Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/L1kvufPtQU2EkT32H3Xr51TtdJs.roa
File: L1kvufPtQU2EkT32H3Xr51TtdJs.roa (raw, json)
Hash identifier: Nfjezk8tYZQHLviZOvfqZWIrM1P0J83wHX1E7wUltYY=
Subject key identifier: 2F:59:2F:B9:F3:ED:41:4D:84:91:3D:F6:1F:75:EB:E7:54:ED:74:9B
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: 018FEC75B40C05890D0288CFDEE92C6C9D83
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/L1kvufPtQU2EkT32H3Xr51TtdJs.roa
Signing time: Thu 06 Jun 2024 07:31:27 +0000
ROA not before: Thu 06 Jun 2024 07:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 86.104.215.0/24 maxlen: 24
89.32.200.0/24 maxlen: 24
89.32.204.0/24 maxlen: 24
89.33.83.0/24 maxlen: 24
103.47.52.0/22 maxlen: 22
162.218.158.0/24 maxlen: 24
188.215.5.0/24 maxlen: 24
194.26.149.0/24 maxlen: 24
212.102.116.0/24 maxlen: 24
2a07:4a80::/29 maxlen: 29
2a0a:eb00::/29 maxlen: 29
2a0a:eb00::/30 maxlen: 30
2a0f:c840::/29 maxlen: 29
2a11:3bc0::/29 maxlen: 29
2a11:3bc0::/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:75:b4:0c:05:89:0d:02:88:cf:de:e9:2c:6c:9d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: Jun 6 07:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f592fb9f3ed414d84913df61f75ebe754ed749b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:ac:ac:3d:41:cd:ac:0a:66:8a:46:02:ad:
cf:6a:22:84:1d:d9:19:2c:53:8e:1d:af:30:0a:77:
8c:39:db:08:05:63:5a:d3:b4:da:48:95:06:33:f0:
7e:28:62:64:e1:e7:d3:b5:b4:d0:96:dc:79:3f:b2:
d0:48:d1:25:16:0c:11:34:e6:7c:95:06:5b:01:fd:
93:a7:8b:94:59:28:9a:c0:2c:9a:ce:1e:1a:dc:82:
8c:60:c5:5f:43:24:d5:2a:66:e3:ab:71:8e:0f:71:
40:89:f8:bd:d5:e2:cb:7d:8d:cb:af:c6:df:89:15:
46:26:19:1b:66:25:7d:9a:79:35:6c:b6:8c:80:fa:
93:29:2a:8e:4b:2a:ef:4e:5e:5f:07:f9:45:3b:16:
32:c7:00:ac:77:af:38:49:72:96:40:43:f2:08:a4:
0c:e2:f6:8f:ec:de:ae:21:51:9d:6a:2e:6f:76:a9:
dc:04:a3:73:48:4d:da:8f:8d:02:d3:3c:bd:d6:47:
ea:93:9d:a5:fb:0e:62:ec:5a:68:ee:7b:b1:68:e7:
17:1f:f9:32:91:63:1c:b3:35:0c:c0:56:8a:e3:9e:
fd:64:ca:7c:4e:f4:71:4c:30:90:67:71:02:b0:23:
ff:71:6c:69:25:ee:b2:c1:54:6d:30:c8:4d:20:9c:
2e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:59:2F:B9:F3:ED:41:4D:84:91:3D:F6:1F:75:EB:E7:54:ED:74:9B
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/L1kvufPtQU2EkT32H3Xr51TtdJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.215.0/24
89.32.200.0/24
89.32.204.0/24
89.33.83.0/24
103.47.52.0/22
162.218.158.0/24
188.215.5.0/24
194.26.149.0/24
212.102.116.0/24
IPv6:
2a07:4a80::/29
2a0a:eb00::/29
2a0f:c840::/29
2a11:3bc0::/29
Signature Algorithm: sha256WithRSAEncryption
66:66:c8:61:1e:8f:7b:b5:35:97:b8:76:71:13:da:10:61:94:
6d:fe:0c:af:5f:79:1f:15:31:5b:4f:55:d8:5f:7c:ed:08:77:
92:cd:a1:c8:c7:d8:4f:b2:3b:de:17:48:9c:85:fa:e7:54:9c:
4a:77:e4:16:4d:96:e6:0b:34:2d:e3:9b:c4:9f:e0:e5:dc:c2:
a9:19:ae:3f:5b:80:7f:63:04:4f:24:9d:64:74:98:0c:5d:66:
c6:d1:fe:32:0a:2e:e9:ad:40:9a:49:12:e4:de:3d:c2:a8:fe:
6c:93:43:ab:cf:83:4b:7d:95:99:05:d2:26:ff:c7:76:9a:06:
78:4e:49:8a:60:dc:8b:88:bb:9b:b9:87:af:3e:35:2b:15:f6:
fc:64:83:ea:32:0f:ea:e0:fc:57:b2:28:0f:82:22:2a:b3:35:
86:69:94:08:21:87:ac:a1:7f:88:d5:7a:84:67:7a:5d:89:de:
f6:41:07:85:b7:4d:16:c5:7d:d6:5b:7f:e3:b0:55:da:84:b5:
a4:ad:2f:6d:71:24:04:1c:b9:ba:d6:f7:74:26:28:3a:aa:bc:
4e:5b:ba:b2:e4:b4:66:67:62:cc:28:88:da:91:84:49:7d:32:
b5:20:4d:e9:b2:c9:af:26:ab:9b:45:90:8b:69:1d:17:90:38:
84:ad:5d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:36:48 2024 by rpki-client on console-fra.rpki-client.org