Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/YUilsL1wpbXq0q8o4EiOivwLdlY.roa
File: YUilsL1wpbXq0q8o4EiOivwLdlY.roa (raw, json)
Hash identifier: SC8LTixnOGNB5rSdSb64nEGROLvVbYprqOUygQgxlMM=
Subject key identifier: 61:48:A5:B0:BD:70:A5:B5:EA:D2:AF:28:E0:48:8E:8A:FC:0B:76:56
Certificate issuer: /CN=edb04a943332768017266f4e5f56c006d98ebbb4
Certificate serial: 01919E8B6B4F884BB2BE58855D65FF3AD03F
Authority key identifier: ED:B0:4A:94:33:32:76:80:17:26:6F:4E:5F:56:C0:06:D9:8E:BB:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/YUilsL1wpbXq0q8o4EiOivwLdlY.roa
Signing time: Thu 29 Aug 2024 14:30:22 +0000
ROA not before: Thu 29 Aug 2024 14:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202276
IP address blocks: 185.251.8.0/23 maxlen: 23
185.251.10.0/23 maxlen: 23
2a03:b8c0::/48 maxlen: 48
2a03:b8c0:1::/48 maxlen: 48
2a03:b8c0:2::/48 maxlen: 48
2a03:b8c0:3::/48 maxlen: 48
2a03:b8c0:5::/48 maxlen: 48
2a03:b8c0:7::/48 maxlen: 48
2a03:b8c0:8::/48 maxlen: 48
2a03:b8c0:9::/48 maxlen: 48
2a03:b8c0:10::/48 maxlen: 48
2a03:b8c0:12::/48 maxlen: 48
2a03:b8c0:13::/48 maxlen: 48
2a03:b8c0:14::/48 maxlen: 48
2a03:b8c0:2f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:8b:6b:4f:88:4b:b2:be:58:85:5d:65:ff:3a:d0:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb04a943332768017266f4e5f56c006d98ebbb4
Validity
Not Before: Aug 29 14:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6148a5b0bd70a5b5ead2af28e0488e8afc0b7656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:53:e7:ec:b5:8b:3a:56:21:0b:53:be:ea:dd:
4d:89:42:a9:63:c3:07:00:1a:ff:16:9a:ed:d8:a7:
a3:04:aa:7b:4d:fc:8d:98:96:b6:21:d2:6e:3f:57:
12:d4:f2:45:13:30:20:53:78:04:20:94:04:9a:ef:
2e:96:d0:a6:47:79:19:c7:2b:6a:bf:55:ce:eb:76:
fd:86:ca:a9:34:9f:1d:3f:cb:81:e0:6b:ed:be:9c:
3f:3f:35:1a:ff:0a:fb:09:16:45:4d:57:72:d1:44:
28:f4:48:5c:da:f2:80:a1:40:6e:5f:ea:49:09:3c:
5a:b8:b7:5b:f7:40:87:8e:b5:44:35:4a:f7:db:ab:
e9:36:e1:71:cc:32:18:c3:b9:36:46:da:90:57:5b:
3b:58:ad:bd:ff:7f:0d:f8:23:f7:30:df:bc:ce:93:
b3:72:f3:95:46:74:86:a6:4b:01:f0:a4:f0:a9:dc:
3d:55:85:13:50:f3:bd:ed:ca:14:ec:8c:f7:12:04:
c5:48:29:fe:6d:c9:36:50:69:8c:4e:39:37:ad:4c:
f4:a5:4d:f9:84:77:ba:d7:27:f5:2c:ea:57:e5:1d:
f3:fd:0c:48:52:3e:27:4e:b2:76:0b:d4:7a:00:5c:
18:c4:f3:f1:6d:d5:48:a0:2a:d4:f5:40:1d:bf:ab:
87:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:48:A5:B0:BD:70:A5:B5:EA:D2:AF:28:E0:48:8E:8A:FC:0B:76:56
X509v3 Authority Key Identifier:
keyid:ED:B0:4A:94:33:32:76:80:17:26:6F:4E:5F:56:C0:06:D9:8E:BB:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/YUilsL1wpbXq0q8o4EiOivwLdlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.8.0/22
IPv6:
2a03:b8c0::/46
2a03:b8c0:5::/48
2a03:b8c0:7::-2a03:b8c0:9:ffff:ffff:ffff:ffff:ffff
2a03:b8c0:10::/48
2a03:b8c0:12::-2a03:b8c0:14:ffff:ffff:ffff:ffff:ffff
2a03:b8c0:2f::/48
Signature Algorithm: sha256WithRSAEncryption
7a:04:77:8b:ed:8d:7d:24:7a:4d:e4:19:85:93:ae:5e:11:13:
a2:14:7b:21:f6:08:4c:aa:56:f4:40:33:79:96:67:8a:8a:7c:
e6:6e:e6:26:2e:bc:78:9a:76:c9:fb:d7:1d:ee:a0:c7:22:f3:
a4:26:80:2b:7c:56:bb:05:db:78:1c:72:fa:c9:3f:79:2f:1a:
57:b2:a9:6d:00:07:a4:b6:1c:dc:ea:ac:13:82:78:34:79:9e:
bb:dc:c5:ae:52:74:5e:d6:a1:1b:b3:fc:84:4c:87:5c:82:e7:
2e:7c:fa:24:39:d1:92:ec:62:c8:ae:88:2d:40:74:14:55:98:
59:cc:1b:5a:09:40:d4:e9:5c:df:fa:77:9a:ff:6c:d8:54:12:
3d:e4:75:71:b6:a2:ea:cd:85:7f:3f:5e:04:bc:6e:08:d0:a0:
bb:67:97:bb:3c:47:27:7c:fa:3d:44:fe:23:6c:3a:52:76:05:
2d:18:50:f0:0e:be:a8:26:72:98:ab:fc:b8:b9:92:ce:99:41:
9c:5f:1c:61:16:34:c9:99:04:01:77:9d:d5:4d:e3:fa:50:c0:
63:86:f4:62:0a:57:0e:0f:89:e7:74:74:a1:0e:df:c6:7b:42:
d7:2b:ff:d3:b4:e6:b9:10:fe:fa:cc:8c:85:b4:d2:da:be:96:
9c:d4:85:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:52:13 2024 by rpki-client on console-fra.rpki-client.org