Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/OMveuboZb4VUvAKuhKykySXRnjk.roa
File: OMveuboZb4VUvAKuhKykySXRnjk.roa (raw, json)
Hash identifier: d8cVi308rmPrjjyF0+SCK760pptrI7DaWHmvHow/6+0=
Subject key identifier: 38:CB:DE:B9:BA:19:6F:85:54:BC:02:AE:84:AC:A4:C9:25:D1:9E:39
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018CC56DF7E70380C911F159C5C95D18D87E
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/OMveuboZb4VUvAKuhKykySXRnjk.roa
Signing time: Mon 01 Jan 2024 14:29:27 +0000
ROA not before: Mon 01 Jan 2024 14:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200088
IP address blocks: 5.44.46.0/24 maxlen: 24
5.44.47.0/24 maxlen: 24
185.166.196.0/24 maxlen: 24
185.166.197.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
37.220.83.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f7:e7:03:80:c9:11:f1:59:c5:c9:5d:18:d8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 1 14:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38cbdeb9ba196f8554bc02ae84aca4c925d19e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:18:35:36:c2:e0:d1:30:63:ec:d1:ea:d1:a7:
51:63:c1:32:37:a8:db:be:ed:aa:bf:cd:20:b2:30:
dc:a1:d2:07:9e:b4:6e:d0:d1:c8:6e:f2:3a:70:89:
95:db:1b:74:8b:05:f2:88:fc:01:78:25:fd:0f:f9:
c1:62:8a:7c:9c:52:3f:a7:6d:52:e4:05:f2:f4:b4:
23:56:dd:fa:41:3f:8b:d0:09:b6:08:b8:02:6e:a9:
ff:ad:87:de:f5:58:26:df:16:02:59:df:2e:de:50:
48:12:52:eb:1b:bf:fc:e4:2a:6f:11:39:23:aa:d2:
3b:bf:eb:b0:de:47:24:8e:ee:77:00:aa:01:a0:94:
fd:71:b8:d4:8c:3b:f7:1b:14:d5:96:93:7c:58:74:
08:87:c9:c3:db:67:36:e4:fc:ba:1e:11:92:2a:33:
9a:3d:bc:55:97:a9:22:03:42:2b:ff:7e:01:99:c6:
64:49:5f:d3:b4:69:91:f8:d2:52:6d:a2:a3:37:db:
44:e0:39:6a:06:b6:a2:0e:44:2d:c1:8a:07:c6:21:
b7:67:8e:38:2c:56:f7:a8:f7:08:9f:d9:3c:fa:11:
f4:67:31:87:4c:bb:91:39:8c:bb:a7:93:db:6a:fa:
d2:b0:8b:a4:c9:79:e7:6c:3a:b8:3b:9b:c3:49:de:
d5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CB:DE:B9:BA:19:6F:85:54:BC:02:AE:84:AC:A4:C9:25:D1:9E:39
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/OMveuboZb4VUvAKuhKykySXRnjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.46.0/23
37.220.81.0-37.220.83.255
45.95.235.0/24
81.200.154.0-81.200.157.255
89.191.226.0/24
185.166.196.0/23
194.31.173.0-194.31.175.255
Signature Algorithm: sha256WithRSAEncryption
6a:c6:74:6a:f8:d2:2b:b9:69:69:4a:18:81:73:96:79:d3:07:
d1:65:77:b0:90:52:d8:c6:69:8e:9a:72:e9:1b:82:54:a7:47:
33:82:be:33:74:bf:23:41:03:5f:41:b7:18:27:14:95:00:3c:
f4:5b:63:c5:9f:c4:c8:90:ad:01:0d:67:f5:c8:11:da:df:8d:
36:cf:3c:68:bb:f6:e8:74:56:c5:ac:96:1d:96:ee:56:d5:e9:
34:d8:84:f3:f7:8f:53:6f:b1:84:29:14:60:09:c7:1a:d8:93:
ae:54:a0:e9:92:9f:e2:85:ab:7b:b2:76:3a:b6:6d:52:4f:36:
cc:ae:35:9d:0c:2e:43:89:16:51:2f:86:8b:86:e6:5c:2e:db:
15:e5:4f:6d:c6:f4:e8:83:30:76:0e:8c:6c:b4:73:59:5f:f0:
06:23:fe:b9:30:bc:82:af:f9:5e:73:e6:73:e8:b0:7f:de:2d:
c6:c1:81:4a:6b:3f:14:0a:71:16:f4:a7:3e:1b:51:f9:08:17:
7f:9c:f2:57:6c:09:75:8c:85:1e:30:ba:74:8e:ad:8b:a9:a4:
39:57:fd:f4:e7:62:4d:31:6b:d2:f9:01:b8:a7:26:c1:54:83:
24:2a:64:cf:26:67:8d:e1:0a:3c:32:7e:34:db:c8:0d:81:0f:
b0:66:51:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:06 2024 by rpki-client on console-fra.rpki-client.org