Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/v3PG1CLevEoYm5051F9utEwak4g.roa
File: v3PG1CLevEoYm5051F9utEwak4g.roa (raw, json)
Hash identifier: tjniFEeuL1q3vgQa+7K7F+q5p2/s6gzDigBOKxno6eU=
Subject key identifier: BF:73:C6:D4:22:DE:BC:4A:18:9B:9D:39:D4:5F:6E:B4:4C:1A:93:88
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01929E33A32D5315E5A48E84A40A06C7BB00
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/v3PG1CLevEoYm5051F9utEwak4g.roa
Signing time: Fri 18 Oct 2024 05:57:17 +0000
ROA not before: Fri 18 Oct 2024 05:57:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23422
IP address blocks: 147.189.143.0/24 maxlen: 24
176.111.220.0/24 maxlen: 24
185.127.95.0/24 maxlen: 24
185.215.225.0/24 maxlen: 24
185.215.226.0/24 maxlen: 24
193.8.195.0/24 maxlen: 24
2a0b:ae40:5::/48 maxlen: 48
2a0b:ae40:6::/48 maxlen: 48
2a0b:ae40:7::/48 maxlen: 48
2a0b:ae40:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:33:a3:2d:53:15:e5:a4:8e:84:a4:0a:06:c7:bb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Oct 18 05:57:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf73c6d422debc4a189b9d39d45f6eb44c1a9388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a4:0b:a0:79:ec:f8:48:2c:ef:7d:08:ef:32:
ad:9b:31:4a:54:32:bb:67:af:96:96:2b:ad:15:50:
1a:74:bf:a3:a4:c1:9a:9f:b8:48:ff:cd:cd:5b:e2:
65:39:a7:8a:3a:a3:0d:57:fb:e4:39:85:c3:b7:38:
ad:af:9e:a9:f5:7d:1b:4f:da:49:59:49:cc:4f:5d:
33:8b:a3:19:bd:92:1f:af:42:fa:a1:83:41:85:d9:
6f:bc:7b:eb:f1:05:4d:ea:24:85:dc:a1:8f:72:ae:
e7:5f:a6:d4:f4:f6:9c:9b:0d:bc:2d:ca:3f:64:5e:
4b:7d:90:9a:4b:fa:43:47:a1:c6:40:03:22:95:d8:
5a:06:51:6b:09:27:27:43:41:8c:88:28:e0:f3:05:
4d:e5:0a:73:05:e4:1f:1f:ca:e1:8a:2c:a2:cc:13:
ff:78:d4:9a:9f:a3:14:99:03:ad:db:e9:a2:c4:36:
40:13:9c:9d:4e:e4:30:20:a9:7f:d1:c3:e1:1a:5d:
21:5a:13:cf:9f:b8:a8:df:ea:3f:d9:38:33:02:74:
ac:2d:a9:28:d3:0b:6f:3a:dd:f2:e4:48:f9:ec:78:
b7:9f:9f:5a:2e:8d:86:2e:e5:9c:1a:07:8f:37:3d:
f1:64:1b:aa:fb:85:c6:59:6f:8d:ea:f8:50:88:02:
6b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:73:C6:D4:22:DE:BC:4A:18:9B:9D:39:D4:5F:6E:B4:4C:1A:93:88
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/v3PG1CLevEoYm5051F9utEwak4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.143.0/24
176.111.220.0/24
185.127.95.0/24
185.215.225.0-185.215.226.255
193.8.195.0/24
IPv6:
2a0b:ae40:5::-2a0b:ae40:8:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6a:30:39:1e:f6:23:50:19:5c:f0:93:65:b1:16:5b:41:16:a5:
c0:8b:a0:f2:e0:98:f6:76:00:81:90:bd:31:cc:77:35:0d:6e:
78:48:c2:be:b1:c9:09:49:a4:1b:30:a1:0f:86:31:24:44:c0:
4c:94:fb:38:e9:37:eb:78:c0:aa:c7:4b:62:ca:c1:7c:7f:22:
5c:eb:f7:0d:09:4b:ef:bb:59:a9:34:cc:20:f8:35:4b:13:8a:
19:63:97:08:c7:73:be:6c:cc:45:29:df:b7:1c:c0:86:6c:76:
72:de:9b:89:3f:b8:00:2c:1c:c3:d7:1d:26:b0:49:54:ab:a3:
60:a4:33:36:e5:7e:40:04:a9:d4:b9:29:2a:be:cf:ab:2f:a4:
a5:c6:ef:8a:80:38:66:f5:7c:4b:30:ec:dc:1d:c9:08:c0:71:
0a:31:9d:bd:44:82:f8:4f:2b:94:e1:38:4f:70:30:72:a2:4a:
88:dc:ee:cc:60:f7:fd:76:84:bd:01:73:06:62:80:88:b9:37:
da:36:55:14:ff:e4:fd:ef:fc:ef:73:79:e1:16:6c:bd:aa:b8:
4d:a5:e1:f2:1d:3b:fe:01:aa:1f:ec:1c:4c:ea:8b:52:13:96:
1a:16:a2:94:f1:4f:7c:d7:21:68:9e:5f:7d:99:24:dd:9c:90:
19:c0:28:6f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:18:48 2024 by rpki-client on console-ams.rpki-client.org