Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/DxiPkO6ibPdAUr2P78QorUqel1c.roa
File: DxiPkO6ibPdAUr2P78QorUqel1c.roa (raw, json)
Hash identifier: WNJA461CD6DfESCQGaD+4JpVI8LaEV6Ywt7YZdu6guM=
Subject key identifier: 0F:18:8F:90:EE:A2:6C:F7:40:52:BD:8F:EF:C4:28:AD:4A:9E:97:57
Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Certificate serial: 018E083E5C70161635B4E3E0E4C190AD8A7C
Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/DxiPkO6ibPdAUr2P78QorUqel1c.roa
Signing time: Mon 04 Mar 2024 06:54:48 +0000
ROA not before: Mon 04 Mar 2024 06:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50187
IP address blocks: 91.240.102.0/23 maxlen: 23
91.240.102.0/24 maxlen: 24
91.240.103.0/24 maxlen: 24
185.234.228.0/22 maxlen: 22
185.234.228.0/24 maxlen: 24
185.234.229.0/24 maxlen: 24
185.234.230.0/24 maxlen: 24
185.234.231.0/24 maxlen: 24
195.93.148.0/23 maxlen: 23
195.93.148.0/24 maxlen: 24
195.93.149.0/24 maxlen: 24
212.67.28.0/22 maxlen: 22
212.67.28.0/24 maxlen: 24
212.67.29.0/24 maxlen: 24
212.67.30.0/24 maxlen: 24
212.67.31.0/24 maxlen: 24
2a0e:26c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:3e:5c:70:16:16:35:b4:e3:e0:e4:c1:90:ad:8a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Validity
Not Before: Mar 4 06:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f188f90eea26cf74052bd8fefc428ad4a9e9757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:f1:a1:68:0c:a5:73:97:9d:da:2d:a9:1b:
ea:45:11:13:4e:93:ad:c1:f5:ff:1e:85:32:ea:77:
14:93:ab:c7:3c:6c:21:9e:d4:bd:f0:f0:99:65:8a:
6c:7f:f2:78:a3:c9:7f:b3:c8:14:04:a8:c6:30:01:
f9:2d:98:e4:3d:6a:31:b0:11:98:85:9a:09:d4:29:
66:cb:1c:67:2e:5c:27:38:fa:51:8a:25:18:6c:1a:
d8:ff:f1:0a:b4:9f:bd:ac:88:37:4d:f4:f0:18:6a:
f3:bb:cb:1d:cb:1f:e2:54:93:08:d7:e2:51:d6:61:
7b:1d:64:bb:fb:f4:5b:c9:d8:ba:7b:4e:41:92:b5:
a9:58:82:10:ac:16:b3:da:44:b7:41:82:1f:8b:47:
72:6c:6e:4b:a2:e4:c7:b7:c5:ab:31:48:8c:21:4d:
42:32:aa:32:c7:97:ca:fc:53:cc:d6:d7:b2:95:1b:
be:00:41:22:41:d5:69:fb:f3:62:b9:66:e2:fb:01:
e8:3a:16:50:21:52:65:d0:c8:35:8f:ae:86:85:67:
6c:c4:b9:a9:bd:29:0e:e0:27:9c:7b:0a:ba:49:b4:
04:be:ba:6a:70:47:6b:92:c4:3b:7d:1b:0b:9b:fc:
33:96:81:31:c7:48:41:e1:92:ae:c7:47:75:37:ff:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:18:8F:90:EE:A2:6C:F7:40:52:BD:8F:EF:C4:28:AD:4A:9E:97:57
X509v3 Authority Key Identifier:
keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/DxiPkO6ibPdAUr2P78QorUqel1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.102.0/23
185.234.228.0/22
195.93.148.0/23
212.67.28.0/22
IPv6:
2a0e:26c0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:41:0a:11:75:56:b7:08:9e:7e:df:e8:8f:f6:b1:fe:f5:f0:
a5:1e:42:13:e3:f7:cf:c7:3e:29:7a:63:13:be:63:f8:12:75:
74:f8:a8:3b:b6:91:25:5c:16:62:67:ba:d1:35:2d:bd:c1:97:
cf:71:43:2f:db:4d:c3:2f:2c:16:26:b4:0b:41:82:35:08:62:
35:93:c6:d6:1c:c9:47:69:a5:a1:ee:42:87:83:cd:85:c8:6d:
cf:2b:6c:cd:42:43:bc:b4:6b:d3:35:9d:64:b2:7c:ec:79:57:
56:e2:e9:92:37:02:d3:29:30:fa:2f:86:3a:2c:8a:7b:33:6f:
40:29:f8:10:d1:0c:53:93:33:27:f4:16:1e:7e:3c:45:fb:65:
98:02:91:aa:ff:39:95:bc:fb:70:06:1c:a3:4e:cf:ab:c1:a2:
df:99:df:8f:8f:27:21:92:88:a4:3f:90:17:44:72:0e:6c:32:
50:05:6f:a6:8e:5d:d0:94:70:08:b8:f1:c4:7d:2f:80:77:f1:
ee:05:c0:5b:23:a6:95:67:f0:30:6c:24:b5:85:97:10:d6:ae:
4c:b8:d1:19:f6:4c:f6:8f:2c:96:46:50:00:2b:47:66:8a:62:
3e:1e:d7:74:fd:53:ba:fb:17:38:e5:59:b6:26:ef:39:ca:4c:
78:33:bd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:35:03 2024 by rpki-client on console-ams.rpki-client.org