Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/ptyWguMwDDRdhuUUmsdufQBzVL0.roa
File: ptyWguMwDDRdhuUUmsdufQBzVL0.roa (raw, json)
Hash identifier: K0dpRTFW0hGCntfHaea8ipiQbzArPOAX7zyvVshVof0=
Subject key identifier: A6:DC:96:82:E3:30:0C:34:5D:86:E5:14:9A:C7:6E:7D:00:73:54:BD
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 01904A9DCEFCA8973CF2C7B418E0C8609FE1
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/ptyWguMwDDRdhuUUmsdufQBzVL0.roa
Signing time: Mon 24 Jun 2024 14:19:34 +0000
ROA not before: Mon 24 Jun 2024 14:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 45.11.96.0/24 maxlen: 24
45.11.97.0/24 maxlen: 24
45.11.98.0/24 maxlen: 24
45.11.99.0/24 maxlen: 24
62.106.94.0/24 maxlen: 24
79.110.234.0/24 maxlen: 24
134.255.199.0/24 maxlen: 24
149.3.171.0/24 maxlen: 24
178.211.130.0/24 maxlen: 24
188.93.141.0/24 maxlen: 24
2a0c:6d40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:9d:ce:fc:a8:97:3c:f2:c7:b4:18:e0:c8:60:9f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jun 24 14:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6dc9682e3300c345d86e5149ac76e7d007354bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:27:c3:b2:99:e9:d3:04:fa:6c:ca:a9:44:ee:
bf:a8:cb:1f:57:89:4b:59:d0:d7:5a:ce:3a:98:74:
d3:e4:2c:61:66:d0:65:97:a0:da:75:b8:f7:58:48:
3e:b0:d9:d7:b2:55:6d:40:10:cf:08:58:09:84:5c:
b2:ce:d9:37:80:a9:83:d5:e0:0a:84:96:ae:bc:a5:
f5:ed:05:55:4e:10:09:a9:ed:6a:92:69:4b:c3:76:
55:cb:95:9e:14:05:99:3d:87:e7:db:b2:7c:4f:77:
b9:92:ef:d0:9c:e4:17:af:34:48:44:88:33:58:33:
af:15:bf:b4:4f:fb:1d:cf:90:05:71:cc:85:60:66:
84:35:13:db:45:de:af:40:80:ba:c6:8f:bc:26:27:
00:bd:66:81:ec:b1:b5:39:cc:da:eb:e7:6e:56:01:
2a:95:dc:f0:d7:bc:a6:80:8a:ac:4f:d0:17:48:bf:
af:5f:3c:09:92:5f:19:3d:59:f3:a8:d0:02:3d:ce:
cb:89:3a:ac:36:6c:a1:51:77:b4:f9:50:1d:c9:f6:
e2:c6:a2:dc:83:27:8f:b4:25:05:57:58:96:67:bf:
20:6c:21:4b:88:79:26:78:94:ec:09:e4:d6:65:71:
df:ee:98:ee:e1:56:58:a9:c7:f3:1e:ea:fc:c7:2c:
21:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:DC:96:82:E3:30:0C:34:5D:86:E5:14:9A:C7:6E:7D:00:73:54:BD
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/ptyWguMwDDRdhuUUmsdufQBzVL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.96.0/22
62.106.94.0/24
79.110.234.0/24
134.255.199.0/24
149.3.171.0/24
178.211.130.0/24
188.93.141.0/24
IPv6:
2a0c:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
13:64:64:49:9d:ba:a4:16:28:07:48:52:85:9b:9a:de:69:20:
59:3d:30:e0:bd:64:ab:fb:75:45:47:5b:9a:b0:fe:b3:77:9c:
e1:45:0b:a6:8e:d1:c4:6b:01:6c:e1:08:b9:43:13:be:26:60:
68:ae:63:77:54:cb:4a:d2:1c:81:04:b6:55:0b:ac:38:38:b5:
7a:6d:e0:76:36:c6:b2:84:b6:3f:4d:16:3c:d9:e1:13:ff:d9:
04:b5:16:81:74:48:dd:ef:b1:89:d2:b9:1d:4c:0f:da:ad:51:
fb:eb:8c:90:2e:4d:f8:2e:c9:91:ab:4a:07:5d:fb:f3:29:61:
b8:b5:31:ef:98:d0:09:81:e0:01:28:a0:21:52:b4:04:16:5a:
f7:1f:05:8d:0e:f8:38:49:bb:3e:1c:c4:d1:9a:d8:5a:fb:29:
00:f9:5f:14:60:fe:f2:f7:3c:cb:94:c1:ce:2b:f8:95:cc:3a:
30:89:18:a9:10:f5:1d:73:d4:9f:73:e3:53:5e:a8:c8:8b:46:
51:6f:ab:b8:5b:6b:c3:2c:13:c0:5f:ea:60:e7:05:43:90:dc:
e5:3a:47:1a:e1:01:5a:92:ba:8e:ab:68:4d:95:e4:1f:e7:b6:
10:17:5c:56:a5:9b:bc:56:1a:03:6a:e1:a7:02:35:82:83:4b:
cb:c4:b9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:18:31 2024 by rpki-client on console-ams.rpki-client.org