Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/MpUh9G-o95wrOcDqC94wpEk41_c.roa
File: MpUh9G-o95wrOcDqC94wpEk41_c.roa (raw, json)
Hash identifier: 0DdOxeBOpwjIZ0Kw2at0TCdXY656Tyz5OZmnQ3ymBF0=
Subject key identifier: 32:95:21:F4:6F:A8:F7:9C:2B:39:C0:EA:0B:DE:30:A4:49:38:D7:F7
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018FE23E0A22F599BBB24D805A5DCB54944E
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/MpUh9G-o95wrOcDqC94wpEk41_c.roa
Signing time: Tue 04 Jun 2024 07:54:27 +0000
ROA not before: Tue 04 Jun 2024 07:54:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62261
IP address blocks: 194.85.28.0/23 maxlen: 23
194.85.28.0/24 maxlen: 24
194.85.29.0/24 maxlen: 24
212.192.230.0/23 maxlen: 23
212.192.230.0/24 maxlen: 24
212.192.231.0/24 maxlen: 24
212.192.232.0/23 maxlen: 23
212.192.232.0/24 maxlen: 24
212.192.233.0/24 maxlen: 24
212.192.234.0/23 maxlen: 23
212.192.234.0/24 maxlen: 24
212.192.235.0/24 maxlen: 24
212.192.236.0/23 maxlen: 23
212.192.236.0/24 maxlen: 24
212.192.237.0/24 maxlen: 24
2a09:bd00:10::/44 maxlen: 44
2a09:bd00:10::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft
rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 01:03:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e2:3e:0a:22:f5:99:bb:b2:4d:80:5a:5d:cb:54:94:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jun 4 07:54:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=329521f46fa8f79c2b39c0ea0bde30a44938d7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b3:82:67:84:11:e1:a8:1b:64:59:27:2b:e9:
d0:64:7c:78:c7:de:b7:6e:a0:2a:95:83:65:8f:f7:
99:44:d1:c0:b9:09:f2:9b:ce:32:22:84:05:46:c1:
40:23:94:16:2e:3f:30:5a:ce:d2:88:e6:9a:01:f7:
bb:63:b1:d6:c0:a9:33:4d:8a:5d:67:c7:9a:73:75:
e5:08:da:98:c6:eb:27:fd:5b:98:dc:43:c7:c7:9e:
af:1c:36:16:89:39:45:e8:74:0b:c4:67:23:d8:6d:
3a:51:be:fc:7c:c8:72:81:e6:e9:dc:32:c6:ae:bc:
d3:68:58:f1:df:a4:ea:da:0d:44:c2:8b:3c:ee:5b:
55:c2:58:21:02:b3:b1:29:e1:0c:c0:61:99:66:ce:
dd:5a:e6:eb:6a:f4:fb:2c:35:0e:e1:4c:98:aa:7d:
e2:19:09:d9:71:39:92:9a:6f:d1:2b:c3:c8:0b:f0:
75:f9:37:2e:6f:a4:dd:1a:1e:b1:1e:07:41:9e:42:
27:a7:d8:95:fc:98:54:4f:fd:58:40:1a:92:ee:cd:
47:95:6b:b4:a9:fd:73:b7:cd:36:6e:bc:00:ea:36:
3e:49:f5:d2:ea:cb:da:7f:b6:1d:68:e4:ae:d7:89:
c1:56:d5:99:10:94:04:57:26:02:51:ba:be:8c:bf:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:95:21:F4:6F:A8:F7:9C:2B:39:C0:EA:0B:DE:30:A4:49:38:D7:F7
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/MpUh9G-o95wrOcDqC94wpEk41_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.85.28.0/23
212.192.230.0-212.192.237.255
IPv6:
2a09:bd00:10::/44
Signature Algorithm: sha256WithRSAEncryption
0c:8a:4e:11:c5:34:49:cd:d7:ea:8d:09:91:ed:11:4c:bf:48:
94:b0:20:85:6d:e3:e0:02:18:0c:8e:16:93:67:8d:a5:8d:f2:
7e:d5:72:2d:78:d9:1b:72:d6:b2:b8:5a:0e:fe:67:26:92:67:
50:d3:38:83:df:a4:16:75:54:64:78:d4:2c:30:4e:58:6b:94:
8e:27:8a:2d:27:bc:e3:ca:b6:ca:fc:c6:9c:7f:2c:5e:df:89:
c2:05:4e:d5:d6:36:11:c2:c3:e1:17:8f:5a:10:09:2c:73:90:
5a:3e:8c:e2:7e:92:0a:c6:5c:6e:ab:3a:6d:22:3b:13:a2:1f:
98:88:ff:7c:b4:09:dc:71:ff:66:c0:3c:52:d8:2e:16:35:6a:
f9:0b:9a:af:be:da:9a:86:bd:82:9a:3e:f5:31:65:5a:3f:6c:
ab:e5:c5:28:4e:31:41:52:65:9d:40:22:a4:4c:c1:c1:c0:19:
d7:8b:86:af:80:86:15:6f:c4:69:8d:8e:c8:17:09:57:5e:4c:
03:dd:82:22:f2:11:34:e3:4e:66:14:ed:16:9a:e5:87:99:43:
13:1a:3f:86:6b:b3:ef:a6:73:72:ea:6c:41:8a:43:8a:5b:18:
21:f5:b6:b3:88:8e:6f:fd:03:85:d2:e4:98:41:86:fb:63:a5:
30:0e:74:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 10:35:19 2024 by rpki-client on console-fra.rpki-client.org