Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/D5FXInwaum33CNGeEGc1zBywIcU.roa
File: D5FXInwaum33CNGeEGc1zBywIcU.roa (raw, json)
Hash identifier: 0InGNC7ufmQ0ZtjYJb/fRo1S2G36pbF3jodCPb9t7VY=
Subject key identifier: 0F:91:57:22:7C:1A:BA:6D:F7:08:D1:9E:10:67:35:CC:1C:B0:21:C5
Certificate issuer: /CN=bf98e8170959b5e6018f602b3a7487b2d8028106
Certificate serial: 018CCA9A173B4627E28E7609028ECB00DA15
Authority key identifier: BF:98:E8:17:09:59:B5:E6:01:8F:60:2B:3A:74:87:B2:D8:02:81:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5joFwlZteYBj2ArOnSHstgCgQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/D5FXInwaum33CNGeEGc1zBywIcU.roa
Signing time: Tue 02 Jan 2024 14:35:45 +0000
ROA not before: Tue 02 Jan 2024 14:35:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47631
IP address blocks: 93.187.226.0/24 maxlen: 24
93.187.224.0/21 maxlen: 21
93.187.225.0/24 maxlen: 24
93.187.224.0/24 maxlen: 24
93.187.228.0/24 maxlen: 24
93.187.227.0/24 maxlen: 24
93.187.231.0/24 maxlen: 24
93.187.230.0/24 maxlen: 24
93.187.229.0/24 maxlen: 24
185.34.124.0/24 maxlen: 24
185.34.127.0/24 maxlen: 24
2a00:9460::/32 maxlen: 32
2a00:9461::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/v5joFwlZteYBj2ArOnSHstgCgQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/v5joFwlZteYBj2ArOnSHstgCgQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5joFwlZteYBj2ArOnSHstgCgQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:9a:17:3b:46:27:e2:8e:76:09:02:8e:cb:00:da:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf98e8170959b5e6018f602b3a7487b2d8028106
Validity
Not Before: Jan 2 14:35:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f9157227c1aba6df708d19e106735cc1cb021c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:73:29:4d:52:2a:ae:54:0e:a1:a8:9b:d4:85:
87:d3:d6:87:58:70:95:83:a1:ce:3a:4b:9a:c4:3c:
12:4a:f1:10:39:85:97:d8:4d:53:09:f5:6f:2c:97:
ce:76:00:c4:b8:a7:93:0b:5c:db:db:9b:82:2f:d2:
5d:54:b0:24:29:d0:aa:c2:e3:cb:ae:4f:a0:dd:50:
f4:a4:57:1c:3e:38:f3:19:83:e8:bd:5c:ea:b3:58:
08:2c:3a:36:e8:b3:67:b0:2a:cc:9d:6f:87:c8:05:
64:f8:93:18:38:06:8c:e7:5f:15:4a:fb:96:27:0d:
74:8c:a0:fe:12:22:b6:51:88:bb:96:1c:9c:d1:6b:
49:37:1e:02:a3:5f:68:06:72:00:b7:b9:7f:69:6b:
3e:81:32:09:29:c7:08:4c:24:c8:1a:8e:e2:3f:b7:
20:29:9f:84:79:14:4a:6f:25:71:2c:6e:5a:9f:ae:
9f:49:e9:d6:88:b6:33:95:43:56:cf:51:69:7a:66:
10:32:4e:5b:6b:b8:46:9d:83:56:6e:41:4b:8b:bc:
e6:2a:56:de:06:5e:b0:6a:3f:83:cd:fd:58:f4:8b:
24:ab:f5:ff:8e:df:9e:7e:ee:bd:78:85:16:c1:9d:
3e:05:53:f4:41:0c:08:39:af:aa:0c:92:1f:1c:07:
81:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:91:57:22:7C:1A:BA:6D:F7:08:D1:9E:10:67:35:CC:1C:B0:21:C5
X509v3 Authority Key Identifier:
keyid:BF:98:E8:17:09:59:B5:E6:01:8F:60:2B:3A:74:87:B2:D8:02:81:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5joFwlZteYBj2ArOnSHstgCgQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/D5FXInwaum33CNGeEGc1zBywIcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/v5joFwlZteYBj2ArOnSHstgCgQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.187.224.0/21
185.34.124.0/24
185.34.127.0/24
IPv6:
2a00:9460::/31
Signature Algorithm: sha256WithRSAEncryption
6d:f7:d8:91:05:2f:41:b8:4a:c0:05:ef:29:04:c0:a6:8b:cd:
b2:dc:d1:6c:cd:0d:ac:e0:a4:6e:c6:2d:ca:1d:b0:64:bd:9c:
10:82:2e:20:1f:51:3b:61:92:cc:f6:79:69:77:d9:bf:b1:30:
03:7b:1a:22:f2:56:c2:2b:94:0c:8f:46:11:51:f4:f2:de:5f:
73:02:05:76:4c:b0:3d:11:b9:56:91:10:53:fd:f4:06:a7:96:
f8:f5:96:53:cd:20:b7:19:ae:13:c3:20:f1:34:8e:bd:de:16:
77:c3:90:d4:4f:79:da:3c:6c:6e:f3:b8:13:c3:c0:79:46:a8:
42:83:fe:36:0d:af:88:fc:2e:63:5d:0d:1a:04:a6:80:1a:d0:
02:0e:87:2a:0e:46:25:b1:3c:f0:16:7c:ad:a0:fb:7a:94:56:
d0:60:aa:bc:6d:af:49:93:9d:c7:7a:17:1f:59:59:bf:df:7c:
1e:44:98:44:f6:99:0d:cf:9f:da:ad:ea:a0:14:67:e4:46:d5:
e2:d7:2f:ec:de:e3:6d:53:7e:98:03:f5:78:ae:5b:10:5d:ec:
10:d4:1c:87:84:c3:9d:b3:36:07:bb:4f:21:58:92:c8:a1:8d:
ed:b2:16:e7:4f:a9:6f:6d:22:50:ef:98:3b:1f:be:15:3b:65:
69:62:c8:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:16:02 2024 by rpki-client on console-fra.rpki-client.org