Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/SKeuoFmg9cKzBy50IGxZpBUwp4k.roa
File: SKeuoFmg9cKzBy50IGxZpBUwp4k.roa (raw, json)
Hash identifier: dhz7JK365azK6HFvRyHf/fImoatdONfMXTf4SVei9oQ=
Subject key identifier: 48:A7:AE:A0:59:A0:F5:C2:B3:07:2E:74:20:6C:59:A4:15:30:A7:89
Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb
Certificate serial: 018CC8030F6C5C131B7F8E8FBE91FAFB30AE
Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/SKeuoFmg9cKzBy50IGxZpBUwp4k.roa
Signing time: Tue 02 Jan 2024 02:31:32 +0000
ROA not before: Tue 02 Jan 2024 02:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9121
IP address blocks: 93.184.144.0/24 maxlen: 24
93.184.145.0/24 maxlen: 24
93.184.150.0/24 maxlen: 24
93.184.151.0/24 maxlen: 24
93.184.152.0/24 maxlen: 24
93.184.146.0/24 maxlen: 24
93.184.147.0/24 maxlen: 24
93.184.148.0/24 maxlen: 24
93.184.149.0/24 maxlen: 24
93.184.157.0/24 maxlen: 24
93.184.158.0/24 maxlen: 24
93.184.159.0/24 maxlen: 24
93.184.153.0/24 maxlen: 24
93.184.155.0/24 maxlen: 24
93.184.156.0/24 maxlen: 24
185.168.152.0/24 maxlen: 24
185.168.154.0/23 maxlen: 23
185.168.153.0/24 maxlen: 24
185.168.154.0/24 maxlen: 24
185.168.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.mft
rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:0f:6c:5c:13:1b:7f:8e:8f:be:91:fa:fb:30:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb
Validity
Not Before: Jan 2 02:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48a7aea059a0f5c2b3072e74206c59a41530a789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:2a:5c:61:d3:f7:c3:f9:f5:94:83:5b:b9:
47:4f:64:d1:26:3e:b4:f0:64:f8:89:e3:b0:c2:c0:
1b:66:01:f8:cb:35:ad:1c:a0:f3:34:5b:b8:2e:b1:
6c:88:0c:de:96:f0:1f:d6:f5:a0:20:c1:b5:bd:7b:
6d:7c:b2:78:7b:61:7f:29:11:ff:6f:27:43:60:67:
58:a0:c8:7e:8a:b7:77:11:ab:9c:9f:52:63:24:47:
1c:d2:20:eb:62:32:db:c5:c2:8a:2f:05:85:02:a4:
0a:52:de:96:c2:86:21:54:67:d1:01:05:17:6c:25:
f3:bd:f6:8d:51:22:bb:f3:9b:b6:7a:80:a5:49:36:
ed:d0:cb:ce:b6:41:30:a7:b0:59:22:d8:d2:16:97:
47:9d:43:34:d9:4e:e7:75:88:89:cb:57:ff:ca:07:
0a:f5:fa:49:08:a1:9a:7d:26:0e:9e:74:6c:41:5a:
8b:00:ea:36:18:69:55:45:74:6f:a4:3b:ca:54:a6:
dd:0b:f9:51:21:f1:4e:87:a8:08:f5:f4:9c:12:ec:
f7:da:1f:23:9d:4a:c3:05:da:81:a5:4d:57:8c:c6:
03:35:b2:3d:67:ad:23:d7:bf:89:07:81:6c:4b:73:
58:10:24:43:27:96:13:fd:30:21:89:76:b0:56:53:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A7:AE:A0:59:A0:F5:C2:B3:07:2E:74:20:6C:59:A4:15:30:A7:89
X509v3 Authority Key Identifier:
keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/SKeuoFmg9cKzBy50IGxZpBUwp4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.144.0-93.184.153.255
93.184.155.0-93.184.159.255
185.168.152.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:9c:b5:05:06:fa:65:13:80:21:54:de:98:18:bd:1a:c0:6b:
ed:89:57:c3:5c:64:a5:e7:a7:3c:c6:78:21:a8:0f:15:bb:12:
27:5a:48:7c:6a:65:10:ec:1a:c9:6c:53:d6:5c:ab:bf:1e:95:
fb:e8:96:e1:f8:2d:3d:a8:a2:1a:56:69:5c:61:b2:34:b3:8f:
90:a4:ac:75:50:72:93:32:c5:46:eb:c8:57:18:80:fc:77:6a:
f6:d7:3a:d4:2e:a7:2d:17:73:80:f9:d5:26:37:56:85:b2:26:
1c:cf:c5:85:bb:f8:1d:10:dc:5e:57:a1:25:0b:d0:e0:9a:76:
45:b4:37:d9:18:e7:52:eb:41:ce:cc:de:2f:14:51:29:8a:da:
b9:e8:f8:08:a7:a3:23:1b:2d:d4:c7:06:64:5e:79:18:21:bc:
78:0d:69:3a:3e:d2:56:ec:74:01:68:51:6f:b2:ac:14:46:a5:
ec:68:45:fa:e8:c4:93:da:a2:71:5e:1b:4c:f9:88:a0:39:d6:
1b:30:e1:cc:7e:62:82:3c:a9:bd:51:00:80:41:a8:c0:42:53:
ac:29:3b:79:2f:5d:ef:c5:f4:1b:29:61:d7:46:bf:d4:11:f6:
77:28:d2:7a:ef:dc:c6:bc:3e:75:4c:eb:2a:e9:bf:f4:c6:10:
b7:96:4b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 03:13:47 2024 by rpki-client on console-fra.rpki-client.org