Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/JvFp0WnqNbDQKwU7tFQ1W2zREA8.roa
File: JvFp0WnqNbDQKwU7tFQ1W2zREA8.roa (raw, json)
Hash identifier: IGtLFKgv5KjTuhBlLjUfihPdn7Zmk+mRK4LMscKipPw=
Subject key identifier: 26:F1:69:D1:69:EA:35:B0:D0:2B:05:3B:B4:54:35:5B:6C:D1:10:0F
Certificate issuer: /CN=a95f638862529b6dafd440e172a22f0120b09aea
Certificate serial: 018CC9BCCAB30CFF8943FA3C8E90C359165E
Authority key identifier: A9:5F:63:88:62:52:9B:6D:AF:D4:40:E1:72:A2:2F:01:20:B0:9A:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qV9jiGJSm22v1EDhcqIvASCwmuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/JvFp0WnqNbDQKwU7tFQ1W2zREA8.roa
Signing time: Tue 02 Jan 2024 10:34:02 +0000
ROA not before: Tue 02 Jan 2024 10:34:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24954
IP address blocks: 194.5.76.0/24 maxlen: 24
194.5.77.0/24 maxlen: 24
194.5.74.0/24 maxlen: 24
194.5.75.0/24 maxlen: 24
193.57.12.0/24 maxlen: 24
193.57.13.0/24 maxlen: 24
193.57.34.0/24 maxlen: 24
193.57.176.0/24 maxlen: 24
193.57.179.0/24 maxlen: 24
193.57.177.0/24 maxlen: 24
193.57.178.0/24 maxlen: 24
193.57.180.0/24 maxlen: 24
194.5.150.0/24 maxlen: 24
194.5.151.0/24 maxlen: 24
194.5.166.0/24 maxlen: 24
194.5.167.0/24 maxlen: 24
2001:67c:8a0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/qV9jiGJSm22v1EDhcqIvASCwmuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/qV9jiGJSm22v1EDhcqIvASCwmuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qV9jiGJSm22v1EDhcqIvASCwmuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ca:b3:0c:ff:89:43:fa:3c:8e:90:c3:59:16:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a95f638862529b6dafd440e172a22f0120b09aea
Validity
Not Before: Jan 2 10:34:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26f169d169ea35b0d02b053bb454355b6cd1100f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:16:fa:f2:38:ce:36:c6:4b:c8:b5:51:e6:cb:
50:46:96:3a:db:c3:9a:2f:f5:9e:78:02:7e:49:8e:
82:db:58:cb:6b:d4:5a:d9:a2:66:20:c8:32:70:27:
1f:92:21:8e:11:00:a0:2c:1f:15:a6:6e:9a:5f:38:
2a:cf:16:24:aa:8b:f4:cc:ec:24:8c:22:f8:6c:9d:
06:9f:1a:02:dd:e2:aa:30:7f:3a:63:17:1f:9f:64:
95:e4:23:2f:05:52:ad:32:30:d1:84:da:2d:25:34:
e1:88:69:fb:37:ea:3c:12:5a:64:eb:94:08:20:e8:
74:61:9c:01:4e:42:2f:2a:d4:24:10:80:0e:d1:ce:
69:5d:ec:85:2a:86:f0:ec:50:d5:63:c4:1a:f2:39:
34:d4:93:16:16:61:17:76:ef:45:20:77:c3:d6:ff:
5f:2f:18:cd:7c:2a:8a:24:80:51:33:37:e2:95:a6:
fd:35:94:d4:f5:17:69:52:27:59:21:9f:d6:ca:57:
97:8a:ea:0c:c0:52:2f:73:31:c1:71:bd:28:d0:5d:
2f:6b:41:d1:7e:52:b3:9b:fe:2e:e8:33:fb:1a:b6:
c3:16:7e:4b:9c:6b:ab:24:c7:3d:75:ff:74:6e:e0:
cd:79:f0:88:50:4b:bd:2d:d8:91:f3:83:08:56:6c:
cf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F1:69:D1:69:EA:35:B0:D0:2B:05:3B:B4:54:35:5B:6C:D1:10:0F
X509v3 Authority Key Identifier:
keyid:A9:5F:63:88:62:52:9B:6D:AF:D4:40:E1:72:A2:2F:01:20:B0:9A:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qV9jiGJSm22v1EDhcqIvASCwmuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/JvFp0WnqNbDQKwU7tFQ1W2zREA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/af493f-41fe-406d-b3ff-ebb53c25307b/1/qV9jiGJSm22v1EDhcqIvASCwmuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.12.0/23
193.57.34.0/24
193.57.176.0-193.57.180.255
194.5.74.0-194.5.77.255
194.5.150.0/23
194.5.166.0/23
IPv6:
2001:67c:8a0::/48
Signature Algorithm: sha256WithRSAEncryption
9e:b3:8e:f7:cc:4a:14:a1:5c:72:0f:fe:18:06:57:56:e7:d7:
b0:82:67:60:de:94:5b:82:24:5f:76:e0:6f:fc:a3:8d:eb:45:
0c:f2:55:03:5e:87:7c:38:aa:87:13:da:29:23:00:57:94:34:
88:14:9b:32:db:5a:14:07:a7:e5:b2:a3:17:85:48:23:d2:79:
78:b8:64:0d:91:2c:ce:1e:7d:88:41:8d:65:b5:38:e6:8f:37:
70:7d:65:d9:c3:85:2f:bb:d3:15:61:73:7c:b3:c5:b1:0d:59:
90:89:9e:b0:8b:09:17:f4:61:6b:3a:b8:4a:51:8d:e8:15:4e:
b0:8b:af:fa:8b:b7:82:c2:99:8e:d7:ee:29:1f:31:bd:be:40:
e8:d8:53:e6:38:12:7b:c6:29:8d:95:31:63:7d:5c:ac:83:0a:
70:77:7e:49:56:44:3d:6f:a4:cf:1b:be:ff:83:1c:ef:31:7c:
c7:17:80:b6:cb:9a:80:84:97:66:c5:9c:61:b4:21:2b:9e:9d:
4c:b1:e9:30:4c:f9:b9:1b:43:b7:9a:0c:b9:ca:9d:3b:ff:07:
e3:cc:7b:a3:b9:e5:5a:a9:fd:a5:7f:6a:21:40:5e:df:05:c4:
a2:77:bd:9f:99:43:fd:0b:fe:f1:f9:80:17:05:cb:3c:8d:d0:
69:78:6a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:42:03 2024 by rpki-client on console-fra.rpki-client.org