Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/1-gLV62yKwUa3SPre0Cl6LtVVH20.roa
File: 1-gLV62yKwUa3SPre0Cl6LtVVH20.roa (raw, json)
Hash identifier: 1nDEkAnNZ9ScylUCCW5LdIh8wCO2OYmMLdifTXCllfM=
Subject key identifier: FA:02:D5:EB:6C:8A:C1:46:B7:48:FA:DE:D0:29:7A:2E:D5:55:1F:6D
Certificate issuer: /CN=2b9efb5878d3b3634dc1ccb90ac48e0b89d1c879
Certificate serial: 01906E1305C1DF56DF935738F033154F2D07
Authority key identifier: 2B:9E:FB:58:78:D3:B3:63:4D:C1:CC:B9:0A:C4:8E:0B:89:D1:C8:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K577WHjTs2NNwcy5CsSOC4nRyHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/1-gLV62yKwUa3SPre0Cl6LtVVH20.roa
Signing time: Mon 01 Jul 2024 11:34:18 +0000
ROA not before: Mon 01 Jul 2024 11:34:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202090
IP address blocks: 81.91.190.0/24 maxlen: 24
81.91.191.0/24 maxlen: 24
178.159.44.0/22 maxlen: 22
178.159.44.0/24 maxlen: 24
178.159.45.0/24 maxlen: 24
178.159.46.0/24 maxlen: 24
178.159.47.0/24 maxlen: 24
185.47.152.0/23 maxlen: 24
185.65.137.0/24 maxlen: 24
185.99.142.0/23 maxlen: 24
185.99.142.0/24 maxlen: 24
185.99.143.0/24 maxlen: 24
193.176.180.0/22 maxlen: 22
193.176.180.0/24 maxlen: 24
193.176.181.0/24 maxlen: 24
193.176.182.0/24 maxlen: 24
193.176.183.0/24 maxlen: 24
2a0c:b1c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/K577WHjTs2NNwcy5CsSOC4nRyHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/K577WHjTs2NNwcy5CsSOC4nRyHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/K577WHjTs2NNwcy5CsSOC4nRyHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:13:05:c1:df:56:df:93:57:38:f0:33:15:4f:2d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9efb5878d3b3634dc1ccb90ac48e0b89d1c879
Validity
Not Before: Jul 1 11:34:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa02d5eb6c8ac146b748faded0297a2ed5551f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:60:45:cd:17:7f:0a:9d:c7:77:1f:ee:92:
6f:02:85:4a:54:45:4d:95:05:5f:b6:b8:cf:bc:7a:
b2:af:15:ac:57:ce:b0:15:40:7b:ae:8d:b6:67:48:
3d:0e:21:90:a7:a4:a8:aa:e3:03:ad:1b:2b:d7:6a:
11:60:64:5d:23:96:76:c5:0f:19:2c:ce:8d:ff:6f:
6c:f6:80:74:a8:f0:33:41:a0:8a:3c:8f:5f:23:13:
78:f6:59:66:c4:a9:27:01:fd:cf:8a:4d:f3:8d:43:
cd:b7:9a:a4:62:5a:5b:be:1b:78:89:97:a3:1a:44:
47:b7:e3:69:17:02:3d:0d:70:fa:e8:ce:f9:68:2c:
3a:0d:02:e3:e6:f9:93:c3:a3:73:9e:f7:8c:b5:00:
c9:1e:54:18:03:23:d7:94:aa:88:3e:4b:b1:89:f8:
9e:e8:ed:79:33:7f:9a:f6:39:ed:9c:a0:5e:3c:b9:
df:43:f9:42:b0:4b:84:d3:56:71:3a:fd:45:d2:be:
7a:cd:fa:59:03:ee:7e:d2:10:3b:98:a6:7d:65:c8:
35:ae:fe:6f:5a:5b:64:88:14:0e:b2:93:ab:40:82:
7d:eb:13:5b:7c:6c:5d:87:c4:53:cc:a4:35:d8:c1:
f0:e2:fc:d3:ec:50:c3:9c:4b:23:c9:a0:fc:45:2b:
72:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:02:D5:EB:6C:8A:C1:46:B7:48:FA:DE:D0:29:7A:2E:D5:55:1F:6D
X509v3 Authority Key Identifier:
keyid:2B:9E:FB:58:78:D3:B3:63:4D:C1:CC:B9:0A:C4:8E:0B:89:D1:C8:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K577WHjTs2NNwcy5CsSOC4nRyHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/1-gLV62yKwUa3SPre0Cl6LtVVH20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/K577WHjTs2NNwcy5CsSOC4nRyHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.91.190.0/23
178.159.44.0/22
185.47.152.0/23
185.65.137.0/24
185.99.142.0/23
193.176.180.0/22
IPv6:
2a0c:b1c0::/32
Signature Algorithm: sha256WithRSAEncryption
29:dd:10:48:35:13:e4:84:bf:47:5a:4b:ec:c1:43:43:4d:e3:
e1:3e:a5:e8:42:4f:d9:a1:2a:46:53:0f:ee:28:90:41:64:95:
6e:2c:cb:93:1d:7f:54:52:c2:8a:0a:ac:b3:61:cf:c4:bc:fd:
24:d2:0f:8b:f6:fa:d3:82:19:45:0b:7e:2f:4c:fb:23:6a:fb:
fa:bf:23:a9:66:ea:ce:ab:9c:5a:d0:d3:52:7d:8d:da:6e:f7:
7d:0a:fc:eb:02:48:9c:b1:ad:d5:88:cc:27:94:a5:74:75:69:
34:bf:c0:7c:3a:12:02:58:7c:4e:8d:67:6d:9f:1d:99:05:58:
a6:a4:08:6a:c1:71:45:ee:c6:fc:65:a8:9f:c7:91:17:7c:c2:
ee:3c:dd:10:49:92:3d:13:5c:30:1b:0c:81:e6:99:eb:9e:48:
12:fe:85:99:2f:a1:60:f6:3c:10:07:b6:72:19:75:da:6f:d8:
db:3a:35:c3:c8:85:e9:96:44:be:30:38:26:f9:19:b3:ba:de:
e2:8f:58:37:19:29:3d:39:90:a6:53:0b:eb:1b:1a:13:34:c4:
89:32:e1:ed:9d:04:3a:4b:1d:41:a2:65:10:d8:24:b2:96:d3:
e1:ee:a2:d5:d7:7f:6f:52:7c:63:4c:46:21:02:ed:94:0d:31:
3c:77:08:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:57:09 2024 by rpki-client on console-ams.rpki-client.org