Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/JsZivSE9nVCEvbENQyrf-RrzpRc.roa
File: JsZivSE9nVCEvbENQyrf-RrzpRc.roa (raw, json)
Hash identifier: 4z2y0MJh+eORb70XllCklCj0AEsWDkm/mZU3WdTxto4=
Subject key identifier: 26:C6:62:BD:21:3D:9D:50:84:BD:B1:0D:43:2A:DF:F9:1A:F3:A5:17
Certificate issuer: /CN=02339402c42b3f84995c4d58ef670e8d16c2afe2
Certificate serial: 019252F2AD72D0F138CC5FA2C86658727526
Authority key identifier: 02:33:94:02:C4:2B:3F:84:99:5C:4D:58:EF:67:0E:8D:16:C2:AF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AjOUAsQrP4SZXE1Y72cOjRbCr-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/JsZivSE9nVCEvbENQyrf-RrzpRc.roa
Signing time: Thu 03 Oct 2024 15:14:48 +0000
ROA not before: Thu 03 Oct 2024 15:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2611
IP address blocks: 185.122.248.0/22 maxlen: 22
193.190.0.0/15 maxlen: 24
193.191.192.0/19 maxlen: 19
193.191.240.0/20 maxlen: 20
2001:6a8::/29 maxlen: 48
2001:6a8:8a00::/48 maxlen: 48
2001:6a8:9200::/48 maxlen: 48
2001:6a8:a001::/48 maxlen: 48
2001:6a8:be00::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/AjOUAsQrP4SZXE1Y72cOjRbCr-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/AjOUAsQrP4SZXE1Y72cOjRbCr-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/AjOUAsQrP4SZXE1Y72cOjRbCr-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:f2:ad:72:d0:f1:38:cc:5f:a2:c8:66:58:72:75:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02339402c42b3f84995c4d58ef670e8d16c2afe2
Validity
Not Before: Oct 3 15:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26c662bd213d9d5084bdb10d432adff91af3a517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:23:5e:3b:8a:39:ae:6e:de:91:e5:49:df:
03:a8:ed:fb:c6:d3:f0:ea:15:3c:21:b8:17:f5:18:
03:d9:dd:e1:f7:d5:27:2a:36:d2:e6:63:f9:d6:65:
1a:04:5d:8f:ab:c0:74:6f:6a:07:50:a8:66:f9:98:
9d:1a:03:33:03:18:45:d8:9d:1c:1a:5a:79:ec:89:
43:1a:00:c5:c8:ff:5e:d1:68:1c:23:7c:9b:65:84:
36:46:4e:4c:67:b8:18:85:7b:e6:9c:fa:ce:13:76:
6d:b8:fe:66:8c:e8:f6:81:da:1e:97:38:ca:67:d5:
92:dd:02:e5:ed:2f:ae:f0:3f:8a:cd:59:8e:d9:af:
63:df:0b:03:fc:0c:d6:c3:32:d4:18:04:43:aa:b9:
40:40:e2:ff:b1:09:55:ff:5d:b3:74:8e:f4:62:9e:
9f:54:4e:e9:36:a0:44:4f:13:2c:0f:ac:fa:1a:6e:
3b:27:b3:ec:e6:15:69:20:40:fe:48:72:59:c8:15:
c6:e7:94:7a:01:99:e1:0d:f0:c1:fd:cb:cc:0d:66:
90:a0:e5:c2:d1:0f:d0:eb:3e:93:0f:ae:18:cb:1e:
80:b2:1f:d0:2e:3b:dc:94:c6:96:fb:76:3c:61:87:
fa:54:82:fc:e5:3d:68:fb:f9:18:10:d0:7d:1a:16:
c1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C6:62:BD:21:3D:9D:50:84:BD:B1:0D:43:2A:DF:F9:1A:F3:A5:17
X509v3 Authority Key Identifier:
keyid:02:33:94:02:C4:2B:3F:84:99:5C:4D:58:EF:67:0E:8D:16:C2:AF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjOUAsQrP4SZXE1Y72cOjRbCr-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/JsZivSE9nVCEvbENQyrf-RrzpRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/eb877c-929e-41b6-b9cb-fc64bfc3d2f9/1/AjOUAsQrP4SZXE1Y72cOjRbCr-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.248.0/22
193.190.0.0/15
IPv6:
2001:6a8::/29
Signature Algorithm: sha256WithRSAEncryption
26:44:50:c4:ef:1c:55:3d:cf:f8:7d:aa:db:5e:c3:8f:0a:b8:
98:df:eb:8c:a5:08:eb:19:71:95:30:3e:6a:2f:11:11:b7:b9:
3f:48:20:87:f7:b8:47:28:c9:1c:55:ec:21:c3:ee:89:8a:0a:
3d:86:21:65:de:d0:30:bd:5e:58:96:f6:a6:68:1d:8d:81:3c:
e0:5e:2d:ba:b5:02:3f:25:b9:5b:3c:fc:c4:85:a6:8b:b2:6d:
21:7c:a6:14:07:ec:e0:65:05:6c:ad:92:a6:db:51:64:3b:fb:
e9:0b:73:17:83:3d:80:72:5c:ba:1e:ee:bd:0e:9d:58:b4:f0:
5a:22:2f:5b:bd:63:79:1f:15:97:03:78:1e:75:46:f7:ee:2a:
81:05:d3:40:81:dc:4a:a5:d5:a8:43:19:fd:ff:df:d1:87:52:
0d:d0:eb:ab:e0:78:7f:f0:ac:dc:84:a9:86:97:b2:9e:13:da:
c0:45:77:d6:bf:da:9d:8e:ea:dc:71:06:47:51:b9:d2:27:5a:
ad:5f:19:a5:2d:2e:c2:43:c4:e7:50:49:4b:04:a5:cc:45:c6:
00:d1:6e:67:79:50:65:b3:f4:be:be:ef:14:6b:18:57:78:39:
ad:72:3c:bc:06:61:2c:91:24:41:d8:44:d7:34:34:27:f3:8b:
12:ee:cd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 17:38:29 2024 by rpki-client on console-fra.rpki-client.org