Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/zveIAmliZCuZLlqTX3KRtpX6Xms.roa
File: zveIAmliZCuZLlqTX3KRtpX6Xms.roa (raw, json)
Hash identifier: ykw9VU++sUDKW3F7PxgKA9+MbUJmIwLgZCq98dGtH7c=
Subject key identifier: CE:F7:88:02:69:62:64:2B:99:2E:5A:93:5F:72:91:B6:95:FA:5E:6B
Certificate issuer: /CN=4568d0a7204560b6356d837bbf1510d9636df63a
Certificate serial: 019125E22A748E7BAD2615B9A9755D777D99
Authority key identifier: 45:68:D0:A7:20:45:60:B6:35:6D:83:7B:BF:15:10:D9:63:6D:F6:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/zveIAmliZCuZLlqTX3KRtpX6Xms.roa
Signing time: Tue 06 Aug 2024 04:11:04 +0000
ROA not before: Tue 06 Aug 2024 04:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202
IP address blocks: 37.114.72.0/21 maxlen: 32
78.110.16.0/20 maxlen: 32
80.245.208.0/20 maxlen: 32
95.131.232.0/21 maxlen: 32
185.56.252.0/22 maxlen: 32
195.38.30.0/24 maxlen: 32
217.168.160.0/20 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:25:e2:2a:74:8e:7b:ad:26:15:b9:a9:75:5d:77:7d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4568d0a7204560b6356d837bbf1510d9636df63a
Validity
Not Before: Aug 6 04:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cef788026962642b992e5a935f7291b695fa5e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b2:6d:9f:38:07:01:b5:2b:74:95:78:4e:13:
88:29:35:5c:2f:d9:4d:db:11:c2:7d:e8:c9:0a:2f:
62:85:89:06:de:63:c3:2f:41:ed:fc:26:bb:0d:0c:
11:30:5f:9b:18:2d:ed:41:33:55:97:c2:f3:7f:bc:
ad:95:65:45:19:2c:90:11:bd:b0:00:fd:78:d6:e3:
16:85:72:6b:7a:aa:8b:ba:f7:5c:a4:0a:41:4d:ca:
e2:12:02:54:d7:6e:f3:65:ac:e8:e3:76:44:88:9d:
fa:d9:ad:39:e8:68:05:12:94:e6:d5:89:b8:a9:62:
30:e5:36:22:8e:10:cc:fc:26:03:37:f9:6a:7d:7c:
ac:91:62:c3:dc:7a:2e:ef:75:36:07:0d:fa:dc:ef:
ce:f2:51:0e:71:ad:e8:c5:08:b4:2e:e1:61:7b:95:
27:53:d1:f2:11:34:15:bc:f6:f0:bb:7f:d4:e6:2c:
27:46:3c:34:f5:23:7c:42:79:6c:04:0b:1f:24:1c:
ea:e9:d0:ef:a2:bf:0d:03:0f:4d:ae:77:23:b4:71:
68:92:13:83:fb:05:0d:7a:d0:c7:1e:dc:af:74:a5:
62:2d:f7:7c:3d:e1:27:30:bc:a7:af:f1:bb:92:a0:
e3:61:2e:7e:e9:4a:11:0d:14:a8:a6:19:51:08:97:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F7:88:02:69:62:64:2B:99:2E:5A:93:5F:72:91:B6:95:FA:5E:6B
X509v3 Authority Key Identifier:
keyid:45:68:D0:A7:20:45:60:B6:35:6D:83:7B:BF:15:10:D9:63:6D:F6:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/zveIAmliZCuZLlqTX3KRtpX6Xms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b0fb0b-b96a-4390-86a8-6fe35ae54a5b/1/RWjQpyBFYLY1bYN7vxUQ2WNt9jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.72.0/21
78.110.16.0/20
80.245.208.0/20
95.131.232.0/21
185.56.252.0/22
195.38.30.0/24
217.168.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:10:af:6b:24:71:11:bc:89:29:45:9e:6f:ff:58:3b:e3:5a:
97:e9:c2:1e:54:5a:9a:5a:ca:00:87:a1:0e:fe:39:6b:2a:94:
0c:3d:be:a2:e1:b6:93:27:60:a5:cd:6f:7c:1c:63:3b:9e:e2:
57:f2:3f:a6:86:06:10:45:04:d3:1a:ed:ac:65:d3:d4:76:e3:
84:fd:93:b0:28:37:a6:5a:6a:38:3c:82:28:6c:99:ef:99:8d:
e9:77:13:0b:e9:10:57:51:81:1a:8f:57:f0:84:e7:21:cc:3e:
f9:c5:5a:3a:3c:bc:3d:b9:4f:1a:46:0e:a1:83:c6:16:02:93:
6f:64:2b:6a:98:a7:ef:a1:dd:55:40:85:66:fb:4f:c4:93:35:
e3:03:fe:4d:84:72:1f:f5:bb:4c:ca:d2:74:5e:2f:42:07:32:
bc:77:1a:7a:9e:6c:6e:9e:45:ca:b3:80:68:08:58:e1:9d:86:
48:4b:ed:f2:fe:5a:8a:df:ba:99:c2:00:6d:c7:67:bd:6f:b7:
86:83:d9:a0:fb:57:a1:7e:3d:7c:48:70:ef:62:cc:0b:c5:61:
c5:a1:e4:52:23:a0:5c:67:0d:0a:5e:32:42:fc:af:c3:6f:76:
23:bc:55:85:c4:5d:fb:d5:2b:d4:c6:cb:c3:39:cd:37:1a:54:
10:6a:f7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 00:27:41 2024 by rpki-client on console-fra.rpki-client.org