Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/DxdjNk--N_kqQBJKaM9EcoGO9Vw.roa
File: DxdjNk--N_kqQBJKaM9EcoGO9Vw.roa (raw, json)
Hash identifier: 7fQ5ch/AfP3lq2pv6Xi7jzaXOWXnr77/GbsfK0Eeg5I=
Subject key identifier: 0F:17:63:36:4F:BE:37:F9:2A:40:12:4A:68:CF:44:72:81:8E:F5:5C
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018EBC6AB7E38F86517EE40502FFA35F20CA
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/DxdjNk--N_kqQBJKaM9EcoGO9Vw.roa
Signing time: Mon 08 Apr 2024 06:34:54 +0000
ROA not before: Mon 08 Apr 2024 06:34:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43395
IP address blocks: 31.59.0.0/23 maxlen: 23
31.59.12.0/24 maxlen: 24
31.59.13.0/24 maxlen: 24
31.59.14.0/24 maxlen: 24
31.59.15.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.56.0/24 maxlen: 24
94.182.57.0/24 maxlen: 24
94.182.58.0/24 maxlen: 24
94.182.59.0/24 maxlen: 24
94.182.60.0/22 maxlen: 22
94.182.60.0/24 maxlen: 24
94.182.61.0/24 maxlen: 24
94.182.62.0/24 maxlen: 24
94.182.63.0/24 maxlen: 24
151.247.212.0/23 maxlen: 23
151.247.228.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.236.0/22 maxlen: 22
151.247.236.0/24 maxlen: 24
151.247.237.0/24 maxlen: 24
151.247.238.0/24 maxlen: 24
151.247.239.0/24 maxlen: 24
151.247.240.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 20:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:6a:b7:e3:8f:86:51:7e:e4:05:02:ff:a3:5f:20:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Apr 8 06:34:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f1763364fbe37f92a40124a68cf4472818ef55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:99:b7:d3:d2:9a:96:71:c9:4f:c6:22:b9:
3b:7f:bc:e7:50:71:85:d6:9c:f4:4f:64:07:ae:62:
ef:f4:a4:51:2f:eb:d1:6c:74:6d:19:28:8a:6d:1e:
d6:68:08:f1:3f:1d:85:55:77:cf:81:c6:df:b5:9f:
15:2d:2b:e9:ab:76:74:44:62:04:ae:97:d3:b7:87:
25:88:39:31:63:fb:d0:62:1c:ae:a9:fb:dd:13:61:
e7:47:f2:48:c2:55:1c:98:1f:57:d6:21:f5:22:0d:
99:88:b0:e4:8a:8e:6b:c7:a3:05:59:e9:4f:94:b0:
5b:e7:e4:0b:73:f0:5e:2c:d4:11:0f:c3:8d:80:38:
99:aa:a4:f1:30:e2:36:c1:07:40:c3:c3:b4:2c:87:
41:c9:ae:86:62:67:dd:ab:89:8b:bc:32:02:61:af:
dd:1a:54:e4:f3:88:7e:81:52:aa:02:29:52:85:ea:
5d:32:68:71:ba:96:f9:26:a2:e5:d7:5a:1a:d2:ef:
74:5a:59:98:56:bd:13:63:1a:dd:9c:34:da:9c:2b:
0a:e8:4f:71:bd:0a:98:af:42:8c:45:61:82:ec:31:
88:b0:4f:c6:bf:49:bd:7a:ba:8b:75:d4:c9:f5:f9:
9a:71:3c:a3:5e:c8:c8:3d:5f:e7:a9:5a:ce:ca:8c:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:17:63:36:4F:BE:37:F9:2A:40:12:4A:68:CF:44:72:81:8E:F5:5C
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/DxdjNk--N_kqQBJKaM9EcoGO9Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.59.0.0/23
31.59.12.0/22
94.182.56.0/21
151.247.212.0/23
151.247.228.0-151.247.241.255
Signature Algorithm: sha256WithRSAEncryption
90:6d:2d:ac:df:f5:d4:bc:6d:48:6f:ab:7f:5c:ee:01:cd:ab:
af:42:0b:f8:ed:77:ae:98:e9:f1:3d:2a:92:5f:25:77:d5:10:
0c:de:98:9b:b2:8c:d2:b7:1b:41:b1:36:b8:07:c3:38:d1:6a:
57:63:da:4f:41:10:73:90:e7:d0:58:b5:30:a7:92:42:70:db:
3e:01:cf:29:5b:fb:76:e0:3b:48:19:58:96:06:45:ee:39:87:
db:ee:e6:ce:46:16:55:6b:9d:58:b5:50:1f:2e:ee:60:bd:82:
07:91:53:1c:d9:90:d3:b7:e9:a9:76:b0:cb:89:dc:6b:50:7c:
47:4e:94:4b:8d:9e:37:fa:e1:8e:79:84:d6:cb:5b:ac:ab:41:
82:da:90:8a:45:15:71:7b:83:01:2b:e0:fc:41:77:31:81:cf:
46:b4:c3:a9:8d:56:4b:fa:22:a1:c8:8a:83:0f:de:19:2d:8a:
cc:e0:23:8f:8e:d8:7f:59:1f:34:a7:9d:66:4e:89:25:f8:11:
24:c0:80:7e:6e:65:74:06:48:2f:26:d8:a7:7d:e2:03:c1:5a:
bf:b4:0e:91:6f:78:c7:5e:87:b4:b3:bc:2d:ba:bc:39:63:9f:
da:24:bb:46:3a:85:fa:38:d9:1f:f2:57:e4:69:3c:6e:d5:6e:
6f:39:76:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:47 2024 by rpki-client on console-fra.rpki-client.org