Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/wKEfODeruehp3RDsMPS_1wWsnvA.roa
File: wKEfODeruehp3RDsMPS_1wWsnvA.roa (raw, json)
Hash identifier: ImEQMICTnNXJaMKnYDb1UIvkOY5jltQKhC0vMjdGTwY=
Subject key identifier: C0:A1:1F:38:37:AB:B9:E8:69:DD:10:EC:30:F4:BF:D7:05:AC:9E:F0
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018EF17563ACB6B4EB85B69A65F675DDFFD1
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/wKEfODeruehp3RDsMPS_1wWsnvA.roa
Signing time: Thu 18 Apr 2024 13:46:25 +0000
ROA not before: Thu 18 Apr 2024 13:46:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.86.82.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.237.83.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
2a0a:fa40::/29 maxlen: 29
2a0c:580::/29 maxlen: 29
2a0c:4a40::/29 maxlen: 29
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/29 maxlen: 29
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a10:4b40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:75:63:ac:b6:b4:eb:85:b6:9a:65:f6:75:dd:ff:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Apr 18 13:46:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0a11f3837abb9e869dd10ec30f4bfd705ac9ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:84:dc:7c:08:02:6a:de:5b:c7:0a:b2:92:
fc:66:8d:cc:9f:5a:68:8d:70:b0:5d:97:1b:73:28:
66:e5:87:c3:94:9b:c3:57:21:66:c0:39:51:0b:44:
5c:d6:42:2f:49:ed:70:54:3d:2e:0f:c0:04:0f:2a:
cc:f0:91:8a:09:5d:9f:14:ee:96:22:4f:2e:1c:b6:
12:e1:9a:6b:f0:79:bb:fa:41:10:2e:3f:18:1f:07:
a1:7c:0c:5b:72:a6:27:41:a8:6c:71:71:47:f2:6d:
81:c7:5b:65:08:a3:a4:d0:8b:77:61:ce:66:db:07:
bc:7c:fc:37:cf:4b:61:38:21:ac:62:c9:71:54:49:
5c:b4:b1:f6:c1:c9:9f:e6:e2:94:ac:fd:b2:87:c6:
d0:1d:31:b8:51:20:68:c1:d1:b5:b5:5a:6c:61:97:
ac:7e:7c:d5:42:bc:6f:7c:2c:2a:ca:b9:64:47:64:
95:f5:c8:cb:a8:dc:d9:b3:40:e0:13:e1:96:23:74:
60:9c:4f:fc:72:37:7a:34:1b:f6:26:8a:f3:9c:09:
e7:f3:a1:8e:d1:48:c4:ca:bf:a3:5b:27:33:85:f0:
b8:ec:f9:df:fd:da:2e:2f:25:d1:94:0a:d0:14:11:
87:da:11:a9:3e:e0:1d:fe:00:a7:cb:94:f6:84:21:
60:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A1:1F:38:37:AB:B9:E8:69:DD:10:EC:30:F4:BF:D7:05:AC:9E:F0
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/wKEfODeruehp3RDsMPS_1wWsnvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.237.83.0/24
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
2a10:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
46:7d:65:ab:6f:35:e1:49:ca:5d:04:43:87:ec:8f:8b:99:07:
62:38:f0:0e:86:10:f2:fd:db:c1:1a:49:56:cb:df:96:e2:c3:
5e:e7:80:c7:4a:bd:d9:17:ab:6e:ae:1d:f4:f4:3a:c3:dd:b8:
fc:26:77:f7:7f:fd:be:1d:d6:31:bc:5e:1f:55:f2:f9:c8:fc:
5b:48:24:79:81:7d:2d:ad:6b:39:41:57:1a:78:14:9d:63:fb:
37:de:11:87:9e:48:05:7f:d3:7c:95:86:c3:4b:b3:8b:17:ff:
77:df:40:9e:4b:85:70:01:1b:91:d1:83:81:e5:0d:bc:3e:9c:
c5:28:b6:9a:2a:0a:95:6c:c4:d7:1d:ab:80:c4:65:17:f6:e8:
86:f7:f8:14:4f:49:f0:8a:8a:a0:7d:c7:42:59:31:e0:52:a3:
19:06:5f:2c:bf:c1:75:4a:13:a9:ca:2f:43:dd:d6:34:6b:95:
7b:02:f4:86:17:1a:a3:9d:f9:55:f6:1c:70:ef:15:33:ff:cb:
ba:ed:71:98:91:18:10:44:90:67:ea:31:be:56:e6:4a:4e:ed:
61:63:16:71:22:64:d1:19:41:ca:a0:ce:ac:f3:ad:6b:8c:2f:
4b:e5:a5:07:95:1d:61:a5:55:13:23:4f:8d:d1:be:ed:7f:26:
21:13:81:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:44:44 2024 by rpki-client on console-fra.rpki-client.org