Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/J115rPepxn5pIj5m2gjQGIf5kXA.roa
File: J115rPepxn5pIj5m2gjQGIf5kXA.roa (raw, json)
Hash identifier: 8bXTwYx5cQyLGGG/KfEx1T/45FRcGWYDTrIaxfI9EcQ=
Subject key identifier: 27:5D:79:AC:F7:A9:C6:7E:69:22:3E:66:DA:08:D0:18:87:F9:91:70
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 019130A069003706054C94864122B03E033D
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/J115rPepxn5pIj5m2gjQGIf5kXA.roa
Signing time: Thu 08 Aug 2024 06:15:04 +0000
ROA not before: Thu 08 Aug 2024 06:15:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 185.98.130.0/24 maxlen: 24
185.135.132.0/23 maxlen: 24
185.135.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:30:a0:69:00:37:06:05:4c:94:86:41:22:b0:3e:03:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Aug 8 06:15:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=275d79acf7a9c67e69223e66da08d01887f99170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ea:37:6f:2c:ec:e6:f5:3a:8a:3d:38:c7:c5:
c7:2e:d6:c6:ac:2b:f8:e2:bf:8f:9b:5a:e7:da:c8:
fb:22:b9:68:11:4a:c8:4a:b7:da:45:1d:ee:00:d2:
fc:f6:47:ab:63:64:0a:9a:b6:46:46:c1:17:0d:46:
65:d5:32:80:95:73:d3:4b:5e:69:b6:41:de:25:d7:
6c:2f:68:63:ff:9e:33:bd:67:b5:51:39:47:e6:e7:
ca:66:a5:12:e7:df:78:f0:3d:e6:4c:e8:d8:d9:fa:
56:71:56:51:28:47:7b:6c:2d:60:a9:f8:c3:a3:8b:
15:79:73:48:9a:d4:ce:6f:6e:64:e6:11:0b:74:34:
70:f5:df:f5:04:3d:4b:b8:ae:2f:16:8d:c2:b5:84:
de:0e:18:27:8b:ad:99:c6:5d:4d:bb:24:fe:d9:77:
8b:39:b6:20:8f:cb:c1:7a:4d:57:b8:7c:cf:95:af:
3c:92:a9:e6:67:57:32:8d:8f:a5:c3:50:16:e1:79:
2d:9a:d5:27:d3:71:de:d3:76:8b:40:c3:eb:df:17:
92:1d:e0:f0:ec:8f:af:50:ac:df:e5:de:a1:8c:41:
5c:46:70:7c:47:83:27:66:d9:98:50:ec:55:26:c3:
d0:e5:95:39:55:30:3f:2e:c1:2b:05:87:d0:da:f1:
7d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5D:79:AC:F7:A9:C6:7E:69:22:3E:66:DA:08:D0:18:87:F9:91:70
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/J115rPepxn5pIj5m2gjQGIf5kXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.130.0/24
185.135.132.0/23
Signature Algorithm: sha256WithRSAEncryption
41:0c:43:b5:af:be:5c:96:ee:b1:32:12:1c:1b:ca:4e:b1:04:
39:66:c8:2a:76:27:9c:da:b5:50:ba:54:28:2b:f3:b5:2f:39:
99:ec:e0:7d:ba:d4:e4:41:f8:26:13:b6:ae:22:fb:c9:2e:25:
75:7e:d6:25:cd:5f:35:4c:c8:fd:b3:4c:3c:18:c0:9d:42:2c:
d5:d7:49:48:b1:31:e6:57:51:7b:20:4a:a8:2d:c2:bd:6e:d4:
5a:45:56:d0:7f:e5:31:44:47:da:12:5e:3f:ef:10:a3:d1:b9:
86:9e:c7:30:56:76:31:25:f7:a6:83:26:69:df:10:65:ba:24:
e9:65:5b:75:9a:12:cb:04:cd:c9:7b:2f:6d:1d:e5:5d:81:a6:
b1:90:6c:b9:e7:eb:dd:5c:9d:89:d9:2e:05:96:bd:4b:da:c9:
8e:b6:c6:d6:78:15:fd:30:13:e3:f8:7d:0f:02:95:fa:e6:81:
3c:16:9b:2a:f4:c0:80:4e:66:67:c1:a1:7e:d4:66:5c:4c:b3:
91:d9:a0:05:41:59:de:bb:84:e1:9a:24:90:d9:14:36:07:ef:
e8:16:6b:4e:b0:d5:cf:a9:ed:09:4d:02:29:e2:5f:d0:e0:9a:
b4:41:21:57:50:ff:45:63:6d:91:04:57:b0:c7:a6:34:fe:79:
91:1d:34:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:24:19 2024 by rpki-client on console-ams.rpki-client.org