Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/I10KV6Uu4Ot1DLDtL8nebWNUFKc.roa
File: I10KV6Uu4Ot1DLDtL8nebWNUFKc.roa (raw, json)
Hash identifier: EmcxfSH87TebZhy9g/SyJtku6wAE26erg/iOllTKAH8=
Subject key identifier: 23:5D:0A:57:A5:2E:E0:EB:75:0C:B0:ED:2F:C9:DE:6D:63:54:14:A7
Certificate issuer: /CN=45fc0aa5a6c3391effffa83425b23b264c71085f
Certificate serial: 0191312ACECB99935A38987635BDF6FDE848
Authority key identifier: 45:FC:0A:A5:A6:C3:39:1E:FF:FF:A8:34:25:B2:3B:26:4C:71:08:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RfwKpabDOR7__6g0JbI7JkxxCF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/I10KV6Uu4Ot1DLDtL8nebWNUFKc.roa
Signing time: Thu 08 Aug 2024 08:46:14 +0000
ROA not before: Thu 08 Aug 2024 08:46:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59471
IP address blocks: 185.99.192.0/22 maxlen: 22
194.153.107.0/24 maxlen: 24
195.74.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/RfwKpabDOR7__6g0JbI7JkxxCF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/RfwKpabDOR7__6g0JbI7JkxxCF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RfwKpabDOR7__6g0JbI7JkxxCF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:2a:ce:cb:99:93:5a:38:98:76:35:bd:f6:fd:e8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45fc0aa5a6c3391effffa83425b23b264c71085f
Validity
Not Before: Aug 8 08:46:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=235d0a57a52ee0eb750cb0ed2fc9de6d635414a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ce:4a:cb:8b:de:19:61:fd:7b:49:11:6d:98:
4b:64:69:5c:98:1c:5e:af:2b:81:e6:f9:8b:10:f6:
94:a3:21:64:5a:d3:99:7d:ef:3e:98:2b:a3:f8:37:
da:ee:4c:f8:6e:99:6d:25:42:92:b9:6a:63:b2:28:
79:18:1b:d5:10:46:1e:6a:f6:f4:96:99:84:6e:72:
be:f5:8b:37:c2:fb:96:50:d5:a6:ee:e4:29:44:17:
b4:85:51:90:2a:da:1a:c4:07:f0:3a:20:ba:a4:76:
ce:f5:27:a5:bc:f6:f8:35:8c:10:ce:a8:bd:12:41:
57:92:25:d6:5a:a2:db:3b:f2:78:95:00:82:26:03:
2a:5f:27:bf:58:ad:7c:5c:6d:0f:0b:9a:96:0a:5b:
4f:60:5c:85:19:2e:d1:37:44:95:72:ba:2b:60:ba:
ab:fb:6f:84:57:0d:3c:a0:2e:7b:f3:15:86:c2:34:
d8:25:f0:c2:6d:2f:2f:91:ff:e4:ba:3a:35:af:db:
68:fe:00:39:81:4a:68:b3:35:0f:4b:28:e8:df:df:
8c:f3:f7:f0:ab:3c:e9:ba:09:fb:18:93:68:4c:c8:
f0:7a:e0:6f:68:4b:58:eb:00:41:65:b5:48:9a:56:
cf:9c:e5:d4:b9:c4:18:36:8c:04:73:bb:06:de:50:
23:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5D:0A:57:A5:2E:E0:EB:75:0C:B0:ED:2F:C9:DE:6D:63:54:14:A7
X509v3 Authority Key Identifier:
keyid:45:FC:0A:A5:A6:C3:39:1E:FF:FF:A8:34:25:B2:3B:26:4C:71:08:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RfwKpabDOR7__6g0JbI7JkxxCF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/I10KV6Uu4Ot1DLDtL8nebWNUFKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/73c60b-18cd-425b-8e6f-92719b00bbd4/1/RfwKpabDOR7__6g0JbI7JkxxCF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.192.0/22
194.153.107.0/24
195.74.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:93:20:12:30:7a:67:60:57:52:06:a9:08:43:01:41:22:73:
52:9c:e5:e4:28:f4:19:14:9a:ba:1c:ff:7e:6b:dc:72:7d:b2:
6a:ac:9d:44:eb:11:16:d6:5f:a8:1b:fc:4c:30:44:af:dc:d2:
49:6d:fb:62:94:0b:ca:9a:c3:63:ed:1b:78:82:c8:10:9b:31:
8d:2e:b1:05:7f:fb:95:e4:dc:66:59:0b:f0:31:4e:33:24:47:
a3:94:40:46:30:97:36:0c:e5:f0:b7:87:86:bf:99:54:c8:85:
da:36:ef:2b:29:ba:87:d7:9c:71:06:d4:5b:24:39:70:c5:70:
9b:ad:7d:ad:78:23:5d:9f:06:e7:be:3c:ac:3c:34:42:65:6f:
7f:21:72:a3:93:40:6c:5a:01:75:5b:ca:95:3f:0d:16:2a:ac:
02:61:87:7b:83:dd:b3:5d:48:bf:ba:0e:3f:89:dd:a7:77:af:
32:39:4c:f9:a8:2a:74:ed:d8:b4:ef:c2:3d:52:75:d5:47:98:
a1:c3:40:bb:ca:a5:8e:9a:ed:03:f1:40:a6:44:fd:62:1b:45:
95:09:20:52:2e:e2:55:d6:3e:f2:75:d1:cf:4f:57:9f:64:4a:
31:37:4c:c4:f1:2f:2c:9c:ea:a5:a4:c7:71:c4:af:ad:d2:a9:
c2:e3:c7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:14:19 2024 by rpki-client on console-fra.rpki-client.org