Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/ptkroxPIUtXP_BL9EY4fKdR3OtU.roa
File: ptkroxPIUtXP_BL9EY4fKdR3OtU.roa (raw, json)
Hash identifier: zG7HMFY4f1zz6Efz5wI3Jx6La8kAJDeFAfJsZHGuAaw=
Subject key identifier: A6:D9:2B:A3:13:C8:52:D5:CF:FC:12:FD:11:8E:1F:29:D4:77:3A:D5
Certificate issuer: /CN=c19f75b2593ca2b1b0a5fd0c54015de306c47ee6
Certificate serial: 018F7B85519586102CC89C1B2FE07837E298
Authority key identifier: C1:9F:75:B2:59:3C:A2:B1:B0:A5:FD:0C:54:01:5D:E3:06:C4:7E:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wZ91slk8orGwpf0MVAFd4wbEfuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/ptkroxPIUtXP_BL9EY4fKdR3OtU.roa
Signing time: Wed 15 May 2024 09:11:25 +0000
ROA not before: Wed 15 May 2024 09:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33915
IP address blocks: 37.235.8.0/21 maxlen: 21
80.112.192.0/18 maxlen: 18
83.137.136.0/21 maxlen: 21
83.167.192.0/19 maxlen: 19
85.88.96.0/19 maxlen: 19
85.146.192.0/18 maxlen: 18
93.117.192.0/18 maxlen: 18
159.100.64.0/18 maxlen: 18
212.78.192.0/19 maxlen: 19
213.34.128.0/19 maxlen: 19
2a00:18c8::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/wZ91slk8orGwpf0MVAFd4wbEfuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/wZ91slk8orGwpf0MVAFd4wbEfuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/wZ91slk8orGwpf0MVAFd4wbEfuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:85:51:95:86:10:2c:c8:9c:1b:2f:e0:78:37:e2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c19f75b2593ca2b1b0a5fd0c54015de306c47ee6
Validity
Not Before: May 15 09:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6d92ba313c852d5cffc12fd118e1f29d4773ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:66:5a:d6:d4:d4:fa:ad:24:2e:9c:0f:84:c1:
4e:bf:da:6e:0f:5b:35:8f:04:93:5b:a6:81:75:31:
86:bf:81:6d:85:b1:db:03:3f:60:ff:e6:db:6a:64:
86:bd:c5:7a:16:53:47:95:02:cd:24:23:30:9b:a0:
c0:9b:31:b1:f9:9a:ad:11:fb:a9:59:2b:4e:26:69:
28:b3:1a:d8:6b:86:74:1b:be:04:f4:d0:04:a2:46:
f3:bb:6e:09:67:3e:f2:d3:b9:40:9e:0b:36:78:2e:
4c:08:f9:c8:cd:60:e1:3e:81:73:52:6e:52:dd:4f:
3a:a9:ab:53:c3:4f:20:ae:a6:2b:a5:fc:eb:f6:a3:
67:de:13:46:ee:a4:73:54:de:46:06:a1:9c:e4:50:
84:91:3e:a7:7d:1e:48:8f:83:2f:dc:86:dc:4a:2d:
d0:b6:18:a0:f9:f3:e4:46:34:5f:db:65:0d:0d:b4:
7c:56:00:67:2e:e8:4e:e7:9d:60:25:53:e0:a8:de:
ea:dd:ad:6e:c3:fc:73:5f:a3:51:5d:10:ef:a7:e9:
14:64:b5:33:f4:90:b4:47:f0:2c:e5:c6:96:85:8f:
a3:65:2e:a0:a2:fd:26:e3:e5:d8:fb:9c:81:78:14:
be:b0:bf:f2:c8:bb:61:66:7f:95:4f:77:b7:11:24:
68:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D9:2B:A3:13:C8:52:D5:CF:FC:12:FD:11:8E:1F:29:D4:77:3A:D5
X509v3 Authority Key Identifier:
keyid:C1:9F:75:B2:59:3C:A2:B1:B0:A5:FD:0C:54:01:5D:E3:06:C4:7E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wZ91slk8orGwpf0MVAFd4wbEfuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/ptkroxPIUtXP_BL9EY4fKdR3OtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/37a8d2-3466-4616-bc1c-01240bcfdb42/1/wZ91slk8orGwpf0MVAFd4wbEfuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.8.0/21
80.112.192.0/18
83.137.136.0/21
83.167.192.0/19
85.88.96.0/19
85.146.192.0/18
93.117.192.0/18
159.100.64.0/18
212.78.192.0/19
213.34.128.0/19
IPv6:
2a00:18c8::/29
Signature Algorithm: sha256WithRSAEncryption
70:8a:5d:c6:19:1b:d7:e5:f0:8d:43:35:6e:cd:cd:91:fe:17:
6b:14:60:48:8f:d8:11:96:01:fa:14:e5:f2:10:ad:7e:f6:29:
da:c9:55:5c:74:1f:41:7c:82:ca:25:4d:fd:9a:5c:d1:41:f2:
d5:71:ff:a8:8c:94:c5:25:01:20:bc:31:0b:4a:03:38:ff:0c:
89:90:29:fa:ae:7d:06:0a:d1:c4:73:9c:e9:cc:fe:01:d8:25:
ec:cb:9a:79:7e:2e:61:fe:49:a6:51:22:db:d8:59:da:de:13:
b4:94:9c:fa:8a:15:ed:6c:24:c3:5a:08:4c:62:83:d3:1d:ae:
2c:45:96:78:a0:27:9a:98:19:1e:81:9a:91:e4:6e:70:57:7c:
9b:d7:8d:d0:99:7e:60:b6:44:0b:47:83:7c:c3:0d:cf:a2:bd:
d9:f6:91:d9:65:73:c8:63:c5:4e:e8:59:f8:a6:98:7c:df:b7:
62:92:8f:38:33:14:68:38:1d:14:e4:d3:23:e3:76:6b:96:47:
fc:59:99:25:69:49:d0:e3:ef:92:6d:47:4a:55:70:1c:e9:59:
23:3f:7e:af:cd:48:72:7c:ea:01:36:f9:0b:26:86:e8:1a:2a:
8c:d6:5c:d6:21:85:ab:02:9d:bd:9a:16:54:62:4d:2a:08:aa:
0d:db:a4:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:26:44 2024 by rpki-client on console-ams.rpki-client.org