Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/0248JHmyeFKA6dihMSNNZjIGO6w.roa
File: 0248JHmyeFKA6dihMSNNZjIGO6w.roa (raw, json)
Hash identifier: uRrBYQkRkT3LzrSiqTdWrFaBzxwt4aMr5uHE1ghIKos=
Subject key identifier: D3:6E:3C:24:79:B2:78:52:80:E9:D8:A1:31:23:4D:66:32:06:3B:AC
Certificate issuer: /CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Certificate serial: 018CC5DC713E62C99DA4DDF46C24E45A3F23
Authority key identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/0248JHmyeFKA6dihMSNNZjIGO6w.roa
Signing time: Mon 01 Jan 2024 16:30:07 +0000
ROA not before: Mon 01 Jan 2024 16:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59807
IP address blocks: 164.10.79.0/24 maxlen: 24
185.181.88.0/22 maxlen: 24
164.10.30.0/24 maxlen: 24
164.10.29.0/24 maxlen: 24
164.10.26.0/24 maxlen: 24
164.10.32.0/24 maxlen: 24
164.10.252.0/24 maxlen: 24
164.10.255.0/24 maxlen: 24
164.10.45.0/24 maxlen: 24
164.10.50.0/24 maxlen: 24
164.10.49.0/24 maxlen: 24
164.10.48.0/24 maxlen: 24
164.10.47.0/24 maxlen: 24
164.10.46.0/24 maxlen: 24
164.10.61.0/24 maxlen: 24
164.10.60.0/24 maxlen: 24
164.10.0.0/24 maxlen: 24
164.10.0.0/16 maxlen: 24
2a03:2520::/32 maxlen: 56
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:71:3e:62:c9:9d:a4:dd:f4:6c:24:e4:5a:3f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Validity
Not Before: Jan 1 16:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d36e3c2479b2785280e9d8a131234d6632063bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:43:cb:25:ee:99:83:77:7d:92:99:17:c8:a4:
a0:f9:8a:20:cc:7e:a0:65:67:4d:32:34:0d:8d:26:
72:6c:b2:31:96:81:72:e9:06:62:a8:b1:35:da:e5:
32:76:0b:78:0f:17:81:75:a4:8d:40:02:98:54:d4:
a3:ff:a0:6d:a2:ec:c8:cd:39:df:01:12:83:7c:69:
60:39:76:d2:26:fc:39:af:35:c7:26:b8:18:75:9f:
01:6a:a1:b6:d7:d0:76:ac:ad:b8:7b:32:90:ef:55:
14:8a:db:d9:e1:7c:ec:d9:26:86:0f:79:b3:05:de:
a7:1d:91:58:05:c7:3d:c9:a4:82:78:77:b3:64:f4:
83:03:27:da:f5:4c:58:78:4f:21:ae:fd:4f:bd:e5:
92:14:ad:5a:81:c3:5a:57:a1:8b:1b:29:4e:63:53:
ea:4d:44:3c:74:0e:96:3e:cc:3e:eb:be:c1:01:77:
b0:80:88:bc:61:77:5f:53:0d:ab:3f:be:07:97:a5:
3e:be:8a:70:63:56:f2:24:3a:64:51:af:5f:b4:57:
09:84:c6:89:90:3a:ed:9c:59:51:f9:b8:79:94:9b:
9d:e4:c1:ee:ce:57:a7:f0:25:80:81:90:24:e8:6a:
f4:0d:94:ba:1b:7b:36:59:6b:f6:cf:31:7e:a9:59:
2d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6E:3C:24:79:B2:78:52:80:E9:D8:A1:31:23:4D:66:32:06:3B:AC
X509v3 Authority Key Identifier:
keyid:95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/0248JHmyeFKA6dihMSNNZjIGO6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.10.0.0/16
185.181.88.0/22
IPv6:
2a03:2520::/32
Signature Algorithm: sha256WithRSAEncryption
35:85:37:7f:3f:8e:fd:3a:13:f6:10:9f:36:72:c4:94:91:82:
6d:91:fa:e2:1c:8e:b8:30:be:ba:64:00:96:29:0f:1f:02:44:
53:c9:f0:86:8c:37:2c:15:e4:d3:71:0f:51:af:76:e0:67:c1:
03:ea:f8:81:36:19:44:6d:6e:3d:88:3b:50:5f:35:26:00:17:
e3:30:c5:30:f5:33:0c:45:2c:88:7f:1b:7e:03:55:13:95:19:
75:13:cb:76:f1:ff:c7:c7:03:ca:29:5e:d0:e3:49:ca:6d:80:
30:cd:51:48:57:90:95:28:0c:35:40:90:0a:58:1c:a5:fe:73:
d3:f9:01:c5:3c:5b:fd:d4:72:f1:85:d2:78:70:a5:ba:f4:de:
9e:81:fd:33:32:df:2d:01:7f:10:2f:fb:8b:6f:ce:86:8a:d4:
d8:f4:6e:cf:e0:32:ce:b7:a7:b9:92:5a:82:4c:a3:57:0c:d7:
33:cd:b9:31:47:e8:96:4e:3a:ad:9d:c2:82:df:6b:77:0f:6f:
2c:b2:73:e4:67:ef:f8:72:2e:e6:b8:90:10:19:03:e9:fa:17:
60:2b:a5:ff:c8:c1:46:6c:fd:89:56:d9:62:08:5c:64:d0:a0:
cc:c7:80:15:6e:8c:32:01:fe:9c:84:0f:81:60:9d:99:51:e3:
bf:ef:7d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:55:34 2024 by rpki-client on console-ams.rpki-client.org