Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/n8ymH_6DYtXB8XPA1QJKeQ6RIQo.roa
File: n8ymH_6DYtXB8XPA1QJKeQ6RIQo.roa (raw, json)
Hash identifier: CJPF53iUZZQcnn976D7Tvi1cQx3GCdmkQsVf7s99w2o=
Subject key identifier: 9F:CC:A6:1F:FE:83:62:D5:C1:F1:73:C0:D5:02:4A:79:0E:91:21:0A
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 019224787CE92056A95E48A89C57DBBBC574
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/n8ymH_6DYtXB8XPA1QJKeQ6RIQo.roa
Signing time: Tue 24 Sep 2024 14:38:48 +0000
ROA not before: Tue 24 Sep 2024 14:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/32 maxlen: 48
2a12:bec1:2::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
2a12:bec4:1430::/44 maxlen: 44
2a12:bec4:1490::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:24:78:7c:e9:20:56:a9:5e:48:a8:9c:57:db:bb:c5:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 24 14:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fcca61ffe8362d5c1f173c0d5024a790e91210a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ae:f4:cb:bd:4f:47:6b:12:65:11:20:ec:25:
71:3b:91:28:d3:e7:bb:43:6e:23:66:0e:aa:1b:3c:
1c:6a:8e:1e:7d:30:b7:b2:e9:3a:d6:57:fc:5e:c9:
d4:71:4a:0c:c4:61:15:44:64:1f:40:81:91:98:5e:
fe:c1:35:74:28:1d:92:a0:84:a5:d8:14:22:c2:e8:
42:72:1c:c2:8a:b9:f6:fd:53:19:c6:d7:f6:0c:2f:
db:98:3d:70:00:e8:4d:bc:9b:53:48:d7:34:59:e3:
93:91:c2:45:42:e9:42:94:42:ac:63:2d:93:8a:42:
af:c3:b9:c5:24:96:2f:d6:8c:d4:2e:8a:41:4c:15:
e6:9e:24:11:c2:a4:14:c8:63:ac:0e:a6:15:71:24:
b5:53:d3:e3:c9:56:e5:80:e3:cd:95:7d:5a:47:7a:
bc:09:91:06:47:8f:35:f8:68:53:e5:4c:3f:63:d6:
61:b8:b7:9e:0a:c3:11:72:ad:13:ca:85:d9:c6:ea:
67:75:ee:b7:62:1d:14:74:11:4d:a0:de:b3:02:56:
ee:bb:ea:fa:f3:85:b3:4b:45:2e:e1:ad:53:64:1d:
a1:16:bc:5b:89:8c:e7:56:8d:7c:81:cd:54:49:a9:
1f:bb:ec:df:21:b6:89:25:42:6a:f5:8a:c4:a7:d9:
1a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CC:A6:1F:FE:83:62:D5:C1:F1:73:C0:D5:02:4A:79:0E:91:21:0A
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/n8ymH_6DYtXB8XPA1QJKeQ6RIQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::-2a12:bec2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
2a12:bec4:1430::/44
2a12:bec4:1490::/44
Signature Algorithm: sha256WithRSAEncryption
02:10:18:3b:ba:0d:07:90:f3:04:41:25:b6:f6:c1:87:ba:f8:
6f:93:10:53:cc:70:42:4b:1d:81:98:e6:27:72:0a:45:31:ca:
65:2d:15:d7:0a:36:74:ba:c8:1b:b8:67:3c:54:41:3a:1f:41:
28:c8:8d:44:95:b5:95:6d:2b:5b:4c:31:b9:da:b6:bc:67:c3:
f2:9a:14:56:ab:90:a6:ac:b2:fd:ac:c3:bd:1d:af:c5:6b:9b:
39:fd:12:a2:9c:06:57:2d:5e:b1:a9:9d:1d:b3:7d:05:dd:ca:
fd:a1:76:03:1f:78:94:16:75:9c:e7:e7:bb:00:a6:ec:82:1f:
10:12:71:0a:62:aa:9f:8b:5c:67:45:0a:ad:00:23:53:b4:f3:
0b:62:4a:72:1f:21:b8:f0:e3:72:ea:4a:25:6c:e4:b8:4a:1e:
78:13:90:ba:60:09:fb:70:6e:fe:eb:94:4c:9e:7b:12:bd:24:
f7:4d:e5:f0:a1:95:82:6a:32:01:b9:11:9c:8c:55:0b:fb:07:
78:8c:08:11:bb:98:b3:cd:75:33:55:dc:b9:43:8d:1d:e6:49:
f4:cb:5a:31:6f:00:36:e3:98:58:5f:df:40:0e:5a:a9:af:60:
7f:79:62:0b:52:83:c4:36:02:ae:9c:5c:50:2f:7e:6e:b0:62:
d9:a7:c4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:52:31 2024 by rpki-client on console-fra.rpki-client.org