Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/A7ZDEHdw1_xWGKMLduI0h-x8SP4.roa
File: A7ZDEHdw1_xWGKMLduI0h-x8SP4.roa (raw, json)
Hash identifier: /jKvYQNYLIYg6K3Hyd69evIzUALBu97qmVKaiOob4Wg=
Subject key identifier: 03:B6:43:10:77:70:D7:FC:56:18:A3:0B:76:E2:34:87:EC:7C:48:FE
Certificate issuer: /CN=b467367967dc763349fd0b50e31f75b823028590
Certificate serial: 0192255177A5AD27FF309B9A1F415E785620
Authority key identifier: B4:67:36:79:67:DC:76:33:49:FD:0B:50:E3:1F:75:B8:23:02:85:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGc2eWfcdjNJ_QtQ4x91uCMChZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/A7ZDEHdw1_xWGKMLduI0h-x8SP4.roa
Signing time: Tue 24 Sep 2024 18:35:48 +0000
ROA not before: Tue 24 Sep 2024 18:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201178
IP address blocks: 185.81.236.0/22 maxlen: 24
185.81.236.0/24 maxlen: 24
185.81.237.0/24 maxlen: 24
185.81.238.0/24 maxlen: 24
185.81.239.0/24 maxlen: 24
185.153.248.0/22 maxlen: 24
185.155.148.0/22 maxlen: 24
185.155.148.0/24 maxlen: 24
185.155.150.0/24 maxlen: 24
185.155.151.0/24 maxlen: 24
2a05:8a00::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/tGc2eWfcdjNJ_QtQ4x91uCMChZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/tGc2eWfcdjNJ_QtQ4x91uCMChZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tGc2eWfcdjNJ_QtQ4x91uCMChZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:25:51:77:a5:ad:27:ff:30:9b:9a:1f:41:5e:78:56:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b467367967dc763349fd0b50e31f75b823028590
Validity
Not Before: Sep 24 18:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03b643107770d7fc5618a30b76e23487ec7c48fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:80:ea:f0:64:8b:1b:60:35:7a:98:34:b0:8f:
75:f1:44:59:a2:83:40:66:8e:72:7e:5b:51:19:be:
e8:40:a0:86:89:6f:6b:db:0d:d3:31:9f:83:24:85:
56:d4:e0:f0:19:3d:00:eb:1a:87:a1:18:8c:2d:2f:
e7:a1:9a:24:5e:e6:b5:02:b1:82:6a:52:cd:45:6a:
e9:06:00:fe:9c:9a:ef:91:7b:19:8b:00:b9:1b:49:
9a:b1:56:42:d0:b8:95:82:65:0b:81:ab:50:65:90:
22:e5:46:dc:dd:b8:64:b7:d4:83:61:29:e3:59:c7:
06:58:78:af:6d:e5:6f:bd:a5:a6:e2:0e:30:ef:d6:
4e:5d:52:c7:7d:31:a1:f5:89:f0:af:b2:95:2a:e2:
6c:34:e9:fd:21:80:67:14:f2:51:6c:c2:d9:53:17:
a9:be:ab:8f:7f:c9:91:09:fc:af:64:60:5e:63:80:
b3:cf:c5:e0:a7:92:a4:3f:48:7c:04:ff:a7:9a:d0:
8b:24:64:26:53:5a:38:df:6f:63:a4:8f:32:04:70:
9f:04:80:32:db:63:6a:18:49:5f:aa:b8:17:36:64:
a0:82:c9:d5:6b:15:54:d3:dd:16:27:44:bc:7f:f3:
5a:20:4b:17:ec:51:38:c8:4a:ff:6c:02:46:e2:49:
47:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B6:43:10:77:70:D7:FC:56:18:A3:0B:76:E2:34:87:EC:7C:48:FE
X509v3 Authority Key Identifier:
keyid:B4:67:36:79:67:DC:76:33:49:FD:0B:50:E3:1F:75:B8:23:02:85:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGc2eWfcdjNJ_QtQ4x91uCMChZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/A7ZDEHdw1_xWGKMLduI0h-x8SP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dfc4f2-ed7d-4610-860c-b81373c40dc9/1/tGc2eWfcdjNJ_QtQ4x91uCMChZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.236.0/22
185.153.248.0/22
185.155.148.0/22
IPv6:
2a05:8a00::/29
Signature Algorithm: sha256WithRSAEncryption
8c:c2:56:d4:20:f3:de:ef:da:48:11:69:a4:b0:39:c0:90:e7:
91:2a:ca:3c:58:1f:c8:37:21:6a:5b:09:04:70:bf:b8:1d:cb:
9f:d4:c6:d9:95:ab:d7:54:5e:7f:59:9d:55:4f:f5:c4:fe:64:
07:d0:ab:38:29:cf:a9:b1:81:27:8c:56:54:db:09:b2:55:48:
99:93:41:53:74:ac:e8:98:a1:52:1e:c0:43:cd:b1:5e:ff:c7:
e1:88:0f:0e:9b:db:b0:4e:e0:3c:28:84:e9:42:ee:76:d3:4e:
15:13:7b:8b:85:01:73:6c:db:53:ce:99:5e:d9:11:86:ad:c1:
bc:2f:a5:10:50:c6:12:25:b3:5f:ad:d9:6c:1f:0a:51:67:71:
51:7b:6c:3b:32:eb:a6:40:76:9e:6b:24:33:da:39:b0:db:ae:
0c:8a:c9:b9:e1:95:cb:3e:f4:b5:d6:2a:e0:fb:b7:ef:35:99:
1c:2d:98:2c:79:46:96:c4:b5:6f:b2:77:90:9e:e4:4d:5f:ae:
d0:41:94:49:50:34:c6:7c:e6:6f:90:a2:0f:e9:87:a5:5a:ea:
23:b4:b9:84:f6:2d:c5:2f:57:e8:99:51:36:a1:b4:d1:6c:d7:
57:4f:2e:f7:de:f6:69:2b:3a:98:70:26:7c:92:c0:59:17:04:
f8:c5:82:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:38:17 2024 by rpki-client on console-fra.rpki-client.org