Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/oBEWp-o92Jtwpn4k7KxuXyRcDhs.roa
File: oBEWp-o92Jtwpn4k7KxuXyRcDhs.roa (raw, json)
Hash identifier: OqY9DI46vvCPiYHxi6E71OdJZPp3MyhNtEGXzGL8cuk=
Subject key identifier: A0:11:16:A7:EA:3D:D8:9B:70:A6:7E:24:EC:AC:6E:5F:24:5C:0E:1B
Certificate issuer: /CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Certificate serial: 018CC8024A25B785D9C3382FE5F07B4948A3
Authority key identifier: 18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/oBEWp-o92Jtwpn4k7KxuXyRcDhs.roa
Signing time: Tue 02 Jan 2024 02:30:42 +0000
ROA not before: Tue 02 Jan 2024 02:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41230
IP address blocks: 78.109.176.0/20 maxlen: 20
31.205.192.0/18 maxlen: 18
31.205.0.0/18 maxlen: 18
31.205.0.0/16 maxlen: 16
31.205.128.0/18 maxlen: 18
45.154.248.0/22 maxlen: 22
185.198.228.0/22 maxlen: 23
185.134.138.0/24 maxlen: 24
185.134.136.0/22 maxlen: 23
45.81.120.0/22 maxlen: 22
185.134.139.0/24 maxlen: 24
31.205.64.0/18 maxlen: 18
185.134.144.0/22 maxlen: 22
213.143.0.0/19 maxlen: 19
176.119.145.0/24 maxlen: 24
81.23.48.0/20 maxlen: 20
185.134.128.0/22 maxlen: 22
2a0e:2a40::/29 maxlen: 29
2a0e:2ac0::/29 maxlen: 29
2a0f:dd00::/29 maxlen: 29
2a10:d00::/29 maxlen: 29
2a00:1a10::/29 maxlen: 29
2a07:c300::/29 maxlen: 29
2a0e:5680::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 10:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:4a:25:b7:85:d9:c3:38:2f:e5:f0:7b:49:48:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Validity
Not Before: Jan 2 02:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a01116a7ea3dd89b70a67e24ecac6e5f245c0e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5f:1a:ed:07:a6:6c:df:32:47:55:4c:93:c3:
b6:bf:0b:ca:a2:10:a0:d8:f1:b5:59:13:32:f4:a7:
ae:4a:54:a5:a8:8e:5f:0e:1f:dd:59:86:48:ad:4a:
8b:71:52:b0:5e:d7:8d:1c:0f:4a:a3:00:5e:5c:4e:
fc:b8:32:1f:8e:6b:9c:bf:96:e6:fd:81:31:4c:ae:
ca:0a:3e:55:51:9a:5a:19:b3:76:b5:f4:72:e2:5e:
b7:77:8f:30:22:2f:24:1f:42:38:d2:90:c9:8f:10:
93:88:ec:8a:d1:b9:45:76:4d:e9:52:3f:d6:bb:c7:
d3:92:6e:fd:a1:00:c2:c4:59:18:8d:e9:c0:55:e3:
40:b3:2a:39:7c:b5:21:6c:4e:f1:17:17:c2:52:bf:
2e:bb:e6:2e:66:6d:ea:42:86:5e:23:ca:e7:8e:26:
d6:12:7e:83:34:cc:8c:0e:6a:1a:83:96:65:88:cc:
25:f5:5d:cd:bb:2c:20:f0:6f:bf:fb:11:ba:a7:d9:
b3:5e:ef:42:4b:0b:e5:42:3e:4c:24:29:0c:8d:05:
97:89:b9:0c:44:22:77:1b:24:bd:cb:b1:9f:09:c1:
97:a6:e1:7d:c3:c5:57:6b:90:d3:0f:f7:e1:c0:56:
6f:a0:de:4b:2f:f9:ce:5c:07:7e:7f:2e:e8:a9:07:
b5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:11:16:A7:EA:3D:D8:9B:70:A6:7E:24:EC:AC:6E:5F:24:5C:0E:1B
X509v3 Authority Key Identifier:
keyid:18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/oBEWp-o92Jtwpn4k7KxuXyRcDhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.205.0.0/16
45.81.120.0/22
45.154.248.0/22
78.109.176.0/20
81.23.48.0/20
176.119.145.0/24
185.134.128.0/22
185.134.136.0/22
185.134.144.0/22
185.198.228.0/22
213.143.0.0/19
IPv6:
2a00:1a10::/29
2a07:c300::/29
2a0e:2a40::/29
2a0e:2ac0::/29
2a0e:5680::/29
2a0f:dd00::/29
2a10:d00::/29
Signature Algorithm: sha256WithRSAEncryption
25:b4:92:c5:08:0c:42:55:e0:d0:f8:1a:77:74:e1:f5:49:f3:
ae:1a:8e:ae:d9:c8:8a:8c:09:c7:ba:c0:fb:63:cb:f3:d0:9a:
c3:23:d4:f9:1b:2d:79:1b:36:98:0b:8c:3c:70:54:13:42:f9:
12:fc:d7:3d:c2:6e:d0:ae:80:3f:43:ca:ad:fa:89:f4:30:71:
68:19:fe:db:f5:d0:12:8c:00:2d:84:2f:03:61:b4:8b:33:67:
ec:9a:4c:35:11:de:c3:6e:e9:c3:6f:83:72:dd:67:ed:4f:78:
c9:98:2e:53:4f:25:bc:83:da:86:b4:55:26:6f:06:64:27:8f:
9e:77:46:4b:82:65:4e:f3:29:42:2d:ab:93:46:d1:fa:1e:68:
e1:29:e9:8b:fa:1c:e7:cd:8f:9c:0a:f7:6a:89:10:b9:33:80:
e7:46:86:6c:03:89:cd:10:1f:75:6a:7a:bc:b4:ed:48:31:61:
84:ba:22:5e:0a:20:0f:e1:c5:1a:e4:7f:71:dc:c4:aa:e4:0b:
07:1d:3a:b9:24:1d:85:2e:dc:0d:dd:ae:6c:62:d7:56:cb:85:
4b:c4:6d:c7:9c:80:be:0c:6a:71:b3:d6:24:b7:d2:fb:ad:6f:
5d:6f:e4:05:c7:fd:da:34:7c:e8:fb:22:53:06:b8:cb:b5:bb:
bd:e1:24:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 14:57:15 2024 by rpki-client on console-fra.rpki-client.org