Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/fWbmglmfy9X1zeXIq9wWfTbyTTs.roa
File: fWbmglmfy9X1zeXIq9wWfTbyTTs.roa (raw, json)
Hash identifier: 8xGcYE7Yo9kqK8WL4FGej4fVBA5tGGQO96cMOb8PSC0=
Subject key identifier: 7D:66:E6:82:59:9F:CB:D5:F5:CD:E5:C8:AB:DC:16:7D:36:F2:4D:3B
Certificate issuer: /CN=792304cece7fb6551d621e257743753d7d3e7eba
Certificate serial: 018CC5DCD2A0D19D16AED128D16A458B8CC2
Authority key identifier: 79:23:04:CE:CE:7F:B6:55:1D:62:1E:25:77:43:75:3D:7D:3E:7E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eSMEzs5_tlUdYh4ld0N1PX0-fro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/fWbmglmfy9X1zeXIq9wWfTbyTTs.roa
Signing time: Mon 01 Jan 2024 16:30:32 +0000
ROA not before: Mon 01 Jan 2024 16:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59574
IP address blocks: 185.204.110.0/24 maxlen: 24
95.215.231.0/24 maxlen: 24
95.215.230.0/24 maxlen: 24
95.215.230.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/eSMEzs5_tlUdYh4ld0N1PX0-fro.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/eSMEzs5_tlUdYh4ld0N1PX0-fro.mft
rsync://rpki.ripe.net/repository/DEFAULT/eSMEzs5_tlUdYh4ld0N1PX0-fro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:d2:a0:d1:9d:16:ae:d1:28:d1:6a:45:8b:8c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=792304cece7fb6551d621e257743753d7d3e7eba
Validity
Not Before: Jan 1 16:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d66e682599fcbd5f5cde5c8abdc167d36f24d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cd:77:57:d8:5c:b3:5b:88:a1:55:68:13:33:
60:41:f3:2a:1d:e4:48:f1:0f:dc:eb:58:70:ca:db:
02:b6:0b:e3:ca:1e:00:7d:79:12:ad:52:f1:66:35:
2d:7c:a8:75:32:8a:20:c4:df:6c:9c:ff:fa:76:d9:
0b:de:41:8e:45:17:98:e5:58:90:7e:77:e5:9c:c5:
b8:db:25:d3:2c:36:c2:42:3c:ff:e3:ae:e1:c2:85:
ba:ad:59:3b:d2:58:9f:b7:63:f0:9b:87:7f:4d:ff:
c8:50:3e:3e:36:6b:26:c5:66:b5:fd:47:d7:1d:32:
9f:2d:c4:55:44:f8:bc:b3:53:ef:70:91:79:e8:2d:
dd:01:55:02:d1:3b:56:27:05:91:b8:6c:a3:c1:83:
aa:54:17:9d:56:1f:10:1d:8d:6e:a4:af:9a:a1:93:
e7:0a:96:2a:46:c5:f7:c4:2d:7c:a0:57:ab:f1:51:
be:28:53:7c:42:4b:61:1d:ad:97:73:45:a0:e7:f7:
9d:ae:ce:ed:91:29:8d:02:58:9d:81:ce:db:90:58:
8e:24:90:41:f9:4f:51:80:2f:a7:c1:28:84:d1:ff:
d1:c8:00:03:5a:cc:75:d8:9b:54:e0:c7:90:7d:ae:
28:5b:98:5e:a6:98:e3:8e:68:62:f1:ef:04:b5:b3:
ed:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:66:E6:82:59:9F:CB:D5:F5:CD:E5:C8:AB:DC:16:7D:36:F2:4D:3B
X509v3 Authority Key Identifier:
keyid:79:23:04:CE:CE:7F:B6:55:1D:62:1E:25:77:43:75:3D:7D:3E:7E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eSMEzs5_tlUdYh4ld0N1PX0-fro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/fWbmglmfy9X1zeXIq9wWfTbyTTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e84b5d-3511-44e9-9261-ed82ae7dbd59/1/eSMEzs5_tlUdYh4ld0N1PX0-fro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.230.0/23
185.204.110.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:cb:17:3a:09:07:19:d7:18:b9:20:e7:1a:90:02:47:c8:65:
2d:66:57:47:41:d8:19:7e:f3:10:e4:9d:4a:67:a8:08:cd:2c:
d2:7d:91:a4:7c:5d:8d:84:ff:cc:06:93:7a:76:7d:0d:e5:89:
80:4a:9e:5f:d8:49:3f:8e:37:bf:9c:2a:c9:ae:35:39:7e:31:
b5:62:b6:a6:be:cf:6f:21:20:7f:0b:92:fb:76:10:7c:2a:0e:
50:22:c0:ae:89:34:86:31:c0:b6:08:b1:2d:5d:f8:13:54:13:
39:a8:88:4d:71:42:10:ac:36:4e:3d:1c:85:a5:7d:4a:9b:51:
44:50:c7:87:6c:91:73:03:64:46:71:86:18:17:81:6b:d8:36:
fb:f2:a4:69:0f:ca:7a:dc:46:64:ea:8f:84:94:c0:e9:15:f1:
7e:e4:a5:c6:4d:c0:12:ef:6e:92:d7:50:df:f7:c7:a3:49:b3:
eb:8e:6d:43:2c:6c:cc:5f:e2:19:d8:17:a1:e7:d8:31:0e:d0:
94:3b:b6:1a:f8:d3:7d:80:10:51:a7:62:f0:72:61:c7:74:de:
23:86:79:4c:a1:10:9d:00:62:8e:57:0f:4b:c2:97:26:8c:30:
2e:91:b0:c0:c7:17:90:cc:b1:a1:cc:65:e3:fb:22:07:3d:a5:
ab:e4:e3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:34:35 2024 by rpki-client on console-ams.rpki-client.org