Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/2zjf5uU1igpyAclv54w1lRvxl3Y.roa
File: 2zjf5uU1igpyAclv54w1lRvxl3Y.roa (raw, json)
Hash identifier: bK6Uf/4ZSSC5dsqE7XbcaeW5ipcLZAgGPq8ifDpAEb4=
Subject key identifier: DB:38:DF:E6:E5:35:8A:0A:72:01:C9:6F:E7:8C:35:95:1B:F1:97:76
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0190E6696362EC54592E4BD087455EBFF79F
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/2zjf5uU1igpyAclv54w1lRvxl3Y.roa
Signing time: Wed 24 Jul 2024 20:23:04 +0000
ROA not before: Wed 24 Jul 2024 20:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 45.8.89.0/24 maxlen: 24
45.15.75.0/24 maxlen: 24
45.153.49.0/24 maxlen: 24
77.83.95.0/24 maxlen: 24
92.119.128.0/24 maxlen: 24
92.119.130.0/24 maxlen: 24
93.157.105.0/24 maxlen: 24
194.93.3.0/24 maxlen: 24
194.169.161.0/24 maxlen: 24
194.169.162.0/24 maxlen: 24
213.139.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e6:69:63:62:ec:54:59:2e:4b:d0:87:45:5e:bf:f7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jul 24 20:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db38dfe6e5358a0a7201c96fe78c35951bf19776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:02:ee:ad:b3:ba:ae:d4:a2:cd:fa:40:5b:33:
4c:fd:59:7f:8a:dd:e1:f5:c6:5c:f7:b4:2d:00:c1:
9b:88:30:b2:e6:e6:ed:50:3e:5f:01:97:82:b3:34:
86:3d:a0:53:52:1b:3e:d9:d3:a2:79:96:b1:de:3f:
3c:65:51:07:ed:d1:5b:cf:c7:e0:31:0b:95:ad:88:
d1:80:f4:c4:27:bc:65:d9:7c:0a:84:3f:05:af:85:
d5:e7:54:52:74:06:04:37:76:53:a6:34:da:d1:a9:
ef:8e:96:41:32:ba:3b:1e:86:4a:89:ce:33:56:de:
71:0e:5d:9b:e8:47:94:f0:cc:53:f5:c5:a4:2e:48:
52:98:78:e3:41:bf:43:f8:8f:6e:85:58:42:a6:19:
0a:0c:af:39:28:f7:53:26:fa:8f:e2:b6:b9:dc:cd:
eb:39:18:fb:50:5d:0f:7e:08:ac:6f:4f:b6:54:c2:
f1:db:80:c1:fc:01:42:8d:8c:cc:c9:82:24:d5:f9:
85:f8:2a:d8:08:a1:0c:84:13:6f:10:16:db:94:26:
8c:a1:bb:d1:b3:38:c9:51:98:d3:fc:f3:ab:3a:2c:
af:60:ba:63:fc:61:31:d3:44:c4:04:2f:eb:48:2d:
4b:ee:2a:33:56:10:dd:50:96:a5:cd:1f:5e:89:b0:
9e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:38:DF:E6:E5:35:8A:0A:72:01:C9:6F:E7:8C:35:95:1B:F1:97:76
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/2zjf5uU1igpyAclv54w1lRvxl3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.89.0/24
45.15.75.0/24
45.153.49.0/24
77.83.95.0/24
92.119.128.0/24
92.119.130.0/24
93.157.105.0/24
194.93.3.0/24
194.169.161.0-194.169.162.255
213.139.203.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ac:51:95:8a:4a:22:a8:ad:7b:00:f3:67:45:ad:fa:10:ef:
b8:2d:b9:5c:ac:93:35:d9:b1:ea:70:fd:a6:4c:d6:38:db:99:
65:71:42:73:b8:34:a6:8a:87:80:5f:ba:7f:4b:35:54:b8:10:
b7:15:f8:69:0f:d9:84:52:00:e0:04:76:cd:6d:d4:9f:13:36:
f1:63:94:9e:95:2a:f2:e3:89:44:94:63:b4:22:25:cd:ec:ec:
02:02:ca:05:eb:c6:0d:94:08:1b:5a:ba:74:28:0e:5e:97:36:
9e:02:5f:59:e3:ec:4e:76:9c:c5:7c:50:00:18:56:d7:04:cd:
de:06:40:a4:dc:28:c0:87:3b:e8:a7:60:e1:c5:23:7d:42:09:
51:fa:e5:32:57:3f:f6:11:74:8c:76:8d:60:8f:69:be:1e:f2:
9e:00:a5:d8:fd:63:32:08:9a:0b:9c:b2:a1:d1:7e:4f:24:86:
e0:8f:53:25:90:9b:6a:34:2e:82:bb:e0:e5:1a:cb:83:6f:91:
c1:d4:bc:db:72:12:04:97:dc:17:37:a5:10:0b:4b:45:fb:26:
d5:e9:22:55:90:ae:de:c9:09:d5:e0:83:64:01:bd:0d:93:9d:
59:59:5e:3a:0e:12:0b:d1:ce:c8:e4:27:0d:fd:47:31:4c:a3:
bd:d8:1f:da
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:48:15 2024 by rpki-client on console-ams.rpki-client.org