Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/XaWWZBk4rsy86KcAnJYbYnhmXwo.roa
File: XaWWZBk4rsy86KcAnJYbYnhmXwo.roa (raw, json)
Hash identifier: qGqvSsI+ugbd1LviYDIPi7IXegyhNoZarMHRT8VJFOM=
Subject key identifier: 5D:A5:96:64:19:38:AE:CC:BC:E8:A7:00:9C:96:1B:62:78:66:5F:0A
Certificate issuer: /CN=9de783e9acd56992f5835fb4882183500ca03c83
Certificate serial: 018D6A819FE24229282C37EDF619E51E0DE4
Authority key identifier: 9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/XaWWZBk4rsy86KcAnJYbYnhmXwo.roa
Signing time: Fri 02 Feb 2024 15:48:16 +0000
ROA not before: Fri 02 Feb 2024 15:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 62.182.168.0/21 maxlen: 21
62.182.168.0/24 maxlen: 24
62.182.169.0/24 maxlen: 24
62.182.170.0/24 maxlen: 24
62.182.171.0/24 maxlen: 24
62.182.172.0/24 maxlen: 24
62.182.173.0/24 maxlen: 24
62.182.174.0/24 maxlen: 24
62.182.175.0/24 maxlen: 24
83.97.96.0/21 maxlen: 21
83.97.96.0/24 maxlen: 24
83.97.97.0/24 maxlen: 24
83.97.98.0/24 maxlen: 24
83.97.99.0/24 maxlen: 24
83.97.100.0/24 maxlen: 24
83.97.101.0/24 maxlen: 24
83.97.102.0/24 maxlen: 24
83.97.103.0/24 maxlen: 24
89.47.52.0/24 maxlen: 24
89.47.252.0/24 maxlen: 24
91.202.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:81:9f:e2:42:29:28:2c:37:ed:f6:19:e5:1e:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de783e9acd56992f5835fb4882183500ca03c83
Validity
Not Before: Feb 2 15:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5da596641938aeccbce8a7009c961b6278665f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:73:32:5e:dc:d6:cb:f6:8d:c4:12:08:98:1a:
06:4b:3f:4a:91:a4:5c:3e:7d:d4:6c:bd:16:14:bc:
51:33:89:b3:96:28:09:07:09:57:c3:fa:55:8d:5f:
1f:af:f8:7a:8e:03:cf:0d:3a:a9:6c:49:58:21:69:
57:ad:09:bb:2e:8c:20:18:a8:c6:c0:27:4c:e1:9b:
7b:31:f9:01:72:61:f8:c5:2c:84:c8:76:cb:94:00:
ee:61:66:2e:58:e9:fe:57:d0:5d:70:34:82:3d:be:
f2:db:c0:00:7c:ad:9f:2a:aa:82:16:b9:5c:29:2b:
44:e5:50:f8:bd:72:6e:e7:63:73:82:9e:e4:cf:74:
da:2a:0d:b1:2f:87:36:ee:61:6c:35:be:0d:18:f9:
31:6d:90:24:db:ce:c0:6c:c6:ae:1b:66:2c:f2:8e:
e9:3f:c9:c6:59:84:61:05:75:9d:68:5d:d7:23:4d:
e4:c5:a3:35:dd:96:c8:08:9b:55:3d:f5:61:f5:02:
32:f7:3c:9e:f7:e3:a7:00:2c:86:93:14:70:24:6a:
33:16:3e:a3:5f:26:a9:2e:d1:f5:01:ea:41:2a:97:
4d:04:19:cc:3a:12:1e:79:9f:85:02:20:2a:2f:fe:
f8:e9:30:08:3b:57:c3:de:90:e2:5c:9b:55:06:ed:
06:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A5:96:64:19:38:AE:CC:BC:E8:A7:00:9C:96:1B:62:78:66:5F:0A
X509v3 Authority Key Identifier:
keyid:9D:E7:83:E9:AC:D5:69:92:F5:83:5F:B4:88:21:83:50:0C:A0:3C:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neeD6azVaZL1g1-0iCGDUAygPIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/XaWWZBk4rsy86KcAnJYbYnhmXwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4f05ce-a382-49a0-9999-e52f70c06c29/1/neeD6azVaZL1g1-0iCGDUAygPIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.168.0/21
83.97.96.0/21
89.47.52.0/24
89.47.252.0/24
91.202.211.0/24
Signature Algorithm: sha256WithRSAEncryption
79:66:1a:c4:10:9d:5c:45:84:68:cc:69:95:93:60:87:95:7d:
1a:0b:35:2f:71:d5:36:ae:4d:62:1b:41:a4:69:25:40:a6:ff:
e9:0d:8d:d4:a5:ac:e3:6e:21:ba:27:3b:81:a9:bf:f3:58:56:
1c:f6:8d:25:16:6f:9b:0c:71:8e:33:2f:d3:a7:dd:02:48:8d:
ea:61:3d:51:7c:2d:91:6c:2c:8d:14:c9:66:3f:fd:f8:a7:8b:
6a:7e:72:e6:66:39:49:7d:00:0f:fc:2c:e8:67:2a:46:5f:9c:
b8:be:bb:f8:6c:e7:2a:4d:ca:69:56:f7:f8:8a:9e:0c:de:5c:
fb:85:ff:08:4e:89:91:2a:ab:02:b3:ef:a1:81:b7:54:8b:5e:
bc:92:da:61:8b:5f:a4:e3:fe:36:a3:11:5a:67:d3:68:7e:df:
e7:61:24:39:e3:af:8b:69:11:44:cf:c7:71:f2:5b:ca:05:6d:
b7:fd:44:27:a1:46:19:90:a4:9c:d8:c6:40:c3:bf:49:01:42:
d1:2a:fd:0a:f5:20:11:83:f0:91:26:35:d6:c0:62:2b:f8:78:
a6:dd:db:ce:ab:48:07:29:31:5f:a1:ca:3d:4b:71:ab:50:68:
f2:f2:d3:20:a7:94:b8:24:11:49:3c:e7:98:99:40:5d:ed:cf:
56:a3:c6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:57:24 2024 by rpki-client on console-ams.rpki-client.org