Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/ZiaJmk30kLDWW8Ag8KDdj4gz4U8.roa
File: ZiaJmk30kLDWW8Ag8KDdj4gz4U8.roa (raw, json)
Hash identifier: EDFLqqZm5A8qfnRVorfeMyopMGhosyxugqkLlhOqJ7A=
Subject key identifier: 66:26:89:9A:4D:F4:90:B0:D6:5B:C0:20:F0:A0:DD:8F:88:33:E1:4F
Certificate issuer: /CN=701624ffc5721c158e4cc9bb071eb4fb87d88c24
Certificate serial: 018CC2DB0BFF85D22D1853C19E77529A2A75
Authority key identifier: 70:16:24:FF:C5:72:1C:15:8E:4C:C9:BB:07:1E:B4:FB:87:D8:8C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/ZiaJmk30kLDWW8Ag8KDdj4gz4U8.roa
Signing time: Mon 01 Jan 2024 02:29:44 +0000
ROA not before: Mon 01 Jan 2024 02:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47329
IP address blocks: 79.139.48.0/22 maxlen: 22
185.63.108.0/22 maxlen: 22
185.39.161.0/24 maxlen: 24
185.39.163.0/24 maxlen: 24
185.39.160.0/22 maxlen: 22
185.63.200.0/22 maxlen: 22
185.67.68.0/22 maxlen: 22
185.116.252.0/24 maxlen: 24
185.116.253.0/24 maxlen: 24
195.62.64.0/23 maxlen: 23
195.62.65.0/24 maxlen: 24
185.116.254.0/24 maxlen: 24
185.116.255.0/24 maxlen: 24
79.139.112.0/22 maxlen: 22
185.67.8.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 18 Jun 2024 10:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:0b:ff:85:d2:2d:18:53:c1:9e:77:52:9a:2a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=701624ffc5721c158e4cc9bb071eb4fb87d88c24
Validity
Not Before: Jan 1 02:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6626899a4df490b0d65bc020f0a0dd8f8833e14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9a:63:49:3c:f1:cf:5f:fb:10:dd:aa:c8:88:
4e:ef:8b:3b:90:f8:9b:81:d4:a3:71:99:f0:e6:b4:
2b:18:81:af:01:bd:04:0f:d0:67:63:6c:f3:4c:e6:
35:fa:0a:19:7f:9d:4a:ba:25:a4:6c:43:e0:fa:50:
da:2c:8f:40:89:57:b9:f3:25:31:cf:ac:a3:56:05:
4e:4f:34:d4:60:14:c8:dc:72:24:ff:29:9b:3a:fa:
ef:47:56:5f:4d:dc:b4:9e:ad:44:02:ae:ee:5b:f0:
eb:c7:84:97:6f:c8:c4:5e:0e:9a:26:2b:ba:d3:4a:
5f:6f:2b:f4:2b:be:ac:e1:68:fd:75:f4:c7:67:89:
4d:a6:4b:3b:59:6d:4b:05:b5:a1:13:9d:3a:70:01:
ae:15:90:f5:43:e0:5d:e3:64:bb:1e:11:e2:c0:d2:
bb:74:be:a4:37:33:67:0f:7e:1c:08:26:50:88:57:
b5:fe:19:77:90:6e:13:be:ff:37:9f:4d:1c:aa:ff:
43:98:8a:af:01:58:33:39:ab:93:d4:d2:83:82:c8:
3d:4a:af:74:16:d4:e1:7a:ba:46:c5:f2:44:28:19:
ba:cb:a0:5a:47:5f:1c:e1:aa:ac:c4:a8:08:fd:fb:
eb:58:44:af:7d:d3:7d:50:dc:78:e5:e4:01:5e:b5:
2c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:26:89:9A:4D:F4:90:B0:D6:5B:C0:20:F0:A0:DD:8F:88:33:E1:4F
X509v3 Authority Key Identifier:
keyid:70:16:24:FF:C5:72:1C:15:8E:4C:C9:BB:07:1E:B4:FB:87:D8:8C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/ZiaJmk30kLDWW8Ag8KDdj4gz4U8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.139.48.0/22
79.139.112.0/22
185.39.160.0/22
185.63.108.0/22
185.63.200.0/22
185.67.8.0/22
185.67.68.0/22
185.116.252.0/22
195.62.64.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:ac:f7:a0:9b:fb:66:0a:51:c4:41:06:d2:82:78:a0:de:77:
71:e5:d6:cb:2c:ce:89:b2:b2:ec:0d:f2:07:0d:39:57:13:fe:
7f:af:04:37:60:6d:98:63:f6:2d:7a:e5:cb:bb:3c:bb:0e:46:
b4:20:f9:7e:e9:31:7e:13:53:8d:14:ca:bb:37:4a:be:59:72:
47:66:22:ac:73:84:44:0e:72:14:fb:91:9b:b1:54:48:c5:e1:
06:92:f7:cb:15:84:0d:59:81:b9:fc:83:ca:76:9c:c3:6e:b1:
a6:0b:40:de:0e:2d:f8:6c:e4:08:b5:3a:7d:72:0b:d7:42:01:
4b:4e:70:f9:74:3e:d2:8d:d6:b8:5b:37:87:c5:72:e0:f6:f7:
c8:30:24:61:64:b4:99:dd:d0:a3:e6:fd:a4:2c:11:98:d7:7d:
f5:f2:22:d0:d6:86:b9:af:be:c7:1e:74:57:76:18:2d:3f:12:
c7:73:43:aa:9d:8e:87:38:7e:17:e6:a0:88:74:f3:14:72:4e:
09:61:94:5b:99:5c:c3:4c:03:b9:fa:3f:7e:85:aa:a3:76:b5:
57:f7:ae:93:32:4f:c7:b8:4b:bc:8e:33:fe:9d:61:05:ad:4e:
58:4a:1d:a3:2a:2b:69:0f:17:07:9d:93:15:26:30:c7:b8:67:
56:53:48:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 13:06:35 2024 by rpki-client on console-ams.rpki-client.org