Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/ZGoD8oYguJ2K9iTSzN31blSHztQ.roa
File: ZGoD8oYguJ2K9iTSzN31blSHztQ.roa (raw, json)
Hash identifier: PbOmiD5S84qqRs5LmUwW2yMoGK7TVnSoVud20qypPXQ=
Subject key identifier: 64:6A:03:F2:86:20:B8:9D:8A:F6:24:D2:CC:DD:F5:6E:54:87:CE:D4
Certificate issuer: /CN=e48da335b072536d58e6b7cdf4cdb16445bcbc33
Certificate serial: 019345472250E36003DED108938DEBDD9D9A
Authority key identifier: E4:8D:A3:35:B0:72:53:6D:58:E6:B7:CD:F4:CD:B1:64:45:BC:BC:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5I2jNbByU21Y5rfN9M2xZEW8vDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/ZGoD8oYguJ2K9iTSzN31blSHztQ.roa
Signing time: Tue 19 Nov 2024 16:35:09 +0000
ROA not before: Tue 19 Nov 2024 16:35:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197107
IP address blocks: 178.20.192.0/24 maxlen: 24
178.20.193.0/24 maxlen: 24
178.20.194.0/24 maxlen: 24
178.20.195.0/24 maxlen: 24
178.20.196.0/24 maxlen: 24
178.20.197.0/24 maxlen: 24
178.20.198.0/24 maxlen: 24
178.20.199.0/24 maxlen: 24
185.58.88.0/24 maxlen: 24
185.58.89.0/24 maxlen: 24
185.58.90.0/24 maxlen: 24
185.58.91.0/24 maxlen: 24
195.225.64.0/24 maxlen: 24
195.225.66.0/24 maxlen: 24
195.225.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/5I2jNbByU21Y5rfN9M2xZEW8vDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/5I2jNbByU21Y5rfN9M2xZEW8vDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5I2jNbByU21Y5rfN9M2xZEW8vDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:45:47:22:50:e3:60:03:de:d1:08:93:8d:eb:dd:9d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e48da335b072536d58e6b7cdf4cdb16445bcbc33
Validity
Not Before: Nov 19 16:35:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=646a03f28620b89d8af624d2ccddf56e5487ced4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:27:61:bd:da:4a:8f:c3:c5:7e:6d:f6:e4:85:
28:50:7b:b5:15:4e:77:e7:36:3d:07:8d:b7:e3:25:
26:12:63:13:b6:31:7e:dd:9d:c6:77:59:68:5f:47:
08:d3:e1:f8:53:84:72:f9:34:b8:66:f5:20:f5:41:
85:30:a7:12:e3:7d:64:f5:23:46:d4:a0:d7:5e:2a:
06:4e:45:3c:fb:bf:60:b7:f3:7d:f0:48:77:1a:e4:
26:04:3a:46:8b:53:f1:09:1e:68:3e:90:9c:96:ec:
ee:da:09:ae:4e:8b:0d:9e:83:d8:3c:f3:c1:f7:3f:
63:0d:75:f9:88:ae:c8:4e:3d:95:4c:28:fe:82:d1:
c0:b1:8d:85:82:c3:ce:09:19:c1:88:51:90:13:5c:
2f:e7:a1:58:4b:e4:15:6f:4c:59:04:a4:25:85:a6:
2f:8f:10:72:da:56:1e:c0:6f:62:e0:14:58:81:53:
79:c1:52:02:e0:72:41:15:14:68:1b:4d:81:08:50:
3d:8f:e7:5e:6d:8d:12:80:7e:56:40:47:5b:f8:e3:
09:cb:dc:f8:7c:83:9b:c3:f2:32:0d:36:09:67:23:
35:c8:6d:04:6d:e1:d6:f4:7b:e2:49:18:75:49:53:
5c:bd:1f:6b:54:98:02:da:e8:d1:92:71:4f:f1:2c:
e1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6A:03:F2:86:20:B8:9D:8A:F6:24:D2:CC:DD:F5:6E:54:87:CE:D4
X509v3 Authority Key Identifier:
keyid:E4:8D:A3:35:B0:72:53:6D:58:E6:B7:CD:F4:CD:B1:64:45:BC:BC:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5I2jNbByU21Y5rfN9M2xZEW8vDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/ZGoD8oYguJ2K9iTSzN31blSHztQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/795098-a2f0-4733-9709-e6eb919d7a02/1/5I2jNbByU21Y5rfN9M2xZEW8vDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.192.0/21
185.58.88.0/22
195.225.64.0/24
195.225.66.0/23
Signature Algorithm: sha256WithRSAEncryption
27:41:d0:b6:4e:69:44:ca:7a:2e:ff:bb:b9:ca:56:29:61:43:
05:d4:f8:56:44:2f:0b:f6:4a:cc:b7:12:6d:51:9d:6e:69:17:
3a:91:bb:5d:ba:7d:f1:7a:48:71:83:51:f1:2f:ba:71:66:f9:
46:c1:51:1e:19:cd:65:da:95:b7:46:53:5f:b2:df:0a:16:67:
f7:10:72:51:21:8f:0c:dc:39:d6:27:b7:d9:77:26:dc:c9:84:
4b:99:cc:80:c3:7c:e7:84:c3:39:af:c4:ed:09:28:75:c4:ba:
8a:89:99:84:23:55:47:36:ab:75:19:e4:cd:79:d4:7f:ea:9a:
4c:ae:87:2f:54:2e:c1:5b:7f:de:11:8e:e4:c6:c1:38:01:85:
d2:aa:01:90:8a:02:bc:4a:15:a3:fe:5c:ac:ec:6d:1c:e7:28:
8a:7a:e6:54:af:56:c2:63:1f:7e:05:06:8e:f8:0c:3b:68:c5:
ce:66:40:92:4e:e0:02:b5:bd:52:5e:4e:82:aa:97:18:c9:8e:
ac:2a:c4:10:1e:a4:fa:f7:67:88:98:55:5e:6c:96:6e:74:72:
81:1c:06:54:d2:c4:ce:ae:c4:11:cc:aa:0c:10:5a:8c:6f:eb:
cc:aa:b2:10:93:97:fb:2c:fa:da:1f:d5:4a:39:a7:ff:90:ee:
d3:50:8e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:45 2024 by rpki-client on console-ams.rpki-client.org