Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/K7e9xRY5XcwkODCl9ROBsNE36oo.roa
File: K7e9xRY5XcwkODCl9ROBsNE36oo.roa (raw, json)
Hash identifier: T+0TjMpFVgOI+Frt+8yBazatfg42V6EvGLUgmCv7GVM=
Subject key identifier: 2B:B7:BD:C5:16:39:5D:CC:24:38:30:A5:F5:13:81:B0:D1:37:EA:8A
Certificate issuer: /CN=71051b0e2ce9a4c9e6121e983d165feab87ec354
Certificate serial: 018F80CCA27943C1EF9B3B302164755F19C5
Authority key identifier: 71:05:1B:0E:2C:E9:A4:C9:E6:12:1E:98:3D:16:5F:EA:B8:7E:C3:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cQUbDizppMnmEh6YPRZf6rh-w1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/K7e9xRY5XcwkODCl9ROBsNE36oo.roa
Signing time: Thu 16 May 2024 09:47:25 +0000
ROA not before: Thu 16 May 2024 09:47:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 81.92.80.0/24 maxlen: 24
81.92.81.0/24 maxlen: 24
81.92.84.0/24 maxlen: 24
81.92.85.0/24 maxlen: 24
81.92.86.0/24 maxlen: 24
81.92.87.0/24 maxlen: 24
81.92.88.0/24 maxlen: 24
81.92.89.0/24 maxlen: 24
81.92.90.0/24 maxlen: 24
81.92.91.0/24 maxlen: 24
81.92.94.0/24 maxlen: 24
81.92.95.0/24 maxlen: 24
152.89.172.0/24 maxlen: 24
185.65.56.0/24 maxlen: 24
185.65.58.0/24 maxlen: 24
2a01:c8::/48 maxlen: 48
2a01:c8:1::/48 maxlen: 48
2a01:c8:2::/48 maxlen: 48
2a01:c8:100::/48 maxlen: 48
2a01:c8:101::/48 maxlen: 48
2a01:c8:200::/48 maxlen: 48
2a01:c8:300::/48 maxlen: 48
2a01:c8:ff00::/48 maxlen: 48
2a09:35c0:102::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/cQUbDizppMnmEh6YPRZf6rh-w1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/cQUbDizppMnmEh6YPRZf6rh-w1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/cQUbDizppMnmEh6YPRZf6rh-w1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:cc:a2:79:43:c1:ef:9b:3b:30:21:64:75:5f:19:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71051b0e2ce9a4c9e6121e983d165feab87ec354
Validity
Not Before: May 16 09:47:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bb7bdc516395dcc243830a5f51381b0d137ea8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:3b:87:75:36:a3:67:3a:45:d7:3c:07:5f:
b9:82:4f:cf:e4:1f:5d:26:bd:eb:85:b6:d2:c7:0c:
0a:0e:75:3d:70:08:41:e5:2f:c8:ac:42:4c:99:84:
17:c9:6d:11:63:66:f8:0f:b7:52:1e:a8:a3:3b:fd:
0b:e9:80:48:4a:ad:4f:08:b9:8f:fc:61:e6:05:28:
79:83:15:e7:af:11:e3:f8:c8:6e:55:7a:74:02:3e:
f2:6d:56:09:f5:03:62:9b:dc:8f:64:db:87:7e:28:
37:f6:67:a1:72:2e:2f:e3:50:5c:77:1d:9d:0a:48:
06:bf:6e:49:ba:81:7e:0a:d9:a9:d3:a3:b6:bc:ae:
ab:7d:13:31:39:49:e4:7e:00:b0:07:51:dc:db:c1:
33:40:c1:3e:cc:5b:f6:ca:0f:c6:c7:6a:c0:58:e2:
a7:73:b5:8d:10:3d:f2:91:f9:37:13:03:5b:c4:1a:
24:b5:20:ab:80:9d:07:dc:f0:8e:90:66:10:3e:b0:
ef:cd:f1:a9:81:e8:37:cd:8e:e8:42:26:03:ec:2b:
8c:4b:81:19:bb:cf:7f:00:94:ea:9f:04:fb:70:56:
00:25:fe:50:67:42:af:97:6d:9c:b3:50:b2:2f:33:
82:eb:f2:10:aa:fd:e3:49:0e:9c:75:55:b3:63:e9:
c8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B7:BD:C5:16:39:5D:CC:24:38:30:A5:F5:13:81:B0:D1:37:EA:8A
X509v3 Authority Key Identifier:
keyid:71:05:1B:0E:2C:E9:A4:C9:E6:12:1E:98:3D:16:5F:EA:B8:7E:C3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cQUbDizppMnmEh6YPRZf6rh-w1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/K7e9xRY5XcwkODCl9ROBsNE36oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/cQUbDizppMnmEh6YPRZf6rh-w1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.80.0/23
81.92.84.0-81.92.91.255
81.92.94.0/23
152.89.172.0/24
185.65.56.0/24
185.65.58.0/24
IPv6:
2a01:c8::-2a01:c8:2:ffff:ffff:ffff:ffff:ffff
2a01:c8:100::/47
2a01:c8:200::/48
2a01:c8:300::/48
2a01:c8:ff00::/48
2a09:35c0:102::/48
Signature Algorithm: sha256WithRSAEncryption
0e:b8:ab:59:0b:cd:fa:b3:0e:13:41:b7:6e:a7:42:4f:4f:28:
c6:e0:a7:03:29:af:16:15:a3:88:a1:f9:9a:13:d1:ed:83:0c:
f3:c0:44:bd:71:28:ca:b1:d4:4b:2f:f2:26:9c:07:aa:c4:d2:
35:b8:12:a4:b9:49:70:48:3d:12:6d:1b:b6:ed:02:ae:b1:66:
7f:f1:f4:19:be:ed:1e:a6:f6:fd:1f:83:fe:7a:fe:f7:17:98:
04:98:5a:fd:6b:a7:6a:80:de:4c:28:32:4f:9e:43:db:01:9d:
ed:c0:4d:8f:1c:0c:1d:76:5a:0f:27:a4:06:29:17:b4:77:96:
4f:00:ee:a1:36:df:89:d7:8e:4f:ee:8d:83:34:7f:00:12:ef:
eb:bb:00:b1:ee:8a:1d:a3:00:a6:a8:fb:3c:db:9a:82:bb:8d:
54:ed:93:59:47:49:cb:ec:22:6f:d9:c7:81:17:2d:81:c5:52:
32:cf:c2:bd:0f:3e:df:21:e1:32:35:fa:dd:e6:cc:27:2d:12:
07:9c:05:b9:9f:68:a5:ef:96:eb:d1:bf:3e:0c:c2:61:1b:18:
42:4d:8c:da:9e:5e:54:71:c3:81:3e:a4:7b:fe:05:ed:83:38:
9c:db:b6:fe:3c:74:ff:20:64:40:86:57:0c:2c:4d:ae:d4:27:
c0:4c:22:90
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jun 7 21:35:15 2024 by rpki-client on console-fra.rpki-client.org