Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/i1rrvDpEAUYTYS-Ej-8r5YgBrXc.roa
File: i1rrvDpEAUYTYS-Ej-8r5YgBrXc.roa (raw, json)
Hash identifier: DYOXMATeFWVj+6IX5mYakfth8FdtHFLf9aLaKPJH3ok=
Subject key identifier: 8B:5A:EB:BC:3A:44:01:46:13:61:2F:84:8F:EF:2B:E5:88:01:AD:77
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018CC7946BE874414D7DB688AC4AC6BA3871
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/i1rrvDpEAUYTYS-Ej-8r5YgBrXc.roa
Signing time: Tue 02 Jan 2024 00:30:42 +0000
ROA not before: Tue 02 Jan 2024 00:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 192.95.93.0/24 maxlen: 24
192.95.94.0/24 maxlen: 24
192.95.95.0/24 maxlen: 24
192.95.92.0/24 maxlen: 24
92.50.0.0/24 maxlen: 24
92.50.1.0/24 maxlen: 24
92.50.2.0/24 maxlen: 24
92.50.3.0/24 maxlen: 24
92.50.4.0/24 maxlen: 24
92.50.10.0/24 maxlen: 24
92.50.11.0/24 maxlen: 24
92.50.7.0/24 maxlen: 24
92.50.8.0/24 maxlen: 24
92.50.9.0/24 maxlen: 24
92.50.5.0/24 maxlen: 24
92.50.6.0/24 maxlen: 24
92.50.12.0/24 maxlen: 24
92.50.13.0/24 maxlen: 24
147.136.72.0/22 maxlen: 24
147.136.80.0/22 maxlen: 24
147.136.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:6b:e8:74:41:4d:7d:b6:88:ac:4a:c6:ba:38:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 2 00:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b5aebbc3a44014613612f848fef2be58801ad77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:74:bc:b0:60:32:52:fc:04:7a:16:e0:30:
61:d9:0f:5f:72:e4:58:bb:72:79:42:fd:0d:3f:ac:
b1:67:b9:b4:84:cf:b2:96:37:38:fa:6a:bc:b2:77:
cf:e1:95:51:b1:22:eb:4e:8e:36:ff:18:4e:06:b5:
c1:db:ce:aa:69:6a:f1:1c:00:ae:ab:f6:03:bc:5d:
26:1d:fb:a6:7e:90:14:54:6e:d8:3e:10:b4:8e:d0:
90:09:e4:36:c0:c1:e8:58:5d:37:61:65:75:f3:3d:
43:2c:15:6b:a6:db:20:70:24:bf:4b:08:bf:4c:9d:
c2:6e:92:1a:07:85:92:bf:e0:5b:3b:47:bc:35:c0:
4d:4a:25:ee:d9:8d:a1:b7:56:46:6f:f8:b3:e7:5e:
a6:6e:8e:70:72:23:b2:26:df:3f:ab:10:b0:0e:6e:
24:82:e9:6b:d8:c6:73:65:35:29:b9:76:3c:88:68:
86:15:62:74:6a:d5:e7:ce:19:e9:1e:0b:c1:a4:0b:
e2:64:6d:0e:f4:76:ba:f2:c2:c9:80:4d:f4:7f:e4:
11:aa:93:a6:fc:57:2f:43:d8:d9:a2:93:d9:aa:26:
f4:ea:f4:6b:c0:5e:22:11:5d:ff:92:b7:26:89:04:
cc:c5:6c:05:e7:37:e3:6c:1e:bf:0a:72:6e:3d:14:
71:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5A:EB:BC:3A:44:01:46:13:61:2F:84:8F:EF:2B:E5:88:01:AD:77
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/i1rrvDpEAUYTYS-Ej-8r5YgBrXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.50.0.0-92.50.13.255
147.136.72.0/22
147.136.80.0/22
147.136.92.0/22
192.95.92.0/22
Signature Algorithm: sha256WithRSAEncryption
03:92:88:1d:7d:bb:f7:02:4d:25:8d:d4:26:c8:3f:e5:b4:b0:
33:dd:a9:58:94:dc:50:8a:7a:7e:4a:52:b5:02:51:65:d6:94:
9b:45:7e:22:f2:14:a8:4c:b8:c3:d1:3c:82:4f:13:36:f3:e2:
30:d2:9e:88:cf:ee:66:d7:f2:96:4f:c3:0b:e7:33:d6:06:41:
06:33:73:f4:4a:53:1c:d3:02:17:5f:1d:56:d2:a8:21:cc:8b:
b7:cd:a4:4e:c9:10:26:3f:3f:df:71:59:2e:60:cd:55:7e:c1:
89:6d:c3:92:66:a8:1b:0f:f8:7b:61:1a:7b:f7:d5:a3:ef:4a:
fd:79:b3:74:33:35:de:0f:30:cc:c9:58:59:f2:e7:53:e2:f7:
db:6a:d6:e5:e8:2d:f7:99:37:0f:28:bd:df:c6:52:0c:47:e8:
4c:de:29:13:f6:ee:8b:f9:7e:20:26:94:9a:f7:57:ef:1d:50:
bd:bb:af:a4:21:48:4b:04:86:2a:92:2d:6a:65:5c:f7:68:9a:
1b:11:70:43:6b:de:00:e2:f6:de:52:ba:c5:da:0d:b3:fc:06:
73:6f:f3:ea:df:77:96:82:02:47:0b:a6:38:e7:7f:5c:2a:f2:
c7:30:00:d7:96:32:b0:e4:69:fe:0b:89:b8:7b:e5:cb:ee:2b:
96:b8:39:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 13:52:42 2024 by rpki-client on console-fra.rpki-client.org