Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/4OXazsZoVc98bxKG3-7sMB-QJ4c.roa
File: 4OXazsZoVc98bxKG3-7sMB-QJ4c.roa (raw, json)
Hash identifier: RTYdF89F5qmCN+agXisNm8YvqKpyqWohflFEWIOnnfQ=
Subject key identifier: E0:E5:DA:CE:C6:68:55:CF:7C:6F:12:86:DF:EE:EC:30:1F:90:27:87
Certificate issuer: /CN=602dc2478a4bdde4c440bb58802410d2340a490e
Certificate serial: 019339571BD11BC904463289204EE91A0032
Authority key identifier: 60:2D:C2:47:8A:4B:DD:E4:C4:40:BB:58:80:24:10:D2:34:0A:49:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/4OXazsZoVc98bxKG3-7sMB-QJ4c.roa
Signing time: Sun 17 Nov 2024 08:57:10 +0000
ROA not before: Sun 17 Nov 2024 08:57:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34426
IP address blocks: 82.118.160.0/19 maxlen: 19
82.118.161.0/24 maxlen: 24
82.118.162.0/24 maxlen: 24
82.118.163.0/24 maxlen: 24
82.118.164.0/24 maxlen: 24
82.118.165.0/24 maxlen: 24
82.118.166.0/24 maxlen: 24
82.118.167.0/24 maxlen: 24
82.118.168.0/24 maxlen: 24
82.118.169.0/24 maxlen: 24
82.118.170.0/24 maxlen: 24
82.118.171.0/24 maxlen: 24
82.118.172.0/24 maxlen: 24
82.118.176.0/20 maxlen: 20
89.144.64.0/19 maxlen: 19
89.144.96.0/19 maxlen: 19
89.144.102.0/24 maxlen: 24
89.144.103.0/24 maxlen: 24
89.144.106.0/24 maxlen: 24
89.144.107.0/24 maxlen: 24
89.144.110.0/24 maxlen: 24
89.144.111.0/24 maxlen: 24
212.102.0.0/19 maxlen: 19
212.102.13.0/24 maxlen: 24
212.102.18.0/24 maxlen: 24
212.102.23.0/24 maxlen: 24
212.102.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:39:57:1b:d1:1b:c9:04:46:32:89:20:4e:e9:1a:00:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602dc2478a4bdde4c440bb58802410d2340a490e
Validity
Not Before: Nov 17 08:57:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0e5dacec66855cf7c6f1286dfeeec301f902787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:44:c5:dc:7f:04:e7:f6:f8:b7:c1:fa:7a:9c:
8a:d8:29:53:59:03:99:ff:55:5d:37:20:1e:cf:6a:
79:fc:39:29:fc:ca:d7:39:87:38:0c:c9:12:f9:ad:
4a:4a:76:d3:e9:b5:20:b1:a2:b1:17:26:07:7f:fb:
8f:df:6f:69:7e:3c:10:10:42:e0:17:78:b3:d5:08:
1e:df:fc:d0:c9:84:fb:8b:ed:f4:23:b4:86:f1:53:
8e:b6:62:14:3e:31:ac:ef:f6:7a:51:b1:47:67:d1:
da:a6:af:20:01:3e:d6:bd:90:e0:5e:ce:18:e0:12:
6c:b8:1f:4c:17:c1:23:39:e5:7f:a8:70:cd:24:d7:
63:6d:7f:84:c6:da:eb:fa:2a:bc:0b:72:c2:5a:c5:
e8:d4:95:c3:71:a6:9d:65:81:fd:68:e6:89:f8:8f:
4e:7d:1e:79:3b:57:b2:8a:e7:62:66:ee:9f:c9:42:
63:d1:bd:fd:97:99:83:d5:aa:cb:13:98:86:84:0c:
b3:dd:ae:6e:bb:6f:24:89:cf:d0:89:d3:75:9b:7c:
50:3b:20:9a:b5:27:f4:71:5e:65:e3:f6:51:1d:e9:
48:1c:b6:2b:c0:13:ee:3a:62:da:a9:46:6c:b9:96:
2d:a7:17:10:e9:6b:f8:d5:91:bc:24:b9:ce:45:33:
6c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E5:DA:CE:C6:68:55:CF:7C:6F:12:86:DF:EE:EC:30:1F:90:27:87
X509v3 Authority Key Identifier:
keyid:60:2D:C2:47:8A:4B:DD:E4:C4:40:BB:58:80:24:10:D2:34:0A:49:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/4OXazsZoVc98bxKG3-7sMB-QJ4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b81390-1023-450d-8ad3-5f713dfff114/1/YC3CR4pL3eTEQLtYgCQQ0jQKSQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.160.0/19
89.144.64.0/18
212.102.0.0/19
Signature Algorithm: sha256WithRSAEncryption
23:96:51:52:9d:27:28:25:a1:8c:3a:55:5c:d3:1f:21:96:d3:
77:93:e1:79:87:e1:0c:f3:84:ce:b5:6b:89:dd:85:2d:f5:10:
6e:6c:c4:2b:21:8d:4d:be:8d:97:f0:7b:27:86:d5:8d:8b:e6:
bd:14:c6:ac:50:41:77:5f:7c:94:c0:21:49:57:78:e0:0d:bb:
cc:56:f2:83:65:7e:69:9c:74:98:86:32:57:99:72:f2:fe:cd:
7f:f7:50:83:8c:d6:c4:e3:c1:01:25:d7:86:1b:bc:80:60:83:
c0:d0:5f:b5:a0:15:eb:73:24:49:82:b2:93:a1:5f:00:62:0e:
aa:b3:26:2c:33:20:f0:fb:50:8a:db:85:7d:1d:72:54:c7:a9:
e5:53:d5:17:33:e3:ef:21:8f:90:36:6c:6a:5f:f0:9c:20:23:
04:33:ca:d8:89:5b:64:86:a1:bb:f8:53:a5:78:fc:dd:7e:1a:
34:9c:dd:fd:3c:7b:03:ff:c4:95:32:d7:ac:16:fe:3c:2c:7b:
52:0c:70:cb:f0:12:35:2e:d2:1b:ab:28:4f:aa:d8:da:13:66:
6d:92:d2:9c:24:5b:40:a4:26:60:2f:69:77:c5:80:72:e0:b9:
4c:d9:09:8b:61:ce:e4:0f:27:13:24:6e:92:36:2a:49:60:eb:
c7:11:0c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:57:38 2024 by rpki-client on console-fra.rpki-client.org