Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_FkSPI9ISquGf4jrRkv7G6YL_BA.roa
File: _FkSPI9ISquGf4jrRkv7G6YL_BA.roa (raw, json)
Hash identifier: 1PfdFpSNQbSwyWp7qBRjGF+qqSiJVZqb4SpHgWtneRU=
Subject key identifier: FC:59:12:3C:8F:48:4A:AB:86:7F:88:EB:46:4B:FB:1B:A6:0B:FC:10
Certificate issuer: /CN=fccca62cbe743328555483a857e521863f953b41
Certificate serial: 018CC56E78188EEA0FE30E597038353F3E27
Authority key identifier: FC:CC:A6:2C:BE:74:33:28:55:54:83:A8:57:E5:21:86:3F:95:3B:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_MymLL50MyhVVIOoV-Uhhj-VO0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_FkSPI9ISquGf4jrRkv7G6YL_BA.roa
Signing time: Mon 01 Jan 2024 14:30:00 +0000
ROA not before: Mon 01 Jan 2024 14:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39232
IP address blocks: 5.134.50.0/23 maxlen: 23
5.134.48.0/21 maxlen: 21
5.134.48.0/22 maxlen: 22
5.134.48.0/23 maxlen: 23
5.134.48.0/20 maxlen: 20
5.134.56.0/21 maxlen: 21
5.134.56.0/22 maxlen: 22
5.134.56.0/23 maxlen: 23
5.134.54.0/23 maxlen: 23
5.134.52.0/23 maxlen: 23
5.134.52.0/22 maxlen: 22
5.134.58.0/23 maxlen: 23
5.134.62.0/23 maxlen: 23
5.134.60.0/23 maxlen: 23
5.134.60.0/22 maxlen: 22
185.40.156.0/22 maxlen: 22
185.40.156.0/23 maxlen: 23
185.40.158.0/23 maxlen: 23
188.227.208.0/21 maxlen: 21
188.227.208.0/20 maxlen: 20
188.227.216.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_MymLL50MyhVVIOoV-Uhhj-VO0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_MymLL50MyhVVIOoV-Uhhj-VO0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/_MymLL50MyhVVIOoV-Uhhj-VO0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:78:18:8e:ea:0f:e3:0e:59:70:38:35:3f:3e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fccca62cbe743328555483a857e521863f953b41
Validity
Not Before: Jan 1 14:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc59123c8f484aab867f88eb464bfb1ba60bfc10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:67:37:ee:f2:03:43:b6:82:16:e6:a0:60:ec:
7e:be:22:c3:87:32:30:e8:9d:80:4e:63:5c:55:1f:
2f:66:82:47:11:93:af:17:33:96:b7:35:24:a6:73:
f6:6e:f4:8f:06:cf:30:aa:0b:56:77:a1:8e:d9:bd:
8d:30:9e:b0:bd:e9:8e:51:99:72:2c:25:75:09:70:
c7:6f:b7:5d:84:ad:88:24:8e:d6:98:06:12:39:9c:
5e:cc:28:81:ef:fb:08:f9:63:b7:52:d2:2e:ec:d2:
f5:d6:bf:5e:74:ac:a4:c7:db:60:95:a7:0c:62:e2:
37:e3:1d:be:f8:83:98:7e:e1:09:21:19:b1:0b:a8:
8b:bd:c8:e3:c8:02:05:c6:c0:a3:56:1b:ab:75:1b:
ef:74:c6:81:52:cd:1b:fb:6b:fb:2a:e7:e3:16:67:
a2:83:fb:12:a1:fb:55:4c:e0:e1:bf:95:af:e1:a6:
d8:73:95:2a:97:f4:a3:ab:6d:08:3f:33:31:31:c9:
3f:0f:85:c1:6c:24:70:7e:38:64:77:cd:3d:02:3c:
fc:fc:28:b1:42:7c:9b:5c:9e:f3:6d:3b:0e:32:e0:
fc:f8:8f:8c:3b:14:b5:69:bc:d3:b3:30:f7:8e:16:
9d:2e:74:eb:09:61:c0:fa:c6:0f:ea:8a:c6:3a:e0:
af:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:59:12:3C:8F:48:4A:AB:86:7F:88:EB:46:4B:FB:1B:A6:0B:FC:10
X509v3 Authority Key Identifier:
keyid:FC:CC:A6:2C:BE:74:33:28:55:54:83:A8:57:E5:21:86:3F:95:3B:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_MymLL50MyhVVIOoV-Uhhj-VO0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_FkSPI9ISquGf4jrRkv7G6YL_BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d2e43d-1faa-40b3-b012-ee64c6e71bfb/1/_MymLL50MyhVVIOoV-Uhhj-VO0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.48.0/20
185.40.156.0/22
188.227.208.0/20
Signature Algorithm: sha256WithRSAEncryption
bd:1f:aa:e2:3c:0c:8e:93:6a:59:d3:50:f0:66:fa:17:44:d5:
f5:cb:94:31:20:f1:14:a2:f5:7b:3f:07:2e:f6:f6:8d:ad:11:
0a:b3:56:4d:9d:76:7f:0b:33:9e:f4:38:d3:74:7b:07:6c:fe:
72:15:8f:ba:70:26:90:93:10:54:86:c1:5f:bc:74:29:de:71:
ce:ff:08:b2:81:a7:92:be:b9:48:c7:91:2c:d9:2f:40:3a:dd:
23:e3:56:6a:a1:1b:90:bb:f3:7a:59:c2:58:ed:ae:7f:94:dc:
99:59:b0:c9:72:d7:0c:24:bd:d3:60:4d:7a:88:b7:e9:5d:62:
8d:80:2b:3e:7e:34:d3:b3:54:30:6b:73:d9:c9:4b:76:5e:56:
12:c2:73:f1:12:c1:5d:5f:8b:f4:21:33:02:f1:2e:91:77:ec:
81:da:59:21:e9:a4:c4:9a:c0:49:51:e1:78:82:30:59:85:9a:
eb:b1:95:a2:18:ec:ab:83:e2:46:10:cc:80:f2:b8:84:dc:68:
2a:51:8e:ba:2f:7e:ea:c3:e1:37:b3:f5:d5:38:2c:11:f6:a7:
6c:84:12:fa:5d:98:a9:da:72:eb:e3:7c:ba:0a:42:61:1f:95:
d3:22:d5:3e:71:66:a5:b2:27:0e:28:2b:b6:b3:67:8a:5e:1e:
b2:2a:28:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:44:51 2024 by rpki-client on console-ams.rpki-client.org