Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/FpLQ4l-HKlL_5nxYrIcvT5sA46M.roa
File: FpLQ4l-HKlL_5nxYrIcvT5sA46M.roa (raw, json)
Hash identifier: Vw/Zph7TDNY6Kf9IGGV1Riws1ujHDvKTPwZPOYMHmRc=
Subject key identifier: 16:92:D0:E2:5F:87:2A:52:FF:E6:7C:58:AC:87:2F:4F:9B:00:E3:A3
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 018CC94E1E17F5E02BCBE7BAFADAD2477D57
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/FpLQ4l-HKlL_5nxYrIcvT5sA46M.roa
Signing time: Tue 02 Jan 2024 08:33:09 +0000
ROA not before: Tue 02 Jan 2024 08:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211057
IP address blocks: 185.21.120.0/24 maxlen: 24
185.21.121.0/24 maxlen: 24
185.21.122.0/24 maxlen: 24
185.21.123.0/24 maxlen: 24
46.253.88.0/23 maxlen: 23
46.253.88.0/24 maxlen: 24
46.253.89.0/24 maxlen: 24
185.71.141.0/24 maxlen: 24
185.71.140.0/24 maxlen: 24
185.71.140.0/25 maxlen: 25
185.71.140.128/25 maxlen: 25
185.71.141.0/25 maxlen: 25
185.71.141.128/25 maxlen: 25
185.71.140.0/23 maxlen: 23
185.71.140.0/22 maxlen: 22
185.71.142.0/25 maxlen: 25
185.71.142.0/24 maxlen: 24
185.71.142.128/25 maxlen: 25
185.71.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:1e:17:f5:e0:2b:cb:e7:ba:fa:da:d2:47:7d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Jan 2 08:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1692d0e25f872a52ffe67c58ac872f4f9b00e3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dd:89:6c:c0:5d:e1:e4:11:d1:f4:f8:7b:8b:
94:41:7b:9b:02:d5:86:4a:6e:3c:ed:b6:cd:4f:22:
87:f2:22:09:9d:00:6e:54:95:5e:b2:27:e4:fa:aa:
5d:93:7c:99:b5:e5:e7:b2:0a:b7:27:f2:5b:ca:9c:
73:c2:d2:4d:67:b2:56:79:fa:8f:6f:31:b0:7b:bc:
aa:58:3e:59:dc:c9:84:63:1a:6e:d1:f0:7f:75:8f:
0d:29:a4:af:7e:e1:77:94:05:a5:93:3f:9b:66:29:
e2:58:4d:f1:e5:87:06:72:7c:98:e6:22:5f:ea:6e:
ed:ac:5e:8e:16:3e:74:7b:d1:80:5d:25:bb:76:47:
dd:af:d8:72:8b:8c:61:82:39:9b:a4:52:2f:5c:c6:
7c:db:bf:e1:bb:91:25:9c:d5:33:8b:ac:fe:de:56:
f1:8b:24:2d:e6:78:96:d0:ad:81:e9:0e:9e:5a:44:
c6:93:27:34:21:cf:4a:13:86:32:f4:2c:6e:48:4b:
88:bb:d7:e0:db:85:41:c6:43:74:2a:49:0a:ac:fd:
04:19:7e:0f:ea:1e:52:09:f9:bf:ea:87:6d:17:5c:
15:29:ab:1b:3f:3c:72:82:06:b5:95:12:06:26:9b:
2f:d1:88:4b:56:85:53:5c:67:e9:8f:2d:82:c6:a1:
9e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:92:D0:E2:5F:87:2A:52:FF:E6:7C:58:AC:87:2F:4F:9B:00:E3:A3
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/FpLQ4l-HKlL_5nxYrIcvT5sA46M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.88.0/23
185.21.120.0/22
185.71.140.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:33:8e:cc:d7:7f:a3:56:be:92:45:4a:07:c6:38:6a:f4:71:
3f:2f:79:b9:9e:4d:2c:86:77:2f:19:a5:c4:db:be:1d:69:8c:
8f:65:d6:a3:07:fc:e5:98:9e:27:f7:26:f5:06:e1:53:b3:e8:
a0:b8:b0:0d:7d:e1:a8:48:5a:6e:e6:6c:ce:ff:c3:9a:4b:69:
57:33:06:b2:4b:bf:fd:b7:d9:d1:e7:85:a9:ed:33:d2:e6:4d:
1c:17:0f:3c:0a:83:b3:3b:66:be:97:27:1b:f2:5e:4e:0d:ed:
de:d2:3e:df:83:38:d7:39:de:3f:0f:e3:cc:a1:8a:c0:a6:f4:
74:6a:64:a5:e2:39:1a:13:5c:68:2d:f6:2d:b6:1f:8b:02:e7:
94:e6:55:66:fb:65:e2:56:4b:bf:d1:59:3d:da:2e:ac:ad:f9:
67:77:47:35:26:e7:91:5d:50:53:49:c4:15:4a:19:25:cb:99:
78:b5:65:62:72:1a:31:ed:8c:56:05:ed:d7:ef:85:3d:90:fa:
5b:36:2f:cc:fc:23:da:8f:24:c9:f6:38:72:ad:78:97:44:7e:
e4:a4:4d:93:99:70:bf:06:bd:fd:92:65:c7:e0:51:b8:89:94:
cc:dc:a6:8a:03:54:72:34:45:cd:e5:07:07:43:8e:f2:82:f9:
d7:f0:1f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 02:37:23 2024 by rpki-client on console-fra.rpki-client.org