Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/1V5Inb-wtrSe6bwAP0_j92p5mQA.roa
File: 1V5Inb-wtrSe6bwAP0_j92p5mQA.roa (raw, json)
Hash identifier: nmMKCvbrQpSpeuR+hIOTF5UE+TI0Z8QkiNsg0oF09Vk=
Subject key identifier: D5:5E:48:9D:BF:B0:B6:B4:9E:E9:BC:00:3F:4F:E3:F7:6A:79:99:00
Certificate issuer: /CN=7d014c9a158218eed684ae2fc06d58e5cf671478
Certificate serial: 018CC5DCA701012AEBC1E337A793F65BDDDA
Authority key identifier: 7D:01:4C:9A:15:82:18:EE:D6:84:AE:2F:C0:6D:58:E5:CF:67:14:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/1V5Inb-wtrSe6bwAP0_j92p5mQA.roa
Signing time: Mon 01 Jan 2024 16:30:21 +0000
ROA not before: Mon 01 Jan 2024 16:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205424
IP address blocks: 185.218.246.0/24 maxlen: 24
185.218.245.0/24 maxlen: 24
185.218.244.0/24 maxlen: 24
185.218.247.0/24 maxlen: 24
185.80.23.0/24 maxlen: 24
185.80.22.0/24 maxlen: 24
185.80.21.0/24 maxlen: 24
185.80.20.0/24 maxlen: 24
185.51.39.0/24 maxlen: 24
185.82.253.0/24 maxlen: 24
185.82.252.0/24 maxlen: 24
185.82.255.0/24 maxlen: 24
185.82.254.0/24 maxlen: 24
185.51.38.0/24 maxlen: 24
185.51.37.0/24 maxlen: 24
185.51.36.0/24 maxlen: 24
2a0b:dac0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:a7:01:01:2a:eb:c1:e3:37:a7:93:f6:5b:dd:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d014c9a158218eed684ae2fc06d58e5cf671478
Validity
Not Before: Jan 1 16:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d55e489dbfb0b6b49ee9bc003f4fe3f76a799900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:94:03:3a:b5:29:6b:86:0b:d3:08:dd:b8:a2:
ed:11:ee:bc:3f:cf:dd:e0:7f:07:aa:c2:30:ca:95:
bd:4e:1e:92:9a:b3:ab:10:57:18:73:37:1e:5c:da:
89:c5:d4:b3:29:8f:81:2b:2c:39:97:af:65:5d:4b:
14:2f:3a:e6:d4:56:3f:3b:f6:01:4c:95:64:32:bd:
e8:6b:c6:59:06:fe:dc:e0:bf:7c:32:f6:bc:2d:10:
e4:d2:39:07:06:c1:c2:ec:8d:74:9d:16:d8:7c:d5:
2f:a4:57:86:bd:a7:d0:c0:c7:fe:96:cb:d3:48:07:
7e:8c:aa:a9:c7:4b:83:97:ed:ce:40:33:e6:a7:98:
0d:e9:44:aa:e3:f0:21:1a:12:13:76:66:ca:15:8d:
f2:9d:76:c3:aa:66:ea:2c:29:c9:51:fa:a9:74:83:
07:81:5a:79:8c:ee:02:67:5a:2f:e4:2f:fd:87:38:
8a:0a:bb:66:e3:c2:f2:04:a4:78:d1:86:63:b5:cb:
1d:5d:ce:d7:8d:82:b3:56:46:f9:ea:4a:b4:ea:48:
8e:e8:74:3e:ba:c6:83:7e:49:22:e1:0d:13:f2:9e:
5e:da:4a:c8:47:fd:84:c3:f0:27:4b:3e:a1:5b:20:
e0:f0:85:34:da:f6:ac:4a:72:f5:97:0f:aa:64:69:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:5E:48:9D:BF:B0:B6:B4:9E:E9:BC:00:3F:4F:E3:F7:6A:79:99:00
X509v3 Authority Key Identifier:
keyid:7D:01:4C:9A:15:82:18:EE:D6:84:AE:2F:C0:6D:58:E5:CF:67:14:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/1V5Inb-wtrSe6bwAP0_j92p5mQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.36.0/22
185.80.20.0/22
185.82.252.0/22
185.218.244.0/22
IPv6:
2a0b:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
09:6c:6b:a0:9b:f8:ff:1c:ca:05:07:63:cf:78:3c:ec:0e:6e:
93:99:f5:e3:3a:59:32:33:a5:a1:18:47:d1:07:24:68:13:88:
51:03:12:6b:16:20:bb:a0:87:c6:d6:b0:d2:2e:15:e0:ca:e2:
7d:36:bf:00:5c:fc:b0:68:36:9b:07:e6:66:44:60:db:93:9d:
bb:67:41:da:ae:9d:e8:ca:df:65:95:cc:15:ce:be:88:54:1d:
04:6b:81:0e:00:9a:aa:00:2c:0d:9c:c6:03:f8:93:27:85:a2:
03:68:e5:e3:91:a4:b7:7d:a6:2f:14:3d:32:8a:78:f1:f9:83:
35:61:63:96:cf:5f:1b:c4:23:d7:21:8d:97:03:64:06:d6:8f:
9c:27:b1:6e:2a:52:56:be:e4:52:38:e3:ad:7f:fc:11:10:e4:
3c:92:94:fb:cb:f0:16:ec:02:2b:c0:8b:22:de:58:24:a4:95:
91:56:cf:89:29:ff:4c:fd:20:0e:b5:12:63:ef:d7:b2:20:c9:
59:2b:5a:5a:f2:c4:61:e7:f5:de:74:8c:5e:8e:94:3e:b9:d5:
4a:49:02:f9:75:04:29:88:d3:9b:55:2e:f0:36:3a:88:69:39:
e4:46:79:82:9c:18:16:08:f7:41:0d:f9:62:a9:07:ee:75:f3:
b1:53:c5:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:43:49 2024 by rpki-client on console-ams.rpki-client.org