Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/_gpSMLlocBcPp0IA0gCw2QRie_0.roa
File: _gpSMLlocBcPp0IA0gCw2QRie_0.roa (raw, json)
Hash identifier: E3dzyDS8bzlNSGfDehmQBtiTD5jYkI0bcJTgLcmCA5Q=
Subject key identifier: FE:0A:52:30:B9:68:70:17:0F:A7:42:00:D2:00:B0:D9:04:62:7B:FD
Certificate issuer: /CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Certificate serial: 01909235C0066B075A13BB489B49724276D8
Authority key identifier: 80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/_gpSMLlocBcPp0IA0gCw2QRie_0.roa
Signing time: Mon 08 Jul 2024 11:58:34 +0000
ROA not before: Mon 08 Jul 2024 11:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6789
IP address blocks: 45.149.244.0/22 maxlen: 22
80.245.112.0/20 maxlen: 20
80.245.112.0/24 maxlen: 24
83.222.0.0/24 maxlen: 24
83.222.1.0/24 maxlen: 24
83.222.2.0/24 maxlen: 24
83.222.3.0/24 maxlen: 24
85.91.192.0/19 maxlen: 19
91.235.12.0/22 maxlen: 22
91.247.96.0/19 maxlen: 19
109.200.128.0/19 maxlen: 19
185.100.103.0/24 maxlen: 24
185.104.92.0/22 maxlen: 22
185.186.232.0/22 maxlen: 22
2a00:1d80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:35:c0:06:6b:07:5a:13:bb:48:9b:49:72:42:76:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Validity
Not Before: Jul 8 11:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe0a5230b96870170fa74200d200b0d904627bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bc:62:80:cf:2a:58:db:3e:0b:04:31:7f:9a:
ab:e5:29:e9:a1:5f:12:98:10:47:60:4e:31:80:5e:
b6:f8:a6:9b:ed:78:aa:be:4a:a4:17:81:4f:16:e1:
c9:96:4a:94:27:b6:78:58:bf:29:7d:ee:30:9d:63:
73:b4:2c:af:ab:73:ae:d5:70:49:59:1a:80:80:fe:
fa:16:f3:f7:b7:ca:3f:0b:74:51:72:0c:0c:d2:97:
15:23:9c:8f:bc:0e:d6:34:58:e3:88:29:33:27:49:
21:6a:ef:93:93:f8:7b:76:92:f0:68:1d:dc:be:19:
bd:9e:a4:be:46:78:17:57:4f:45:2d:e6:83:17:77:
97:1b:bb:05:ec:be:5a:13:a7:47:cb:59:a6:d3:b9:
41:18:a4:f4:13:97:47:44:0a:05:9a:2a:d4:be:d2:
57:da:0e:db:2e:f8:c8:de:70:6f:93:38:b6:41:4c:
ce:af:59:1f:61:9e:e6:36:67:1d:1c:2f:91:59:6e:
10:70:aa:02:29:3c:14:b8:4e:e2:4c:05:45:38:6a:
7c:b9:b6:0b:8f:7c:ad:d7:cf:82:64:f0:2f:49:7b:
00:71:3e:be:13:07:fc:b5:c2:44:df:45:23:94:ab:
19:b0:d7:9f:c5:49:58:a7:ac:61:97:23:68:4a:fa:
a6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0A:52:30:B9:68:70:17:0F:A7:42:00:D2:00:B0:D9:04:62:7B:FD
X509v3 Authority Key Identifier:
keyid:80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/_gpSMLlocBcPp0IA0gCw2QRie_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.244.0/22
80.245.112.0/20
83.222.0.0/22
85.91.192.0/19
91.235.12.0/22
91.247.96.0/19
109.200.128.0/19
185.100.103.0/24
185.104.92.0/22
185.186.232.0/22
IPv6:
2a00:1d80::/32
Signature Algorithm: sha256WithRSAEncryption
3b:a4:c4:5c:96:b0:40:bf:0a:0c:72:e1:fb:ea:47:c0:72:4c:
11:6d:c8:25:5a:41:c1:4a:87:e3:00:89:52:3d:b4:a2:8a:5a:
c0:5e:32:52:7b:18:c8:4f:59:19:ff:6e:ad:24:6f:a4:ce:c0:
6f:4f:d8:34:f6:ea:12:fa:56:4d:51:f3:8a:52:1d:7f:78:b1:
d8:cd:56:01:f6:e1:93:cc:ba:54:dc:cd:b0:79:7a:e4:e6:b7:
9e:93:de:de:df:c3:73:a3:21:b4:6c:a6:43:d8:ef:f7:6a:d7:
34:ac:7f:06:63:e0:f1:97:e5:cd:ed:66:17:05:c0:fd:32:43:
5c:91:d0:46:69:78:9d:71:f3:8f:3c:6a:12:19:5a:6e:9a:b6:
d3:b4:d7:61:32:f5:84:5e:28:96:fd:84:11:18:90:9a:13:56:
6b:8e:6e:f0:7f:6a:c0:bb:c4:45:cb:42:ec:4e:3f:a5:11:63:
74:22:b3:91:d2:63:9c:c0:e2:68:8e:75:e0:34:d7:76:79:62:
18:83:ba:42:ab:57:6c:ff:22:1d:ef:b1:12:4b:75:c6:95:b4:
da:3b:f3:cc:b9:b8:7c:74:b5:9c:05:33:dc:21:b2:0b:5a:1b:
b0:84:09:e8:5e:0a:a4:f5:a1:68:03:0c:c1:ab:35:52:b6:8c:
e5:6d:20:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:14:36 2024 by rpki-client on console-fra.rpki-client.org