Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ewPHwixuoGzJSn3UTLB1GN1cmYc.roa
File: ewPHwixuoGzJSn3UTLB1GN1cmYc.roa (raw, json)
Hash identifier: MM2xlnmtTrAXAWpy3anT+OaEKwNQPzDpV49u02Wy8fI=
Subject key identifier: 7B:03:C7:C2:2C:6E:A0:6C:C9:4A:7D:D4:4C:B0:75:18:DD:5C:99:87
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBC8D92665620352DF12E59A8FCEFD
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ewPHwixuoGzJSn3UTLB1GN1cmYc.roa
Signing time: Tue 02 Jan 2024 10:32:56 +0000
ROA not before: Tue 02 Jan 2024 10:32:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15545
IP address blocks: 195.228.135.0/24 maxlen: 24
80.249.160.0/22 maxlen: 22
80.249.165.0/24 maxlen: 24
46.107.224.0/24 maxlen: 24
188.36.230.0/23 maxlen: 23
195.228.245.0/24 maxlen: 24
80.249.174.0/23 maxlen: 23
80.249.174.0/24 maxlen: 24
84.2.37.0/24 maxlen: 24
84.2.32.0/23 maxlen: 23
84.2.34.0/23 maxlen: 23
84.2.36.0/23 maxlen: 23
84.2.39.0/24 maxlen: 24
84.2.38.0/23 maxlen: 23
84.2.42.0/23 maxlen: 23
194.38.104.0/22 maxlen: 22
84.2.46.0/23 maxlen: 23
31.46.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:c8:d9:26:65:62:03:52:df:12:e5:9a:8f:ce:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b03c7c22c6ea06cc94a7dd44cb07518dd5c9987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:31:da:37:50:00:f0:d4:69:ea:30:6a:8f:
6e:91:f1:ad:10:d0:06:3e:b1:6a:c7:22:34:91:33:
2c:0c:9b:a8:55:ae:61:c5:2f:73:9b:a3:4d:df:ef:
58:b3:58:cb:9a:d9:ac:c7:4d:bb:6c:8a:22:f4:53:
78:17:00:4f:14:ab:50:e3:b1:05:9b:b6:8a:00:76:
b3:12:21:38:ee:ad:dd:17:53:14:41:7b:bb:24:f3:
f3:2c:23:60:cb:27:bb:ec:11:cc:0d:99:ba:95:48:
89:59:71:83:a4:50:74:68:d2:47:3d:dd:fd:b5:ed:
e1:44:78:07:b9:dd:81:e3:39:28:17:5c:bc:d6:93:
0f:44:c5:5b:ef:31:f0:6d:f1:64:1f:c2:40:b2:01:
ec:67:3b:c0:f4:c0:f2:f6:75:e5:7c:72:89:91:2e:
d0:4e:b6:d0:6b:bf:e0:bc:0e:c3:e3:77:84:10:f5:
fb:7c:33:57:51:e3:f0:0b:dd:3e:86:f0:8e:c9:7c:
b9:ba:86:c7:63:49:4d:d8:a0:cc:90:a8:ee:67:fb:
34:97:bc:90:4d:60:80:24:a5:01:f9:ed:be:e8:5e:
77:45:97:b9:51:f1:dc:9b:2d:f5:b2:db:e2:a1:0d:
27:37:9c:c8:fe:56:40:8d:6f:c3:70:d5:b9:a9:cb:
36:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:03:C7:C2:2C:6E:A0:6C:C9:4A:7D:D4:4C:B0:75:18:DD:5C:99:87
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/ewPHwixuoGzJSn3UTLB1GN1cmYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.46.22.0/24
46.107.224.0/24
80.249.160.0/22
80.249.165.0/24
80.249.174.0/23
84.2.32.0/21
84.2.42.0/23
84.2.46.0/23
188.36.230.0/23
194.38.104.0/22
195.228.135.0/24
195.228.245.0/24
Signature Algorithm: sha256WithRSAEncryption
70:87:84:0a:b7:4d:81:94:a3:65:4d:1f:02:71:70:7d:9f:80:
a6:e8:93:27:c7:3c:ca:24:3f:62:08:a1:79:95:75:d9:02:bb:
0e:f7:71:5f:35:0f:cb:78:8f:a7:69:05:b5:f8:7d:15:ed:a0:
e7:66:48:60:4a:73:f3:31:cb:c4:5e:be:0b:1a:99:25:00:3c:
fd:64:fa:d0:56:3a:9c:92:3d:b3:64:61:25:b7:8d:fa:1f:b3:
d3:cc:97:10:b3:2b:bb:0b:bf:7b:0f:71:a4:2f:8a:80:41:fb:
9d:c2:f4:41:1f:f3:6b:17:bb:bc:06:a3:1b:47:b5:26:8d:ff:
a5:bd:e7:bb:88:af:dc:11:39:91:6a:98:d2:b7:43:00:89:d0:
ce:6d:80:3d:5c:ab:b4:49:5e:bd:6b:44:1c:06:2f:3b:a4:0c:
e1:dc:36:ca:67:74:3d:4e:1c:51:6c:d4:00:dc:a4:5f:05:ed:
39:6f:c9:c3:ae:e4:b9:50:dc:a0:ca:ed:b0:a5:a1:4e:ec:c3:
3a:42:f0:92:f3:8f:e2:3f:ec:18:a2:f3:bd:d4:a2:19:7c:2e:
ea:52:8f:48:5f:52:f2:d6:e1:47:f1:47:1b:08:45:d0:13:88:
a1:ae:d3:31:77:6c:f8:3c:8c:25:c9:4d:61:5b:37:9e:20:59:
73:b8:00:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:08 2024 by rpki-client on console-ams.rpki-client.org