Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/89YohjK1RVg_T0EAc2Uj7ne6lHE.roa
File: 89YohjK1RVg_T0EAc2Uj7ne6lHE.roa (raw, json)
Hash identifier: z/MgO3kmFYbKe4ThBIU0l8UmUtL5vvWaxLWkFlxyQp4=
Subject key identifier: F3:D6:28:86:32:B5:45:58:3F:4F:41:00:73:65:23:EE:77:BA:94:71
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0190EDBF224F0A21303209AF3DBEDCE5F050
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/89YohjK1RVg_T0EAc2Uj7ne6lHE.roa
Signing time: Fri 26 Jul 2024 06:34:04 +0000
ROA not before: Fri 26 Jul 2024 06:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197540
IP address blocks: 94.16.30.0/23 maxlen: 23
94.16.30.128/25 maxlen: 25
94.16.104.0/22 maxlen: 24
94.16.108.0/22 maxlen: 24
94.16.112.0/21 maxlen: 24
94.16.120.0/22 maxlen: 24
185.216.176.0/22 maxlen: 22
185.232.68.0/22 maxlen: 22
188.172.228.0/23 maxlen: 24
193.26.156.0/22 maxlen: 22
194.36.144.0/22 maxlen: 22
2a00:11c0:5f::/48 maxlen: 48
2a00:11c0:60::/48 maxlen: 48
2a00:11c0:81::/56 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ed:bf:22:4f:0a:21:30:32:09:af:3d:be:dc:e5:f0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 26 06:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3d6288632b545583f4f4100736523ee77ba9471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:23:83:67:ae:c5:06:37:cc:72:97:68:e3:30:
1b:e6:fd:9c:ef:38:b5:c7:2c:47:2d:0c:20:75:08:
56:02:5c:a7:4a:b3:bb:04:15:6b:76:af:e9:64:0a:
54:0f:6f:5d:9f:92:d8:d5:ec:ba:94:e8:be:6a:bd:
34:e7:f2:21:bb:81:41:60:75:24:1a:a4:1b:a1:a2:
95:16:5e:10:e1:ab:37:92:d9:6f:0e:78:9d:24:a0:
cc:68:4e:88:1b:d6:bf:52:ce:e4:1f:ec:8a:6d:70:
04:6b:41:db:7d:98:16:63:3e:da:8a:41:44:f0:5e:
1f:16:d5:d4:7d:cd:f7:9b:86:b2:c4:c2:3f:25:e3:
5b:77:55:a3:40:04:25:1e:42:bd:a3:f8:07:6b:bb:
3b:72:fd:cb:55:dd:cb:cd:70:f1:03:39:c9:95:47:
56:7d:83:f1:9e:d1:f4:e8:1b:8e:e2:8c:68:33:06:
86:4e:a2:c9:5c:cf:dc:6a:6c:e5:05:3a:49:bd:68:
6d:0e:5f:c2:f7:6b:05:ef:cc:e1:3a:b2:13:b3:63:
4e:a6:47:c2:2c:f6:df:1e:bc:f5:72:ac:0c:87:ec:
ff:1f:8a:28:18:32:1b:a0:a9:c0:23:46:ab:0f:44:
c2:59:58:21:30:3a:c9:27:36:f3:d8:9f:81:a3:85:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D6:28:86:32:B5:45:58:3F:4F:41:00:73:65:23:EE:77:BA:94:71
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/89YohjK1RVg_T0EAc2Uj7ne6lHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.16.30.0/23
94.16.104.0-94.16.123.255
185.216.176.0/22
185.232.68.0/22
188.172.228.0/23
193.26.156.0/22
194.36.144.0/22
IPv6:
2a00:11c0:5f::-2a00:11c0:60:ffff:ffff:ffff:ffff:ffff
2a00:11c0:81::/56
Signature Algorithm: sha256WithRSAEncryption
ba:7d:93:23:ae:b6:52:de:a2:2b:1c:94:99:42:35:45:07:3b:
d3:f4:15:57:96:a9:32:df:23:23:05:eb:4a:18:49:53:13:83:
0b:80:1a:f1:a3:a4:d8:a5:c1:2d:7d:55:1b:76:1b:a5:68:2e:
6f:80:54:82:fd:2d:f3:83:c1:c1:1f:39:0c:c2:4a:ce:f1:97:
d8:43:26:db:73:6d:bd:97:75:9b:05:25:56:56:25:3a:0c:dc:
6b:d3:3e:c8:68:03:2b:d8:bb:10:d1:66:fb:2e:61:0f:b5:1a:
73:41:49:81:c9:e9:e7:2f:80:72:a4:81:39:78:c2:ce:f8:f7:
22:84:ec:5c:5e:8b:c6:69:91:29:59:fc:26:2b:bd:5b:a4:88:
26:8f:b8:e4:42:9b:37:7a:a7:76:93:ae:c4:a3:f1:85:b4:d1:
90:68:1a:4e:50:ba:26:2f:ff:30:b4:79:af:7d:5d:a1:13:ff:
ad:76:a3:2f:68:62:89:29:53:7e:71:34:10:d1:e8:8e:8b:5b:
04:d1:9e:a2:26:7c:1a:be:95:77:56:34:2a:b8:43:9e:36:1f:
c3:64:01:a8:cb:42:29:6a:8e:8d:80:73:25:a8:59:b3:10:b8:
07:88:dd:66:4a:2f:19:78:bd:e1:69:5a:06:27:d1:f3:6e:3a:
c3:81:6f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:48:14 2024 by rpki-client on console-fra.rpki-client.org