:d3:94:90:e0:19:
33:bb:62:19:b1:f1:1e:fd:24:9b:2d:3b:7f:15:21:
5b:f2:fc:4c:1e:8c:55:01:ab:2f:2c:70:49:ef:94:
ec:dd:bf:a7:93:e6:b8:a2:75:49:44:d6:87:41:95:
78:7b:d8:6a:0e:4c:92:15:84:a6:a0:ae:5e:bb:31:
5e:e1:9b:75:d1:8f:6e:34:12:a1:46:28:21:75:dd:
75:73:0a:5d:da:50:c6:b9:6e:1e:7b:77:33:b3:31:
2b:0d:53:0f:53:7e:c2:ff:36:e4:c0:be:54:3e:1b:
f6:aa:aa:ef:b8:a3:74:b4:e2:0b:05:81:b2:b2:15:
17:fa:ff:f3:79:79:4c:57:8f:cb:aa:8c:b9:dc:e3:
d0:29:9c:8f:7e:33:a6:86:9e:fa:49:a4:e3:7b:26:
94:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CF:5D:9B:F5:97:B4:98:39:C5:57:54:85:50:4D:27:A0:AB:AA:45
X509v3 Authority Key Identifier:
keyid:37:4D:CF:CF:67:B8:2B:7C:A7:62:2F:CC:70:92:09:EC:CE:37:57:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N03Pz2e4K3ynYi_McJIJ7M43Vw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/Hc9dm_WXtJg5xVdUhVBNJ6CrqkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7ed12b-53bd-4df6-aa6e-a2cc96899702/1/N03Pz2e4K3ynYi_McJIJ7M43Vw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.64.0/20
185.81.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:13:94:d8:e8:ac:32:d6:da:75:57:ba:10:a7:40:de:f8:bb:
6e:e6:b0:be:ef:b2:66:79:56:d7:bd:80:a5:f2:d1:34:ac:84:
e6:c2:fe:f8:db:f0:61:72:ac:b0:fb:f5:55:1e:44:37:20:ce:
d6:04:64:85:2b:02:b8:7a:e6:2d:c5:07:a6:d5:ad:d8:f7:33:
d9:40:65:5f:d8:7a:2c:b8:b5:87:0a:d0:8c:c9:d3:4a:32:1f:
1b:7d:55:27:1a:15:d1:51:74:f9:b7:8a:c3:a1:8b:f9:c3:b4:
d7:67:61:4c:f4:77:9e:52:e9:e6:40:7e:64:00:f7:ee:cf:74:
f9:ce:94:fe:51:73:98:fb:5b:dc:69:ed:e2:4f:68:34:2b:d8:
1d:65:76:56:09:a5:00:04:c1:1d:9f:38:02:f7:6c:e3:85:d9:
83:2b:31:c1:10:1b:60:51:bb:03:16:63:f2:d5:be:b3:f1:9a:
60:fc:a7:ac:35:3a:bd:98:43:17:4a:28:ea:b5:59:ca:69:bd:
d5:92:cf:8c:1e:15:d3:29:82:63:9f:53:2e:d6:91:6f:4e:a3:
42:f8:99:54:32:a0:5a:dd:5c:62:bc:7e:81:07:ee:2d:7e:eb:
a2:50:d3:13:9e:85:ee:6f:48:8a:0a:a5:d2:1b:57:3e:85:4d:
34:8d:68:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:44 2024 by rpki-client on console-fra.rpki-client.org