Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/xeVQL6lNw808SQ26nu5yfGiAMdk.roa
File: xeVQL6lNw808SQ26nu5yfGiAMdk.roa (raw, json)
Hash identifier: EyIQ+h15pC1NcQM/5pxvvcF2GdiwehTe50K5uXmfTkc=
Subject key identifier: C5:E5:50:2F:A9:4D:C3:CD:3C:49:0D:BA:9E:EE:72:7C:68:80:31:D9
Certificate issuer: /CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Certificate serial: 018CC2DB2A961EEE3A5BC7D27FEF5C71E0E8
Authority key identifier: 9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/xeVQL6lNw808SQ26nu5yfGiAMdk.roa
Signing time: Mon 01 Jan 2024 02:29:52 +0000
ROA not before: Mon 01 Jan 2024 02:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137409
IP address blocks: 188.240.217.0/24 maxlen: 24
188.240.218.0/24 maxlen: 24
188.240.219.0/24 maxlen: 24
188.240.216.0/24 maxlen: 24
188.240.10.0/24 maxlen: 24
188.240.11.0/24 maxlen: 24
84.247.94.0/24 maxlen: 24
84.247.95.0/24 maxlen: 24
84.247.96.0/24 maxlen: 24
84.247.97.0/24 maxlen: 24
84.247.92.0/24 maxlen: 24
84.247.93.0/24 maxlen: 24
84.247.98.0/24 maxlen: 24
84.247.101.0/24 maxlen: 24
84.247.102.0/24 maxlen: 24
84.247.103.0/24 maxlen: 24
84.247.99.0/24 maxlen: 24
84.247.100.0/24 maxlen: 24
84.247.90.0/24 maxlen: 24
84.247.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 09:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:2a:96:1e:ee:3a:5b:c7:d2:7f:ef:5c:71:e0:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Validity
Not Before: Jan 1 02:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5e5502fa94dc3cd3c490dba9eee727c688031d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:c9:00:66:57:3e:ed:77:5d:81:f7:23:9d:
be:c7:b9:05:07:c6:cb:1f:fc:13:dc:b8:b9:75:03:
b3:37:df:bd:7d:c3:38:d8:9e:e3:0a:33:dc:4f:92:
7e:0a:18:8e:4f:93:3d:c7:15:b7:10:93:0a:e5:7f:
1a:77:b9:81:70:98:07:54:4f:02:c0:ff:8e:88:e8:
28:06:c1:5f:63:fb:ae:00:e9:17:e7:35:79:2b:5f:
3b:27:51:9a:75:61:c8:06:04:3f:88:a9:d6:4f:af:
6e:ba:bc:92:92:2d:75:87:18:87:d9:24:96:ee:4f:
3f:d6:29:96:57:f7:09:18:47:4a:14:0b:ea:37:0a:
86:49:81:be:2a:a5:d8:b9:72:35:66:a5:e7:2c:6b:
36:a1:04:dd:21:69:66:25:03:b6:12:02:e7:3c:38:
16:a2:88:2c:15:c5:96:31:cd:4e:c4:e0:99:61:34:
39:e1:80:c3:d2:a7:e6:3a:1a:57:dc:19:14:f1:c9:
d6:8d:42:b7:b2:4d:88:b6:28:e1:2e:75:01:ed:d9:
49:ab:29:98:a3:a3:23:d8:34:1c:a6:ef:ca:2a:37:
2c:f5:71:f5:16:87:d2:f1:94:4e:be:6c:3d:e8:9c:
03:0d:27:c8:39:9e:01:24:8f:e2:40:be:36:22:63:
2b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E5:50:2F:A9:4D:C3:CD:3C:49:0D:BA:9E:EE:72:7C:68:80:31:D9
X509v3 Authority Key Identifier:
keyid:9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/xeVQL6lNw808SQ26nu5yfGiAMdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.90.0-84.247.103.255
188.240.10.0/23
188.240.216.0/22
Signature Algorithm: sha256WithRSAEncryption
09:d6:81:0a:c9:79:5f:8f:9e:ac:c8:46:73:00:20:a4:cb:a8:
49:56:83:2f:d0:25:0e:97:7b:44:b4:bf:3c:2a:b7:c9:e8:a8:
2e:ce:7e:9a:5f:6a:5a:4f:3b:9f:b5:b6:b4:98:8c:88:59:d8:
98:4e:88:5d:7d:e3:7c:a5:4f:b8:c1:e5:fe:ee:59:15:15:d4:
a0:49:68:71:3f:7d:82:54:4c:f2:b4:d5:27:89:17:3a:84:dc:
88:bd:25:31:0d:55:55:3c:74:3d:c4:d8:70:5b:a8:41:14:74:
10:0e:0e:89:94:43:87:57:96:19:24:b6:87:85:26:b8:75:e8:
1a:9e:38:a6:0a:91:db:91:d4:b0:e8:0b:75:07:c6:a5:59:a5:
43:38:7a:d5:47:40:79:b2:56:85:7c:4c:35:f0:37:9a:80:81:
20:27:73:d8:09:1d:8c:4c:3b:ff:42:39:a3:d1:43:22:87:a0:
64:9b:6f:0b:67:35:99:ca:ce:5d:c6:11:15:99:2a:7a:20:55:
6a:41:7a:0e:cd:13:54:90:98:f5:0f:b3:e0:0b:f3:34:18:ef:
e3:a7:6b:4e:d7:30:f3:b4:b8:ed:12:13:2c:03:a6:59:f1:03:
4e:22:1e:5d:db:0a:31:4d:61:7b:e7:f7:a1:0e:41:cf:73:05:
7b:d4:99:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 13:13:44 2024 by rpki-client on console-fra.rpki-client.org