Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/dMZjIJZoUmrMNPGBBUrcXn7nJEA.roa
File: dMZjIJZoUmrMNPGBBUrcXn7nJEA.roa (raw, json)
Hash identifier: Lu1E0qSEZKaeh/TE8iYc13AZt915axFDE9iXfLIAMlM=
Subject key identifier: 74:C6:63:20:96:68:52:6A:CC:34:F1:81:05:4A:DC:5E:7E:E7:24:40
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 0194D636DA0012A0D32F0ECEBBF5DC0E99EB
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/dMZjIJZoUmrMNPGBBUrcXn7nJEA.roa
Signing time: Wed 05 Feb 2025 13:05:06 +0000
ROA not before: Wed 05 Feb 2025 13:05:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48467
IP address blocks: 94.228.160.0/24 maxlen: 24
94.228.167.0/24 maxlen: 24
94.228.171.0/24 maxlen: 24
94.228.172.0/22 maxlen: 22
94.228.172.0/24 maxlen: 24
178.236.240.0/23 maxlen: 23
178.236.242.0/24 maxlen: 24
178.236.245.0/24 maxlen: 24
178.236.248.0/22 maxlen: 22
178.236.255.0/24 maxlen: 24
185.46.44.0/22 maxlen: 22
185.46.44.0/23 maxlen: 23
185.46.44.0/24 maxlen: 24
185.46.45.0/24 maxlen: 24
185.46.46.0/23 maxlen: 23
185.46.46.0/24 maxlen: 24
185.46.47.0/24 maxlen: 24
2a02:2070::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d6:36:da:00:12:a0:d3:2f:0e:ce:bb:f5:dc:0e:99:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Feb 5 13:05:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74c663209668526acc34f181054adc5e7ee72440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:12:d4:5f:c2:7c:fe:03:6e:08:8d:69:27:40:
8f:08:46:40:7c:1c:3a:75:0e:54:5a:a5:77:c9:8e:
1f:bb:7f:f7:3f:f8:b3:3d:23:cc:48:65:94:91:65:
4c:f1:2a:c9:8d:f0:30:23:d7:c0:95:e3:90:92:cd:
38:72:12:7c:15:f4:8c:80:3a:a5:84:9f:fb:50:22:
e6:96:83:dd:9f:03:04:58:98:06:59:be:69:0b:fa:
4e:4c:7e:8e:88:58:b8:c2:27:b3:fb:1f:fd:b9:ab:
16:ac:f0:a1:42:83:83:2b:62:0b:66:90:61:d2:46:
41:0f:1f:25:e3:05:0b:46:89:6b:e4:fa:07:10:16:
fd:b6:df:8f:cf:c0:66:b7:ff:3a:d6:8c:e9:03:96:
40:82:30:01:9a:8d:b4:d8:cd:53:a1:f4:c3:7f:8c:
1c:68:04:19:f9:4b:c7:d4:95:85:fa:37:7f:61:0c:
76:0f:7f:0d:70:ca:09:f4:4e:8f:6c:8d:57:b2:1a:
21:8f:0e:21:d3:f1:65:18:3f:41:38:c2:59:d1:7a:
74:80:31:1e:4e:94:67:5b:39:e5:fd:99:b6:cf:d4:
a4:73:da:2a:7c:b6:42:50:b3:a0:ae:c5:d3:03:0d:
0f:13:88:59:d6:e0:22:8e:f9:8e:d5:53:c0:31:e6:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C6:63:20:96:68:52:6A:CC:34:F1:81:05:4A:DC:5E:7E:E7:24:40
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/dMZjIJZoUmrMNPGBBUrcXn7nJEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.228.160.0/24
94.228.167.0/24
94.228.171.0-94.228.175.255
178.236.240.0-178.236.242.255
178.236.245.0/24
178.236.248.0/22
178.236.255.0/24
185.46.44.0/22
IPv6:
2a02:2070::/32
Signature Algorithm: sha256WithRSAEncryption
a5:28:e2:0b:40:43:af:1a:85:22:7a:ce:b2:52:3c:f9:ee:61:
fa:53:7f:7c:16:72:34:7c:af:36:02:70:6b:91:62:65:2b:28:
88:21:a1:b7:9e:46:0d:d0:df:e2:d1:72:fb:2d:b7:c1:11:2b:
51:ff:e5:cc:f7:b2:30:86:ca:06:27:a9:7d:bb:89:d0:06:51:
56:d7:a9:fd:4f:52:16:d9:ad:46:0c:6d:9d:99:2f:a0:77:41:
9f:07:04:42:f3:4a:d7:07:a0:b9:00:8a:4e:bf:e3:3f:a8:73:
18:9d:c8:6e:77:2c:db:e3:27:74:20:49:8d:50:e0:16:96:44:
65:dd:b9:b3:07:f5:b7:0c:c4:ff:92:df:b8:71:86:f6:76:0f:
32:0a:9b:35:58:6c:3a:07:21:57:98:39:6b:2d:a0:2a:ea:bf:
52:e8:98:e3:59:92:8c:ea:67:9b:a7:50:89:4d:d8:e2:e3:9c:
b0:8e:57:3c:d4:61:35:3b:30:0d:82:53:fe:3d:a8:17:30:5b:
d3:07:34:f8:9a:4b:ee:12:9c:68:93:6d:51:c4:b6:7f:2f:06:
68:c3:51:d9:9f:3b:ff:22:3f:21:bc:6e:eb:af:30:78:80:86:
65:70:84:7a:82:c4:c7:77:9b:76:b1:8f:5b:b2:cb:1c:02:a9:
ec:39:cf:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:36:22 2025 by rpki-client