Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/djptE8x8yamiFU_ltRR6R7rDUH8.roa
File: djptE8x8yamiFU_ltRR6R7rDUH8.roa (raw, json)
Hash identifier: zh/GbOtLHlv6QbsgN1xDECYhwlUqlFldtujTAapnZdY=
Subject key identifier: 76:3A:6D:13:CC:7C:C9:A9:A2:15:4F:E5:B5:14:7A:47:BA:C3:50:7F
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018FDA9E2354E506F4181F434ABBAA91AD6E
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/djptE8x8yamiFU_ltRR6R7rDUH8.roa
Signing time: Sun 02 Jun 2024 20:22:27 +0000
ROA not before: Sun 02 Jun 2024 20:22:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 92.50.0.0/19 maxlen: 19
92.50.32.0/19 maxlen: 19
147.136.68.0/22 maxlen: 24
147.136.76.0/22 maxlen: 24
147.136.84.0/22 maxlen: 24
168.199.169.0/24 maxlen: 24
185.101.252.0/23 maxlen: 23
185.101.254.0/23 maxlen: 23
185.171.252.0/23 maxlen: 23
185.171.254.0/23 maxlen: 23
185.226.204.0/23 maxlen: 23
185.226.206.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:da:9e:23:54:e5:06:f4:18:1f:43:4a:bb:aa:91:ad:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jun 2 20:22:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=763a6d13cc7cc9a9a2154fe5b5147a47bac3507f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9e:bc:6d:d3:dc:18:65:fe:81:73:8e:ba:18:
b3:a4:a4:1e:d5:30:1f:88:07:69:f0:b5:95:78:48:
59:c7:64:f4:74:ef:fd:42:02:39:f2:27:bc:c2:f9:
9f:4d:25:b3:d9:11:6c:29:4b:19:29:36:59:7f:82:
de:61:59:94:81:d5:51:c9:f4:1b:b6:b8:e0:00:af:
11:91:d8:98:d1:1d:2d:45:fa:0f:73:13:75:df:2c:
98:79:e6:d0:ad:99:ec:f7:f2:cd:13:35:4a:70:b7:
5c:2a:91:d1:cf:16:52:27:63:84:96:b4:8f:40:9a:
8f:8a:40:71:de:71:58:7e:aa:84:dd:41:6e:2d:5f:
a9:9e:e1:84:fe:ce:e9:ab:23:86:b2:68:95:7b:3a:
17:43:1c:b6:2e:a0:84:a9:f9:67:9d:10:55:79:f8:
e6:a5:f5:3b:e5:d5:a1:a3:1b:11:b0:82:16:a1:d2:
8d:5d:e8:f3:d3:c6:1a:a8:ab:9c:5d:9c:7c:c4:18:
e1:32:93:28:b4:2e:3e:48:e0:d7:bc:a4:73:61:57:
09:c5:51:8f:5e:b3:2f:a7:a2:d5:08:49:b0:4e:fd:
1e:c8:4d:60:32:1a:44:0e:43:60:d6:a6:fe:38:d7:
62:d9:10:b8:8c:d7:f2:32:6d:98:67:5f:9c:00:04:
d0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3A:6D:13:CC:7C:C9:A9:A2:15:4F:E5:B5:14:7A:47:BA:C3:50:7F
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/djptE8x8yamiFU_ltRR6R7rDUH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.50.0.0/18
147.136.68.0/22
147.136.76.0/22
147.136.84.0/22
168.199.169.0/24
185.101.252.0/22
185.171.252.0/22
185.226.204.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:e7:1e:c2:a3:72:29:9c:52:bc:6d:11:bb:20:6b:cf:36:d8:
79:2c:3a:1f:f3:ff:34:05:04:7e:4e:93:27:75:35:6e:9d:92:
dc:0a:27:0a:34:49:7f:f8:23:02:2e:76:26:de:39:70:0f:e5:
47:c1:bf:cc:a9:46:cb:33:83:f0:9f:b2:e1:43:da:8f:eb:97:
70:40:84:c2:6b:6e:bc:a3:59:29:c0:18:ae:25:46:c7:60:84:
a5:16:a9:41:b6:ea:33:2d:ad:1d:7a:41:86:7d:c4:bf:d8:13:
c0:98:5d:ca:3c:09:c0:47:b2:24:d5:30:87:b2:31:41:a3:c2:
27:c9:4d:7f:2e:d6:20:90:d4:4e:fc:59:5e:70:bf:ec:a7:d4:
0b:de:35:b4:a8:e9:d7:63:1c:1a:1c:93:d5:0e:c0:4c:45:6f:
80:9d:ee:1b:df:46:a1:ba:61:6a:f0:85:8a:8d:aa:74:a3:84:
b7:f4:5c:2c:b2:e0:75:16:b5:0e:e3:e8:1b:e9:2b:f3:87:8a:
f5:ca:6d:ae:dd:a0:8c:2c:76:60:98:20:15:d4:d6:c9:82:dd:
74:b3:cd:1b:91:44:51:73:81:e7:e3:5c:57:b1:60:bc:ba:d9:
ca:9a:8b:7b:5e:47:39:17:e3:07:ce:c5:25:bd:78:54:05:b7:
e2:d8:25:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:17:12 2024 by rpki-client on console-ams.rpki-client.org