Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lC9s1CuL3XJ-Kx1fYl3A2C-gGeA.roa
File: lC9s1CuL3XJ-Kx1fYl3A2C-gGeA.roa (raw, json)
Hash identifier: swl1FXrtqTkK3KBNxIWeW2dfjNoQtwLK85RdJOnK0WQ=
Subject key identifier: 94:2F:6C:D4:2B:8B:DD:72:7E:2B:1D:5F:62:5D:C0:D8:2F:A0:19:E0
Certificate issuer: /CN=966b05c661c76a5bcc48da838eedb6973f153b86
Certificate serial: 018CC86F3F1E439363665D6345B027D95D7F
Authority key identifier: 96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lC9s1CuL3XJ-Kx1fYl3A2C-gGeA.roa
Signing time: Tue 02 Jan 2024 04:29:43 +0000
ROA not before: Tue 02 Jan 2024 04:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206316
IP address blocks: 195.242.177.0/24 maxlen: 24
195.242.178.0/24 maxlen: 24
5.183.97.0/24 maxlen: 24
5.183.98.0/24 maxlen: 24
5.183.96.0/22 maxlen: 22
5.183.96.0/24 maxlen: 24
5.183.99.0/24 maxlen: 24
195.238.248.0/24 maxlen: 24
195.238.252.0/24 maxlen: 24
185.219.130.0/24 maxlen: 24
185.219.131.0/24 maxlen: 24
185.219.128.0/22 maxlen: 22
185.219.129.0/24 maxlen: 24
185.219.128.0/24 maxlen: 24
2a0e:bc00::/29 maxlen: 29
2a0b:e640::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:3f:1e:43:93:63:66:5d:63:45:b0:27:d9:5d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=966b05c661c76a5bcc48da838eedb6973f153b86
Validity
Not Before: Jan 2 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=942f6cd42b8bdd727e2b1d5f625dc0d82fa019e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a8:35:01:4a:db:28:07:bf:02:b5:5f:32:7a:
80:96:f7:37:3a:e6:24:9c:07:f0:69:2c:3e:1e:25:
a1:d1:d7:bf:cf:a7:06:87:aa:1f:38:8b:6a:7f:b3:
53:1f:e7:05:b6:ca:1f:39:7e:55:29:89:aa:73:6b:
16:24:14:8e:69:0d:73:19:bd:36:d6:46:90:2f:d5:
80:ae:6c:03:b1:7b:77:d5:f8:5e:d0:69:2f:64:d4:
21:a2:03:98:26:49:22:ec:8b:3b:7a:bb:0c:a8:6c:
3d:1c:0f:12:50:d2:0e:dc:e5:7f:15:35:d2:17:b3:
1a:3d:7b:f7:33:9c:f3:23:2a:8e:82:e3:8b:b2:01:
26:c3:0a:69:ea:02:78:38:ba:d5:b3:87:e3:3a:f8:
0c:9d:c9:61:36:ef:3b:c4:39:4b:cc:4b:5a:e7:af:
cc:2b:7e:3a:c1:c7:54:34:74:6d:55:2d:2d:7c:46:
c9:65:fc:d7:27:5a:89:5f:0c:63:33:ff:6d:c2:2f:
28:10:0a:c1:43:bf:33:f3:c0:85:42:85:54:72:45:
96:f7:c2:08:e9:e9:5d:94:96:90:dd:12:a7:09:5d:
8c:3a:3e:90:75:11:ab:a7:81:ae:1f:01:3b:15:49:
4c:55:be:db:e7:20:cf:2f:4e:65:58:71:a6:1a:02:
54:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:2F:6C:D4:2B:8B:DD:72:7E:2B:1D:5F:62:5D:C0:D8:2F:A0:19:E0
X509v3 Authority Key Identifier:
keyid:96:6B:05:C6:61:C7:6A:5B:CC:48:DA:83:8E:ED:B6:97:3F:15:3B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lmsFxmHHalvMSNqDju22lz8VO4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lC9s1CuL3XJ-Kx1fYl3A2C-gGeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6891df-971e-4e60-8cbc-e3c2f32cf3b7/1/lmsFxmHHalvMSNqDju22lz8VO4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.96.0/22
185.219.128.0/22
195.238.248.0/24
195.238.252.0/24
195.242.177.0-195.242.178.255
IPv6:
2a0b:e640::/29
2a0e:bc00::/29
Signature Algorithm: sha256WithRSAEncryption
1a:b5:2d:7a:0a:49:de:ba:bd:ce:58:23:95:11:ac:7f:c9:dd:
8d:11:1e:2b:1f:85:5d:05:65:b4:bf:2a:c4:54:10:3b:46:f5:
b6:af:7e:af:a1:c1:50:9b:67:41:9c:4b:d5:b6:dc:8e:3b:c5:
e1:29:86:e0:72:ff:9b:70:7a:c6:87:94:d3:82:5e:5e:f6:cf:
6a:69:fa:d6:7b:44:c6:51:fa:29:d0:f1:7b:ad:52:c7:80:83:
ce:ae:cb:ce:c1:24:53:83:46:41:0d:56:48:93:59:d1:86:31:
60:76:f1:71:62:52:23:30:7f:51:46:f4:e5:49:d2:82:3a:f8:
28:f1:ed:99:02:40:30:e8:13:7e:56:c7:5f:cb:e2:5a:99:ff:
d0:43:0d:30:91:d8:39:5a:4e:5e:d0:b0:96:25:b2:59:1a:a8:
dd:9c:73:69:2a:43:19:55:41:9c:8e:10:a1:94:d5:f6:7a:f7:
9e:0c:f4:90:d2:d9:f0:06:89:5b:a8:38:37:fe:d2:31:20:55:
a7:04:d9:07:c4:9a:11:b6:97:49:19:96:61:a3:d9:ad:2e:19:
1d:f4:03:53:fd:32:ba:66:98:97:d9:1e:11:f5:25:64:b1:e0:
85:a6:90:16:4b:11:8b:c8:5e:80:69:09:e6:87:4e:71:25:d6:
ef:df:60:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:57:46 2024 by rpki-client on console-fra.rpki-client.org