Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/deukdpsy6f1mD7louyK31h1Dhac.roa
File: deukdpsy6f1mD7louyK31h1Dhac.roa (raw, json)
Hash identifier: WuTZFDCAW/CYoMEkkOcClnsXM86AwsqJTOAPVthnOUQ=
Subject key identifier: 75:EB:A4:76:9B:32:E9:FD:66:0F:B9:68:BB:22:B7:D6:1D:43:85:A7
Certificate issuer: /CN=0cdc07fda6f4d55b7c8182c929a3c4ac3c0a82fd
Certificate serial: 018CC2DB4447C5F87AB250ECFD03FCA93234
Authority key identifier: 0C:DC:07:FD:A6:F4:D5:5B:7C:81:82:C9:29:A3:C4:AC:3C:0A:82:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNwH_ab01Vt8gYLJKaPErDwKgv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/deukdpsy6f1mD7louyK31h1Dhac.roa
Signing time: Mon 01 Jan 2024 02:29:58 +0000
ROA not before: Mon 01 Jan 2024 02:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199666
IP address blocks: 185.127.220.0/23 maxlen: 23
185.127.222.0/23 maxlen: 23
146.247.64.0/22 maxlen: 22
146.247.64.0/24 maxlen: 24
146.247.66.0/24 maxlen: 24
146.247.67.0/24 maxlen: 24
146.247.68.0/23 maxlen: 23
146.247.68.0/24 maxlen: 24
146.247.69.0/24 maxlen: 24
146.247.70.0/24 maxlen: 24
146.247.70.0/23 maxlen: 23
146.247.65.0/24 maxlen: 24
2a05:9dc0:ffff::/48 maxlen: 48
2a05:9dc0::/48 maxlen: 48
2a05:9dc0:420::/48 maxlen: 48
2a05:9dc0:410::/48 maxlen: 48
2a05:9dc0:400::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/DNwH_ab01Vt8gYLJKaPErDwKgv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/DNwH_ab01Vt8gYLJKaPErDwKgv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNwH_ab01Vt8gYLJKaPErDwKgv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:44:47:c5:f8:7a:b2:50:ec:fd:03:fc:a9:32:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cdc07fda6f4d55b7c8182c929a3c4ac3c0a82fd
Validity
Not Before: Jan 1 02:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75eba4769b32e9fd660fb968bb22b7d61d4385a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5a:d5:c5:1b:cf:5f:c1:3c:e3:f0:c8:07:6c:
6f:89:f7:2e:35:77:52:f3:1e:2b:0a:a4:e1:27:c7:
e0:69:4b:86:7d:27:fe:c7:7f:fc:a1:a1:d4:48:b1:
ae:8b:e2:e0:6d:4d:11:c1:38:9d:ee:3c:50:7c:09:
8c:cb:a8:da:7a:fe:95:d5:c1:a3:20:87:1f:0b:02:
54:18:2c:2d:fd:93:a6:eb:6e:fe:dd:49:61:cb:b9:
25:36:a3:d1:81:9d:15:2c:d7:36:bc:f9:96:21:ab:
a8:7b:1b:a1:49:11:50:d3:1e:a5:7f:11:29:7a:dd:
f0:3b:76:18:ec:a2:8d:db:42:69:00:c3:55:8b:28:
0a:a7:f4:8a:6b:f5:4d:77:60:66:42:85:9b:72:b9:
2c:1c:8f:35:c2:4a:6d:05:a4:28:9f:f3:5b:6e:4b:
22:8e:40:a4:e4:19:0e:85:99:0f:27:9a:93:0c:78:
a6:eb:cb:d6:bb:96:db:4b:77:fc:dd:83:55:54:76:
85:2b:4c:6f:56:e7:11:32:1e:e2:1a:89:09:a2:dc:
e4:f6:1d:4d:3e:cb:63:19:6b:c9:b5:0c:09:79:08:
18:08:da:8e:a3:1c:a6:59:a4:94:27:06:fe:c6:7d:
f9:2b:6d:84:36:48:2d:d7:27:0c:38:2d:a6:a6:a7:
b2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EB:A4:76:9B:32:E9:FD:66:0F:B9:68:BB:22:B7:D6:1D:43:85:A7
X509v3 Authority Key Identifier:
keyid:0C:DC:07:FD:A6:F4:D5:5B:7C:81:82:C9:29:A3:C4:AC:3C:0A:82:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNwH_ab01Vt8gYLJKaPErDwKgv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/deukdpsy6f1mD7louyK31h1Dhac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/ff1078-d196-46a5-a741-ed31e43f1e08/1/DNwH_ab01Vt8gYLJKaPErDwKgv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.64.0/21
185.127.220.0/22
IPv6:
2a05:9dc0::/48
2a05:9dc0:400::/48
2a05:9dc0:410::/48
2a05:9dc0:420::/48
2a05:9dc0:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
3f:05:3f:38:2c:fd:20:17:8f:30:3a:7d:b1:b1:9e:ba:4e:44:
51:21:09:7f:a7:5d:90:de:b7:45:52:5d:c8:88:68:80:11:a4:
52:17:58:8e:b0:c4:be:d0:09:d1:4c:3d:c2:a2:31:cd:30:6f:
36:44:52:27:09:05:5a:5c:46:24:b2:43:5e:1a:f5:02:23:39:
3e:2a:ab:c0:c8:e5:ec:d9:95:e8:77:e6:06:a6:9b:8b:04:00:
b3:87:6d:e0:b4:26:e7:fe:26:10:37:b3:e3:72:c4:4b:14:5a:
b8:ec:f7:cf:11:8f:ef:ce:ab:28:a2:23:a6:e6:2b:0d:1e:6f:
f9:1b:22:8d:35:29:36:49:9b:b6:c3:f9:80:73:9e:b2:99:93:
f5:09:34:82:be:4d:49:29:db:bd:11:f7:dd:5f:08:fd:ab:75:
e2:ba:d7:e9:75:f6:b7:37:08:9d:22:a2:bc:2c:4f:6d:1a:eb:
40:0a:28:72:d9:b0:0f:b4:c6:e0:2f:ef:d1:34:9b:0d:99:30:
56:b8:ad:33:b8:0e:09:45:09:75:42:1b:9e:48:34:ef:82:1a:
2f:90:db:b3:6e:30:6f:fd:13:eb:37:c6:23:a9:5a:4a:b4:04:
72:4f:d5:35:df:d3:a4:7b:cc:95:10:03:7b:fd:81:11:96:d5:
9d:a7:b1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 04:49:54 2024 by rpki-client on console-fra.rpki-client.org