Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/30TYsF23neSkbElOcm4kxr_Nyn4.roa
File: 30TYsF23neSkbElOcm4kxr_Nyn4.roa (raw, json)
Hash identifier: 2C+uDSDqIPWK4f9GaQldlZ/3kRYT6rnjEqxUHI564fw=
Subject key identifier: DF:44:D8:B0:5D:B7:9D:E4:A4:6C:49:4E:72:6E:24:C6:BF:CD:CA:7E
Certificate issuer: /CN=c8593923257b20eda4aa4bc3c4a0c30d8490ea56
Certificate serial: 018CC5DC81E6A8E1F7BEFB92063B4F4B5B0C
Authority key identifier: C8:59:39:23:25:7B:20:ED:A4:AA:4B:C3:C4:A0:C3:0D:84:90:EA:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/30TYsF23neSkbElOcm4kxr_Nyn4.roa
Signing time: Mon 01 Jan 2024 16:30:11 +0000
ROA not before: Mon 01 Jan 2024 16:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43809
IP address blocks: 185.215.8.0/22 maxlen: 24
185.8.80.0/22 maxlen: 24
185.184.92.0/22 maxlen: 24
95.128.112.0/21 maxlen: 24
195.88.130.0/23 maxlen: 23
83.171.228.0/22 maxlen: 22
2a0a:9c40::/29 maxlen: 29
2a02:d900::/29 maxlen: 29
2a0f:10c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:81:e6:a8:e1:f7:be:fb:92:06:3b:4f:4b:5b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8593923257b20eda4aa4bc3c4a0c30d8490ea56
Validity
Not Before: Jan 1 16:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df44d8b05db79de4a46c494e726e24c6bfcdca7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a1:30:0e:3d:a3:5a:56:4c:2f:1c:d3:b5:be:
ee:9f:fa:91:59:8f:4d:bc:e1:f8:75:c8:85:73:f4:
81:25:4c:ef:59:66:cf:5f:0d:24:89:87:4c:6e:8a:
96:99:a5:fc:6b:86:a6:74:75:37:2e:31:b5:da:9b:
f8:cb:73:24:b6:08:4f:31:eb:6f:2e:73:ef:55:18:
8a:40:50:48:01:c0:e7:71:84:7b:14:1c:42:3a:d9:
af:50:5a:c4:7f:52:1b:51:1a:63:ba:56:90:51:97:
33:f7:0c:a3:a4:c9:b9:73:a6:75:16:5d:f7:75:0e:
c0:64:24:ea:69:2a:a8:6b:d6:da:32:a9:16:fd:ff:
99:6f:27:68:5a:e7:0f:32:fe:14:97:20:bc:c1:83:
dd:c6:14:0f:66:cc:46:e4:d6:9e:21:8f:4b:a6:b3:
9b:ee:8b:62:f6:ca:2f:93:b4:ff:8e:62:04:e6:14:
1d:6d:cc:89:a9:b4:12:ec:97:7b:96:7d:5a:71:ff:
11:78:21:83:40:d0:c8:9a:85:fb:4e:e1:fd:a1:6e:
cc:25:97:8e:56:f4:81:37:cb:68:2c:87:43:a6:ed:
a7:06:c9:a5:9d:99:7e:44:3d:9b:75:3c:2e:42:d4:
0b:6d:ec:05:c0:f4:60:c7:ca:a2:6b:49:ca:cf:39:
16:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:44:D8:B0:5D:B7:9D:E4:A4:6C:49:4E:72:6E:24:C6:BF:CD:CA:7E
X509v3 Authority Key Identifier:
keyid:C8:59:39:23:25:7B:20:ED:A4:AA:4B:C3:C4:A0:C3:0D:84:90:EA:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/30TYsF23neSkbElOcm4kxr_Nyn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a04956-7462-49eb-a9db-dc6be8ce5fb2/1/yFk5IyV7IO2kqkvDxKDDDYSQ6lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.228.0/22
95.128.112.0/21
185.8.80.0/22
185.184.92.0/22
185.215.8.0/22
195.88.130.0/23
IPv6:
2a02:d900::/29
2a0a:9c40::/29
2a0f:10c0::/29
Signature Algorithm: sha256WithRSAEncryption
59:61:ed:9e:06:c6:3c:d2:3e:24:dd:2f:9c:85:a4:2a:f5:9b:
a1:36:49:ba:c4:0c:2c:d3:5b:df:1b:63:c9:0c:46:bb:80:69:
be:d8:d9:6b:d5:dc:6e:68:6f:fe:ab:b8:70:16:99:e8:da:94:
7d:f7:eb:37:4f:d1:aa:bd:ba:75:92:25:2d:26:2a:a1:2c:2e:
d9:98:6e:12:b2:72:80:d3:55:ac:ec:fa:07:de:0d:82:5e:cb:
39:f4:b3:73:2e:92:05:a3:0c:7b:a9:8b:ba:2c:a5:54:94:7c:
16:c9:d5:c1:9b:22:d1:fc:42:66:24:cc:19:93:06:db:eb:28:
17:a0:f8:90:f1:e7:46:ff:79:59:dc:c3:87:7e:45:4d:92:6e:
38:34:00:be:cb:e9:6d:83:f5:93:af:1e:e6:e2:c3:3f:94:3f:
cf:6e:82:09:e5:52:e0:df:09:18:3c:d5:1d:d9:67:d4:8f:2f:
e6:0e:ff:3a:a1:cc:88:88:da:79:11:12:fa:c2:d5:85:77:85:
16:7f:f7:a0:b6:5c:f8:7b:bf:36:60:48:26:19:86:93:f4:d9:
14:33:5d:5f:8e:ee:45:6e:b4:c5:18:db:ce:e5:09:e6:84:31:
b9:ba:0d:a7:2b:b1:6e:30:1f:d2:b3:2a:57:71:94:a1:2e:5a:
2d:dd:b4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:35:09 2024 by rpki-client on console-ams.rpki-client.org