Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/DR25SPf_E-WV_Z8KBWDBp_nuo5s.roa
File: DR25SPf_E-WV_Z8KBWDBp_nuo5s.roa (raw, json)
Hash identifier: khULaqM5oREE/kLJm7eWDh+iH/CtG7IgJtKkUzTxjeQ=
Subject key identifier: 0D:1D:B9:48:F7:FF:13:E5:95:FD:9F:0A:05:60:C1:A7:F9:EE:A3:9B
Certificate issuer: /CN=b2fba356186c1dc5031c2fb20bc635491f878637
Certificate serial: 018CC26D6619EEF5CB2F4F90ED60316ACE6D
Authority key identifier: B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/DR25SPf_E-WV_Z8KBWDBp_nuo5s.roa
Signing time: Mon 01 Jan 2024 00:29:58 +0000
ROA not before: Mon 01 Jan 2024 00:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41827
IP address blocks: 185.168.164.0/22 maxlen: 24
185.95.132.0/22 maxlen: 24
2a05:f340::/29 maxlen: 29
2a0b:ea00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/svujVhhsHcUDHC-yC8Y1SR-Hhjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/svujVhhsHcUDHC-yC8Y1SR-Hhjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:66:19:ee:f5:cb:2f:4f:90:ed:60:31:6a:ce:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2fba356186c1dc5031c2fb20bc635491f878637
Validity
Not Before: Jan 1 00:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d1db948f7ff13e595fd9f0a0560c1a7f9eea39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:93:df:b3:bd:e9:ac:b7:d2:cb:0f:c0:42:e3:
d8:3c:41:27:13:fc:b6:5f:38:6b:3f:b9:04:e2:18:
cd:51:02:1c:83:f4:7a:0c:e7:f0:93:81:95:89:f3:
c2:39:30:d2:24:cf:1f:e7:9d:57:94:b8:01:eb:39:
3c:8f:df:8f:08:b7:34:c3:4b:79:13:c1:5a:8c:6c:
e7:6a:26:2a:7f:e4:5f:31:0e:c8:c9:b6:9f:26:9a:
49:e3:8c:d4:e8:f3:ae:56:9a:35:78:a6:67:a1:62:
57:0b:ba:cb:bf:3d:0a:38:82:22:4f:df:31:ba:18:
2e:69:20:53:c9:3c:18:76:c6:e8:ac:3e:ff:74:8e:
1d:1a:d1:ff:51:19:c1:81:16:86:15:c2:a9:7f:0f:
4e:1f:5a:dd:85:5f:8a:21:86:78:eb:dc:58:11:d6:
9b:aa:d5:55:a8:20:40:7b:28:77:5f:9f:91:9c:5f:
7c:84:a9:9b:5d:0a:9b:52:71:77:70:90:54:e1:b4:
c9:1d:09:26:f0:49:d5:65:35:3d:4f:fb:5a:93:db:
22:ac:9a:d9:9d:4a:fb:f1:d8:48:2c:77:e6:6f:17:
fd:78:cf:ea:44:03:c9:27:d6:93:28:7f:bd:8a:93:
24:f8:cb:c4:e2:1d:05:de:1b:5f:76:1d:e4:95:6b:
91:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1D:B9:48:F7:FF:13:E5:95:FD:9F:0A:05:60:C1:A7:F9:EE:A3:9B
X509v3 Authority Key Identifier:
keyid:B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/DR25SPf_E-WV_Z8KBWDBp_nuo5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/svujVhhsHcUDHC-yC8Y1SR-Hhjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.132.0/22
185.168.164.0/22
IPv6:
2a05:f340::/29
2a0b:ea00::/32
Signature Algorithm: sha256WithRSAEncryption
90:de:8a:75:5d:ad:a6:3b:3b:23:f4:d4:ab:ee:41:bf:cd:9e:
69:9e:bd:52:f7:37:68:e4:ef:6a:ca:19:e3:fb:01:e9:ee:66:
e7:e9:61:e8:b2:72:0b:77:96:04:9e:99:f7:04:bf:66:29:74:
07:96:63:70:d3:c4:d7:6a:7b:33:d9:13:f0:79:f4:07:25:59:
d9:16:e4:01:9c:dc:7d:3c:bd:8d:3d:e8:00:75:50:dc:52:a9:
1c:70:86:b8:9b:a5:76:78:e8:d4:19:f2:bd:e8:a4:dd:1e:27:
42:cd:5c:76:c3:24:3f:5b:b5:0f:8c:b2:79:f8:66:38:0c:c0:
b2:3e:9a:df:cc:c3:e1:aa:ee:02:f5:1b:da:52:68:5f:5f:61:
be:f4:a2:87:44:bf:53:7b:a2:61:15:6b:63:1a:27:67:55:59:
75:d1:ca:f5:5d:ef:4b:56:80:79:04:e9:15:68:77:26:95:68:
0c:61:c1:1b:02:bb:67:d8:cd:66:1d:7a:47:51:de:aa:1c:ad:
e2:88:1c:22:88:85:1d:b9:6b:a8:b1:c4:54:98:b7:72:cb:bd:
6a:e6:82:6c:2c:c9:84:fb:b6:b1:ec:7f:3a:c6:1c:a6:d7:2b:
61:42:50:0c:3d:7d:41:87:ff:14:86:1b:d2:6f:f7:99:ac:8a:
45:bc:89:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:03:27 2024 by rpki-client on console-fra.rpki-client.org