Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wMYfs3BmpFNUs-55jxYiwR3MeZE.roa
File: wMYfs3BmpFNUs-55jxYiwR3MeZE.roa (raw, json)
Hash identifier: l+pkupojBKVtXTzKzdBIskOjqc0stU5Y8eOmLq3UN3s=
Subject key identifier: C0:C6:1F:B3:70:66:A4:53:54:B3:EE:79:8F:16:22:C1:1D:CC:79:91
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018FDEBF91A678623E51D2A21CC13D0A949A
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wMYfs3BmpFNUs-55jxYiwR3MeZE.roa
Signing time: Mon 03 Jun 2024 15:37:27 +0000
ROA not before: Mon 03 Jun 2024 15:37:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 86.107.178.0/24 maxlen: 24
86.107.179.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
89.36.94.0/24 maxlen: 24
89.36.95.0/24 maxlen: 24
89.41.180.0/24 maxlen: 24
89.41.181.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
185.101.107.0/24 maxlen: 24
188.211.233.0/24 maxlen: 24
188.241.218.0/24 maxlen: 24
188.241.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:bf:91:a6:78:62:3e:51:d2:a2:1c:c1:3d:0a:94:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jun 3 15:37:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0c61fb37066a45354b3ee798f1622c11dcc7991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:fb:14:70:a7:87:2d:17:4d:21:a5:80:cf:
59:04:db:a6:f6:8b:2c:bf:3b:76:6f:76:b1:71:c5:
21:3e:f2:06:fc:34:3c:cf:f0:d5:31:f0:56:8b:14:
62:3f:71:c5:0d:9e:aa:b6:11:28:d1:7a:88:aa:8e:
aa:4d:75:7b:7c:81:c0:16:14:cb:0a:ae:e2:ad:76:
50:cd:6b:28:ea:ce:81:03:f2:1e:14:3c:9d:a6:1c:
dd:86:84:48:49:95:52:79:05:26:42:1b:6a:b2:dc:
18:27:5d:cf:22:5b:78:1a:e7:8a:32:9b:52:6b:28:
3d:15:71:65:3f:8b:ad:cc:d2:ce:e6:4a:ce:6d:64:
ec:bb:b9:6c:d5:9c:bc:1f:e3:8f:ca:04:c0:33:14:
a0:50:7b:7c:85:2b:2c:2f:b9:98:86:f4:0e:c6:21:
ee:b3:76:1e:90:6d:0e:53:d8:6d:f9:1b:b2:67:9f:
bb:8a:67:46:e1:ca:a2:ce:2f:ac:11:1b:f7:1d:ea:
bd:86:0f:40:6f:a7:20:ff:ac:71:68:61:54:41:5b:
02:7d:d0:19:57:de:a4:71:ca:b2:b3:c1:44:42:cb:
78:c5:77:f2:61:98:5b:9d:83:70:40:bf:08:79:8d:
97:b7:90:f1:c3:8e:fb:d4:00:d7:67:d9:97:7c:62:
1e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C6:1F:B3:70:66:A4:53:54:B3:EE:79:8F:16:22:C1:1D:CC:79:91
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wMYfs3BmpFNUs-55jxYiwR3MeZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.178.0/23
89.34.27.0/24
89.36.94.0/23
89.41.180.0/23
93.114.194.0/24
185.101.107.0/24
188.211.233.0/24
188.241.218.0/23
Signature Algorithm: sha256WithRSAEncryption
39:8b:75:dc:1e:c9:92:fd:68:9c:de:2c:40:36:42:60:ca:c1:
72:88:5a:f9:30:d6:d5:1d:0b:4a:b6:bc:56:98:f2:5a:38:bb:
e3:2d:10:b3:47:72:77:8e:c3:4f:a9:ff:53:c0:29:b7:0b:38:
de:d6:05:7e:1a:d7:ba:bb:fd:f6:8d:df:70:b5:9e:cd:fc:43:
36:c0:cb:76:7e:c9:b8:14:e1:49:7a:71:a5:37:33:af:41:1c:
5c:5c:e1:57:43:d3:0d:42:10:24:7e:bb:e1:6c:18:5f:84:64:
42:a8:d2:2f:29:66:c0:d5:c3:1b:08:35:33:b4:ae:b7:eb:42:
43:76:8a:64:50:a3:97:ce:a7:53:49:a9:ed:86:b1:32:17:39:
74:91:be:5a:0f:10:e7:a9:65:01:d3:00:9a:81:95:be:b7:a6:
7f:57:df:b7:08:c8:dd:83:40:fb:2b:ab:9a:89:98:3e:64:1b:
60:df:d4:41:11:20:23:da:a2:90:ca:2c:b9:c3:c4:0c:81:9c:
5a:18:4f:ca:26:4d:ae:e2:09:ca:95:92:e0:a8:f6:a3:58:e6:
cb:bd:ee:dd:d0:5f:06:b2:6e:87:1d:49:cd:9d:39:0a:e7:59:
83:50:7b:79:67:8e:6a:f2:b9:bc:fc:60:c4:a4:0b:8d:ce:ff:
3a:5a:13:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:54:40 2024 by rpki-client on console-fra.rpki-client.org