Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/L5vJkFxWLuXay-DtdgBBvludb7E.roa
File: L5vJkFxWLuXay-DtdgBBvludb7E.roa (raw, json)
Hash identifier: VIe+xTiWYrgvGqFGLZ3vluA+M8tw+w2HSRpXHDJLPA8=
Subject key identifier: 2F:9B:C9:90:5C:56:2E:E5:DA:CB:E0:ED:76:00:41:BE:5B:9D:6F:B1
Certificate issuer: /CN=8a38d1191f66f1f0315de5f45cc194d1cd19d1fb
Certificate serial: 018CC794648015E01BE32B506A94F73D1151
Authority key identifier: 8A:38:D1:19:1F:66:F1:F0:31:5D:E5:F4:5C:C1:94:D1:CD:19:D1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/L5vJkFxWLuXay-DtdgBBvludb7E.roa
Signing time: Tue 02 Jan 2024 00:30:40 +0000
ROA not before: Tue 02 Jan 2024 00:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198279
IP address blocks: 37.26.85.0/24 maxlen: 24
37.26.80.0/21 maxlen: 21
37.26.82.0/24 maxlen: 24
37.26.84.0/24 maxlen: 24
37.26.83.0/24 maxlen: 24
37.26.86.0/24 maxlen: 24
37.26.87.0/24 maxlen: 24
185.89.156.0/24 maxlen: 24
185.89.156.0/22 maxlen: 22
185.89.157.0/24 maxlen: 24
185.89.159.0/24 maxlen: 24
185.89.158.0/24 maxlen: 24
2a00:4940::/32 maxlen: 32
2a00:4940::/29 maxlen: 32
2a00:4940::/48 maxlen: 48
2a00:4940:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 12:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:64:80:15:e0:1b:e3:2b:50:6a:94:f7:3d:11:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a38d1191f66f1f0315de5f45cc194d1cd19d1fb
Validity
Not Before: Jan 2 00:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f9bc9905c562ee5dacbe0ed760041be5b9d6fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:79:a1:67:68:49:e3:2f:fc:bd:80:57:ef:c2:
b1:29:36:c6:64:dd:63:b3:02:10:33:c5:0a:fc:7c:
33:a9:06:07:4d:df:79:6e:2e:2f:ee:a4:35:a2:1e:
ac:e4:ea:85:20:67:cf:7e:a8:22:18:60:03:ca:8b:
7d:32:43:5c:57:f9:03:dd:54:d8:db:0f:84:88:70:
61:45:3d:2a:4b:79:bc:38:d5:9c:8c:c7:3a:29:40:
32:4e:63:f1:0a:fb:c8:bc:f3:47:f5:b5:b9:b6:f6:
30:93:54:a3:6b:b1:9f:e3:f2:ae:fa:d2:c9:01:6b:
7a:ae:2d:98:56:eb:8a:ef:68:61:cf:2c:09:bc:e6:
fa:0a:35:14:a3:d9:b9:f6:2e:cf:88:d9:9a:e7:3d:
43:18:71:17:ea:c9:aa:94:3f:b9:ed:47:89:4c:6c:
f5:2a:e3:4e:ae:38:c7:cc:95:04:c9:de:32:a2:23:
54:c9:50:95:a7:3e:81:ba:dd:3b:91:ca:8d:10:f1:
5f:ca:78:58:be:48:ef:84:ae:75:0f:31:27:58:f3:
38:8a:50:d9:58:84:7c:1d:11:eb:84:f3:bf:d0:07:
7f:c9:84:c0:8f:1c:7d:05:5c:e7:55:a2:fc:2c:e5:
65:75:83:24:4e:25:cc:97:19:c6:46:6c:e6:d6:f7:
12:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9B:C9:90:5C:56:2E:E5:DA:CB:E0:ED:76:00:41:BE:5B:9D:6F:B1
X509v3 Authority Key Identifier:
keyid:8A:38:D1:19:1F:66:F1:F0:31:5D:E5:F4:5C:C1:94:D1:CD:19:D1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/L5vJkFxWLuXay-DtdgBBvludb7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.80.0/21
185.89.156.0/22
IPv6:
2a00:4940::/29
Signature Algorithm: sha256WithRSAEncryption
81:34:68:2f:6f:3a:ef:a4:a8:82:54:af:cf:c4:31:21:ba:8d:
3e:e7:59:95:db:f3:32:de:a3:37:d7:e7:96:ee:8d:9c:15:16:
1f:d4:b0:e4:b1:37:9b:f9:a9:4d:0a:f6:3c:fa:74:88:1a:2d:
84:3e:1b:2e:c6:73:60:36:ee:67:24:a8:38:9f:a5:bf:d3:c9:
05:58:56:38:4d:66:2d:e3:3d:68:62:13:05:88:9a:d1:99:47:
7d:d9:21:dc:45:12:c6:e0:0d:71:5a:31:d9:17:85:9f:06:ab:
7b:89:a7:05:ee:ce:b3:d1:f8:73:62:db:bd:f1:55:21:e7:08:
18:d6:ba:d0:1e:6f:d9:56:68:c9:d0:5e:53:99:45:32:2a:5b:
25:60:aa:1f:29:93:cc:cc:14:5d:15:09:ca:60:ec:18:0a:e7:
d4:ed:b9:50:bb:c1:c3:a4:c8:f4:0a:80:a6:ae:73:61:19:0f:
c5:57:4b:25:aa:00:98:9e:0c:7a:ef:db:7a:af:24:d8:e5:42:
24:b2:48:9a:d2:61:a8:d4:82:9a:f4:2b:07:31:eb:62:74:42:
39:1c:f1:83:f6:31:ca:c2:1c:9f:0d:f5:07:90:95:c9:13:34:
17:49:3b:be:4e:c7:a3:27:aa:80:b5:e8:00:2a:1f:16:03:5b:
02:d8:ba:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 21:26:11 2024 by rpki-client on console-ams.rpki-client.org