Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/IMxi3zzao0ahsLtdYfjLz4gE--c.roa
File: IMxi3zzao0ahsLtdYfjLz4gE--c.roa (raw, json)
Hash identifier: f+C30nEWVMoAFpSqxshfgT7Gd04AFotdYy322/PDVe4=
Subject key identifier: 20:CC:62:DF:3C:DA:A3:46:A1:B0:BB:5D:61:F8:CB:CF:88:04:FB:E7
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018FBB66BA16C81CD8657EC7D0A05614162B
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/IMxi3zzao0ahsLtdYfjLz4gE--c.roa
Signing time: Mon 27 May 2024 18:53:42 +0000
ROA not before: Mon 27 May 2024 18:53:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 45.132.80.0/22 maxlen: 24
91.238.92.0/24 maxlen: 24
91.239.149.0/24 maxlen: 24
91.244.198.0/24 maxlen: 24
176.105.228.0/24 maxlen: 24
185.177.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 11:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bb:66:ba:16:c8:1c:d8:65:7e:c7:d0:a0:56:14:16:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: May 27 18:53:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20cc62df3cdaa346a1b0bb5d61f8cbcf8804fbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:ad:12:cd:da:53:f6:e0:aa:f7:7f:4e:4a:
c1:c6:08:4a:6c:6a:3a:61:34:da:a8:e7:f7:3c:30:
56:11:cb:0d:92:5c:99:5a:7e:1a:00:a3:d8:b4:b0:
0f:47:48:1c:23:11:17:f1:e8:f7:29:0f:a4:7c:9f:
56:a9:18:5a:ef:20:0c:a9:28:4b:52:dc:38:7c:e2:
a7:fc:f1:40:86:dc:97:85:57:9b:bb:da:99:75:22:
ea:a7:cd:b7:6e:8d:85:f9:ab:df:f5:cc:e6:fa:ec:
ea:e9:93:35:67:0d:7e:c7:c5:4f:e0:cf:8a:ff:86:
7c:e5:45:3c:75:75:1c:91:b9:c2:9d:cf:6d:4f:cd:
50:a5:90:44:4f:f6:63:0f:e0:7c:f1:f4:86:e9:55:
81:bc:af:f6:6b:70:7f:0e:64:95:87:80:85:30:8b:
67:6f:b0:31:c7:0a:a4:87:7d:d5:03:75:9a:f1:55:
16:69:c5:55:0a:28:d3:a2:18:af:07:4c:39:d3:52:
d1:13:5f:f6:6b:9c:39:24:73:8e:26:5f:47:a2:29:
d9:46:5a:40:69:b7:d2:8f:4a:d6:87:36:f7:0d:21:
42:10:cc:1f:88:d1:13:ac:90:dd:83:2c:39:0a:ba:
a0:a7:6c:d0:06:20:e9:d8:fd:cb:10:47:7d:1b:76:
d1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CC:62:DF:3C:DA:A3:46:A1:B0:BB:5D:61:F8:CB:CF:88:04:FB:E7
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/IMxi3zzao0ahsLtdYfjLz4gE--c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
91.238.92.0/24
91.239.149.0/24
91.244.198.0/24
176.105.228.0/24
185.177.27.0/24
Signature Algorithm: sha256WithRSAEncryption
66:15:54:cd:38:5d:f2:c0:bd:da:4a:ae:fb:17:9b:ed:ad:e3:
f1:41:7e:20:7a:8c:cd:8c:bc:d4:18:4a:af:ff:c4:bf:44:8b:
47:ed:03:b7:dc:4f:15:07:ea:f1:ad:62:cd:fb:fc:d8:1e:22:
6c:3d:5d:26:55:a0:c3:79:64:37:87:56:3e:a0:37:3a:ef:46:
41:bb:97:8b:df:1f:42:a9:d7:a8:ce:c9:d2:6e:b6:ea:52:3b:
fc:04:22:08:38:d2:27:fd:ae:b0:1b:dd:16:a2:9b:b3:3a:6b:
c5:a7:b1:66:18:4c:04:6c:8d:b1:06:d1:91:ae:87:71:ec:7c:
50:da:40:b1:62:5d:5e:48:61:8b:a7:f0:cb:3b:a8:91:e2:30:
d8:7b:fa:5a:b4:3e:0e:6d:30:8c:0f:7d:eb:fe:ef:1f:f2:34:
5b:01:d2:70:d6:63:9c:43:10:15:2e:41:b0:99:a5:b9:3f:73:
ea:6b:c5:0d:f8:53:9a:8d:8b:cb:e4:c8:23:43:ae:c3:62:02:
9d:cc:fe:e4:48:77:4e:c9:90:79:20:37:9b:5b:89:83:98:6f:
31:77:f2:1f:b7:51:c4:e6:52:e2:f6:68:60:f0:60:6b:bc:55:
c5:58:6c:df:36:fc:f5:4a:4c:f6:3f:95:59:aa:48:c5:36:cd:
ed:40:eb:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 17:30:16 2024 by rpki-client on console-ams.rpki-client.org