Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/me0U1Lc0P-SWRpYRIYPYaeptsVw.roa
File: me0U1Lc0P-SWRpYRIYPYaeptsVw.roa (raw, json)
Hash identifier: eEWGYVtSnvwCm2wGlsgSOAa9GoLM2/ezdsof2xbfUpI=
Subject key identifier: 99:ED:14:D4:B7:34:3F:E4:96:46:96:11:21:83:D8:69:EA:6D:B1:5C
Certificate issuer: /CN=aff4242c10e438537e169ab002bf6be81fa2a5ed
Certificate serial: 018F59A5EA39A78FE6C2AD0D88A0AC989730
Authority key identifier: AF:F4:24:2C:10:E4:38:53:7E:16:9A:B0:02:BF:6B:E8:1F:A2:A5:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_QkLBDkOFN-FpqwAr9r6B-ipe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/me0U1Lc0P-SWRpYRIYPYaeptsVw.roa
Signing time: Wed 08 May 2024 19:19:56 +0000
ROA not before: Wed 08 May 2024 19:19:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42910
IP address blocks: 185.135.220.0/24 maxlen: 24
185.135.221.0/24 maxlen: 24
185.135.222.0/24 maxlen: 24
185.135.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/r_QkLBDkOFN-FpqwAr9r6B-ipe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/r_QkLBDkOFN-FpqwAr9r6B-ipe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/r_QkLBDkOFN-FpqwAr9r6B-ipe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:59:a5:ea:39:a7:8f:e6:c2:ad:0d:88:a0:ac:98:97:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff4242c10e438537e169ab002bf6be81fa2a5ed
Validity
Not Before: May 8 19:19:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99ed14d4b7343fe4964696112183d869ea6db15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:4e:f3:88:18:75:b4:85:4a:e7:25:bd:a8:
60:35:e5:28:9a:72:aa:ef:8a:4c:23:11:6e:27:4e:
8c:59:a3:d1:7f:1c:e0:56:f8:c0:64:37:17:32:d7:
49:ae:79:6f:50:5b:16:ed:93:80:20:4e:67:4c:75:
bc:c8:a0:1d:da:2c:ab:3e:d0:9b:14:75:9f:dd:1a:
36:c6:e2:14:f0:5d:3e:a4:7d:5b:1d:c0:0f:6c:51:
17:8e:67:c4:58:63:f7:f6:5a:3c:79:75:c1:2a:c8:
5d:5a:e8:34:97:49:a2:b1:c7:e1:4a:30:3b:09:e4:
18:db:fa:48:0a:94:ea:f1:fe:04:9a:48:bf:7d:ac:
d1:d4:a2:c8:5b:8e:cf:54:7d:89:9d:1b:bc:f6:f0:
ab:28:b9:b3:7b:32:af:13:df:7d:ed:4c:c8:1c:be:
ca:69:3a:ea:8a:50:34:4b:d1:04:2c:2e:c9:b7:ff:
2e:b1:1c:c6:b2:00:63:2e:ee:62:36:70:f4:98:ab:
54:b8:7f:f4:9a:8f:cb:ec:03:d6:67:9f:36:a3:3b:
26:2d:20:96:66:de:a9:dc:bc:c5:bf:88:84:f3:bf:
38:09:8a:00:f6:32:cd:2a:b5:4a:35:a4:09:1f:e7:
0b:44:4a:64:6c:65:b9:ba:c1:8c:a0:41:b1:ca:45:
3b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:ED:14:D4:B7:34:3F:E4:96:46:96:11:21:83:D8:69:EA:6D:B1:5C
X509v3 Authority Key Identifier:
keyid:AF:F4:24:2C:10:E4:38:53:7E:16:9A:B0:02:BF:6B:E8:1F:A2:A5:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_QkLBDkOFN-FpqwAr9r6B-ipe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/me0U1Lc0P-SWRpYRIYPYaeptsVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b9a283-5c8d-4628-80bc-ee7ba0e9f7ca/1/r_QkLBDkOFN-FpqwAr9r6B-ipe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.220.0/22
Signature Algorithm: sha256WithRSAEncryption
95:18:10:8e:2b:1f:1f:80:6f:70:c8:dc:33:11:af:a4:c5:ce:
43:20:4f:8d:70:63:b4:0c:5c:55:2e:21:e8:56:a4:96:ca:09:
be:35:37:36:19:ce:a7:57:b6:88:6a:cc:22:85:b7:79:f2:31:
f8:8d:fc:cf:44:2a:f9:87:85:2a:4c:d3:60:f1:ae:39:2d:07:
12:c1:8a:f3:42:89:bc:22:7c:63:44:b5:fd:3e:0e:be:f5:96:
51:34:7b:9a:0e:52:fd:82:fb:d9:78:1c:aa:cb:6a:be:c8:f6:
0f:61:cb:33:6e:bf:e1:24:10:d5:0f:a8:0d:eb:19:68:2f:ec:
b0:0f:6e:af:3b:8a:90:fa:9d:6a:49:94:b7:66:71:f3:7a:0e:
43:40:7e:82:79:2e:26:2e:55:ef:76:84:d5:22:fe:c6:80:3e:
49:4f:fb:68:6f:4a:4d:d5:0a:5e:7a:51:d6:12:75:4f:37:28:
db:a6:09:c1:c2:97:c8:bb:4f:1b:53:b1:bf:2c:ba:81:ca:a8:
6d:f7:cb:24:6b:c8:c1:ec:84:37:6d:8b:2f:72:b2:a3:b4:45:
e5:b6:10:cf:34:76:17:fe:15:87:5b:83:38:e9:1d:02:f5:71:
7b:0b:ec:e5:f9:7d:12:d7:2d:10:75:32:62:1a:f5:40:3d:49:
25:1f:e9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:01 2024 by rpki-client on console-fra.rpki-client.org