Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/JVEqbKdM19jikAlVXBc1U3dhF50.roa
File: JVEqbKdM19jikAlVXBc1U3dhF50.roa (raw, json)
Hash identifier: i/T3IPo2MJzevOPymdSC6cD/BwMGDdWO4CtUYUfZ0ZA=
Subject key identifier: 25:51:2A:6C:A7:4C:D7:D8:E2:90:09:55:5C:17:35:53:77:61:17:9D
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018CC7956A5CFD16FF2C3480A57B31053B52
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/JVEqbKdM19jikAlVXBc1U3dhF50.roa
Signing time: Tue 02 Jan 2024 00:31:47 +0000
ROA not before: Tue 02 Jan 2024 00:31:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7393
IP address blocks: 193.3.171.0/24 maxlen: 24
188.244.127.0/24 maxlen: 24
80.71.151.0/24 maxlen: 24
5.172.176.0/24 maxlen: 24
89.107.8.0/24 maxlen: 24
185.235.224.0/24 maxlen: 24
146.19.121.0/24 maxlen: 24
91.247.191.0/24 maxlen: 24
193.201.13.0/24 maxlen: 24
185.249.55.0/24 maxlen: 24
62.204.59.0/24 maxlen: 24
195.225.97.0/24 maxlen: 24
193.163.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:6a:5c:fd:16:ff:2c:34:80:a5:7b:31:05:3b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Jan 2 00:31:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25512a6ca74cd7d8e29009555c1735537761179d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:53:04:95:8b:b9:f5:86:66:0b:7e:55:2a:1f:
24:11:81:c5:b5:72:4f:c0:47:92:db:05:6e:5d:ad:
87:77:de:99:9b:4c:c1:57:5f:d4:bb:6a:ab:b3:c5:
45:3e:3b:5c:07:37:2b:3d:e4:8e:53:85:db:53:40:
36:2b:af:f9:9a:94:30:f1:b9:9c:aa:b7:a6:60:18:
ed:70:c3:18:66:82:62:fb:6a:4d:d9:30:bf:f3:22:
73:32:ce:28:92:c6:fd:20:f0:76:19:02:8a:1b:6c:
ad:7e:d8:2a:75:f2:bb:b9:ef:ec:da:e9:a9:2c:db:
b8:e6:a8:30:ed:c4:ff:55:9b:5b:fd:9c:4c:2e:c6:
40:ab:92:58:76:ac:1e:db:ae:1c:b3:13:57:01:7b:
05:a7:37:ec:aa:35:09:60:5c:da:af:68:62:28:99:
fd:c1:3b:85:c2:1a:7f:97:47:b5:bd:1a:92:22:c7:
c4:9a:ee:6d:b2:82:ec:15:0f:74:c0:92:86:c5:9a:
d2:8c:f4:25:3a:03:cb:66:d5:7b:b8:1a:28:b8:7a:
21:b7:80:ec:69:2c:28:25:cd:4c:7a:e0:14:e8:4b:
80:48:65:6e:8a:f8:00:41:0a:e5:0c:62:21:f4:23:
f8:94:a6:bd:10:e3:1a:f6:57:f5:89:0c:a5:00:03:
75:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:51:2A:6C:A7:4C:D7:D8:E2:90:09:55:5C:17:35:53:77:61:17:9D
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/JVEqbKdM19jikAlVXBc1U3dhF50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.176.0/24
62.204.59.0/24
80.71.151.0/24
89.107.8.0/24
91.247.191.0/24
146.19.121.0/24
185.235.224.0/24
185.249.55.0/24
188.244.127.0/24
193.3.171.0/24
193.163.23.0/24
193.201.13.0/24
195.225.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:0d:3c:45:42:84:13:a7:64:e4:e5:9d:15:b6:03:0e:ba:2b:
be:de:1a:19:04:2b:05:44:47:36:42:67:bf:f3:69:5f:ee:b3:
a8:f9:6f:4c:96:25:90:7f:ae:26:7a:43:fe:2d:12:aa:3b:42:
78:8a:79:dd:70:95:32:82:98:6c:a5:91:ba:ac:84:88:78:39:
49:92:3e:3f:2d:67:bb:14:25:71:98:26:cf:cd:14:8b:d7:83:
d7:03:91:3b:19:91:78:9b:0e:18:fd:52:47:3a:27:d2:df:a5:
9c:e8:0f:c4:1f:9e:66:28:ac:e4:d9:2d:16:65:7e:a9:d9:77:
02:ad:46:8a:39:be:8d:ba:14:14:60:27:f3:3c:25:57:4b:b2:
cc:80:a0:d8:69:92:40:78:e3:ea:d9:c1:8b:d3:f9:11:54:d0:
7d:22:01:ce:e4:cd:01:85:ed:59:8d:c2:f2:f4:9c:30:20:04:
57:a5:4e:1b:5b:c0:7a:f7:17:45:59:8c:ce:6a:6d:b9:20:d1:
5c:c0:9c:47:20:fb:82:7a:83:6d:e7:a3:c8:a7:15:7a:d0:ca:
e2:50:1c:83:f1:80:2c:a6:36:9b:d1:ab:6e:e7:fa:ea:32:39:
b3:b2:ce:7c:b6:7d:32:15:53:cc:fe:23:5e:dd:6e:ee:bf:15:
66:b0:f0:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:02:56 2024 by rpki-client on console-ams.rpki-client.org