Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/JVqs9eeHNOtQkOzmYPqSmK5lmyA.roa
File: JVqs9eeHNOtQkOzmYPqSmK5lmyA.roa (raw, json)
Hash identifier: lYMZJhKaxiauF7VP1KiVuYi+7YFokSoUAUokanaIxS8=
Subject key identifier: 25:5A:AC:F5:E7:87:34:EB:50:90:EC:E6:60:FA:92:98:AE:65:9B:20
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 0190A1C9C92E6EE6E1820568061659CE77EA
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/JVqs9eeHNOtQkOzmYPqSmK5lmyA.roa
Signing time: Thu 11 Jul 2024 12:34:34 +0000
ROA not before: Thu 11 Jul 2024 12:34:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204755
IP address blocks: 193.142.147.0/24 maxlen: 24
2a0f:ca80:616::/48 maxlen: 48
2a0f:ca80:666::/48 maxlen: 48
2a0f:ca80:fe0::/44 maxlen: 44
2a0f:ca80:1339::/48 maxlen: 48
2a0f:ca80:b00b::/48 maxlen: 48
2a0f:ca80:beef::/48 maxlen: 48
2a0f:ca80:deed::/48 maxlen: 48
2a0f:ca81:deed::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:c9:c9:2e:6e:e6:e1:82:05:68:06:16:59:ce:77:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jul 11 12:34:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=255aacf5e78734eb5090ece660fa9298ae659b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:54:b9:ee:de:cc:ac:e0:1c:8a:b7:c1:6a:
02:47:63:67:90:59:30:0f:58:27:80:a9:09:0c:59:
d1:1e:65:e6:11:76:6c:dd:8e:60:4e:58:fd:b1:ab:
5f:b3:18:d5:af:7b:9b:b0:51:a9:0e:67:c0:4b:3d:
80:28:ee:b0:3f:0f:43:51:e1:df:6a:08:74:51:f1:
7d:99:e9:a7:5e:61:85:37:fe:b4:f5:93:eb:51:2e:
e0:87:e6:3a:d9:64:c0:22:36:ca:bc:4c:55:b2:1d:
61:90:5c:fd:d8:a6:a9:db:4e:58:c4:dd:30:e4:fa:
67:07:11:3b:da:97:e1:64:af:65:60:0e:87:04:c3:
c4:75:1b:f2:bd:e3:b5:aa:ec:42:c1:e8:3c:41:5b:
a4:6f:a8:d2:0a:67:e6:ae:78:0e:f2:24:e6:a9:6d:
fa:c5:4a:4f:64:da:db:a5:9e:4d:6b:7c:d9:6b:9a:
74:35:20:cd:a4:ca:3c:17:4b:c4:16:f0:0b:78:7a:
04:a0:23:fe:db:04:46:ee:69:7e:39:bc:69:39:2b:
72:e3:17:01:3d:3d:01:ce:ba:44:b4:da:0a:97:d0:
3c:92:ab:00:01:a5:0a:84:73:6f:64:9e:68:0a:f4:
69:30:24:0e:06:33:da:4b:22:80:23:0a:f3:ae:09:
dc:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5A:AC:F5:E7:87:34:EB:50:90:EC:E6:60:FA:92:98:AE:65:9B:20
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/JVqs9eeHNOtQkOzmYPqSmK5lmyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.147.0/24
IPv6:
2a0f:ca80:616::/48
2a0f:ca80:666::/48
2a0f:ca80:fe0::/44
2a0f:ca80:1339::/48
2a0f:ca80:b00b::/48
2a0f:ca80:beef::/48
2a0f:ca80:deed::/48
2a0f:ca81:deed::/48
Signature Algorithm: sha256WithRSAEncryption
80:f9:c2:3a:40:c5:3a:96:92:b7:14:56:29:89:47:ca:9e:d4:
98:da:d1:1f:58:26:d0:5e:87:a0:86:8b:2c:64:15:33:c7:7e:
1d:ad:69:92:27:c2:6b:08:fb:4d:30:a0:4d:9e:28:a8:d0:e3:
3e:ea:96:c3:7a:da:07:41:23:f0:26:a6:0b:9d:c4:63:69:5c:
86:ff:d8:f6:92:e7:16:68:57:49:b4:d2:4b:5e:36:f8:5f:b3:
1e:b9:30:1f:50:2f:7d:3e:3b:c7:42:c2:a7:bc:29:56:03:e4:
66:83:46:72:37:bf:3c:a3:24:52:ca:a9:a2:8e:15:f6:40:95:
6e:4c:eb:2a:2e:f4:60:13:8d:49:08:8c:a7:3d:5e:1f:15:ac:
19:f0:a1:00:18:97:5b:97:af:b6:e0:b6:75:6d:4c:9c:1b:4c:
8f:7e:54:14:9a:16:cd:6d:00:35:be:59:f4:30:ac:95:26:76:
1a:0f:25:9d:b6:02:ad:f6:28:9d:32:0f:b7:ef:d7:1a:79:3d:
30:64:44:79:ed:c5:01:11:f3:3c:d7:df:e1:d9:d2:de:24:fb:
fe:72:87:85:c0:0a:08:0b:a0:af:66:51:c4:b6:49:5c:ac:7c:
f8:63:47:d4:f6:e0:d1:4f:97:f0:e9:23:5e:10:29:0c:97:fe:
38:37:f7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:05:58 2024 by rpki-client on console-ams.rpki-client.org