Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/WDvBq0OEBcBJxq4LPUOhUYvTwKE.roa
File: WDvBq0OEBcBJxq4LPUOhUYvTwKE.roa (raw, json)
Hash identifier: mT1561gUeku7u3tc8XWQhtv+WRasEn/srxVlKiVvmHI=
Subject key identifier: 58:3B:C1:AB:43:84:05:C0:49:C6:AE:0B:3D:43:A1:51:8B:D3:C0:A1
Certificate issuer: /CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Certificate serial: 018D91A43A05256515D664B7FB73FF82D011
Authority key identifier: CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/WDvBq0OEBcBJxq4LPUOhUYvTwKE.roa
Signing time: Sat 10 Feb 2024 06:11:15 +0000
ROA not before: Sat 10 Feb 2024 06:11:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210083
IP address blocks: 121.127.33.0/24 maxlen: 24
185.130.44.0/24 maxlen: 24
185.130.45.0/24 maxlen: 24
185.130.46.0/24 maxlen: 24
185.130.47.0/24 maxlen: 24
199.231.235.0/24 maxlen: 24
202.181.177.0/24 maxlen: 24
2a07:e00::/48 maxlen: 48
2a07:e00:a::/48 maxlen: 48
2a07:e00:b::/48 maxlen: 48
2a07:e00:c::/48 maxlen: 48
2a07:e00:ac::/48 maxlen: 48
2a07:e00:bb::/48 maxlen: 48
2a07:e00:bc::/48 maxlen: 48
2a07:e00:ff::/48 maxlen: 48
2a07:e00:19f::/48 maxlen: 48
2a07:e01::/32 maxlen: 32
2a07:e02:41::/48 maxlen: 48
2a07:e02:a00::/40 maxlen: 40
2a07:e02:b00::/40 maxlen: 56
2a07:e02:1000::/36 maxlen: 40
2a07:e03::/32 maxlen: 48
2a07:e04::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:91:a4:3a:05:25:65:15:d6:64:b7:fb:73:ff:82:d0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc2eb5b38bb62ede5c98cbfbcff9532852180516
Validity
Not Before: Feb 10 06:11:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=583bc1ab438405c049c6ae0b3d43a1518bd3c0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:a3:5c:d1:b3:78:ab:16:9b:20:c9:44:f3:
08:0c:c1:04:90:21:d6:44:73:6d:63:2c:de:95:6d:
7c:51:b4:b5:1c:0e:b5:51:81:5b:2d:d9:56:3d:9d:
40:0b:f3:95:1f:f9:b2:84:32:0d:db:b7:6d:a3:ee:
09:c5:3e:04:57:06:f1:cd:e2:6c:79:be:21:89:2b:
4d:23:e5:8e:ed:af:be:3b:09:e0:ea:cf:fb:e1:21:
ad:04:3d:58:b1:fc:e3:0d:a7:8f:ad:bb:e4:f1:4c:
89:9b:54:c5:bf:a8:19:13:44:58:7a:4b:95:d9:eb:
52:f8:a3:0e:9f:b4:a8:e1:51:63:d2:b8:f9:5a:0c:
15:1c:e3:0b:72:13:49:39:49:1f:9f:9e:85:82:75:
16:68:22:27:53:e0:9d:19:5d:96:e8:24:69:20:59:
3a:28:11:a3:67:c3:14:a6:f4:df:97:88:46:bf:a2:
eb:b7:5b:7f:22:8d:18:af:aa:46:f1:f9:53:78:1b:
35:de:53:aa:da:52:e1:d9:cc:0b:f2:52:a6:bd:a1:
95:aa:7f:8c:81:36:da:73:05:ed:52:85:cb:a7:68:
b3:77:30:5b:d6:01:72:2f:6d:82:76:0c:ec:e2:09:
28:b7:ca:d3:a5:c6:0e:42:0e:b6:ff:55:fc:67:03:
a2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:3B:C1:AB:43:84:05:C0:49:C6:AE:0B:3D:43:A1:51:8B:D3:C0:A1
X509v3 Authority Key Identifier:
keyid:CC:2E:B5:B3:8B:B6:2E:DE:5C:98:CB:FB:CF:F9:53:28:52:18:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zC61s4u2Lt5cmMv7z_lTKFIYBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/WDvBq0OEBcBJxq4LPUOhUYvTwKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6f0269-834e-47c5-98e1-f1f802e6613b/1/zC61s4u2Lt5cmMv7z_lTKFIYBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.127.33.0/24
185.130.44.0/22
199.231.235.0/24
202.181.177.0/24
IPv6:
2a07:e00::/48
2a07:e00:a::-2a07:e00:c:ffff:ffff:ffff:ffff:ffff
2a07:e00:ac::/48
2a07:e00:bb::-2a07:e00:bc:ffff:ffff:ffff:ffff:ffff
2a07:e00:ff::/48
2a07:e00:19f::/48
2a07:e01::/32
2a07:e02:41::/48
2a07:e02:a00::/39
2a07:e02:1000::/36
2a07:e03::-2a07:e04:fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
28:37:da:6a:e8:81:e3:24:8f:8a:25:9e:b1:8e:04:be:df:ae:
b6:67:94:88:37:65:67:14:77:10:16:5e:26:fc:7c:ef:f4:e9:
05:15:df:7c:33:16:86:72:97:e2:27:56:1f:1c:7d:c4:a7:b9:
3e:da:67:0e:df:85:5b:64:ea:4b:29:51:f2:b1:ec:f9:6a:ff:
7e:24:8e:0a:5c:49:f7:c5:7c:3c:ac:aa:ea:b3:37:02:7e:ec:
19:29:b4:1f:35:ea:a3:69:e6:54:dc:1a:12:c0:d3:6c:82:01:
f0:bf:57:76:31:c8:a6:4d:68:7c:3a:f0:01:58:b0:ab:f7:2a:
83:61:50:2f:e6:ff:d1:3b:0c:94:8f:35:84:1d:db:05:94:61:
35:47:70:5c:20:29:9f:64:8c:b0:ac:40:c7:b3:dc:db:be:43:
05:0a:38:40:82:45:71:d2:80:20:00:ef:6e:10:93:1b:a9:ba:
c4:d7:df:5e:59:96:87:bd:70:6e:2a:54:93:3d:e5:bc:30:74:
6c:9b:40:32:72:ed:fc:c6:c9:b3:34:be:a5:6e:6f:e0:b7:74:
e8:96:0b:0b:11:c3:4f:3f:8a:87:3a:1d:20:5f:12:82:40:92:
c1:a3:f6:10:e1:93:4a:65:26:45:cd:58:21:b2:1f:48:64:96:
6c:ac:be:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:02:09 2024 by rpki-client on console-fra.rpki-client.org