Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/rvBP2tXVHkzJRzMZTapmNCqqJg4.roa
File: rvBP2tXVHkzJRzMZTapmNCqqJg4.roa (raw, json)
Hash identifier: d1fLzP9dYIbnWtItbjCkbP/8bO9ShwXFLjQ78Z1NOYM=
Subject key identifier: AE:F0:4F:DA:D5:D5:1E:4C:C9:47:33:19:4D:AA:66:34:2A:AA:26:0E
Certificate issuer: /CN=4cb932bc60e9fd1186f8fa6bd713c20729ae73ee
Certificate serial: 018CC64B17CDCA77523D8125A34DD6EE153D
Authority key identifier: 4C:B9:32:BC:60:E9:FD:11:86:F8:FA:6B:D7:13:C2:07:29:AE:73:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLkyvGDp_RGG-Ppr1xPCBymuc-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/rvBP2tXVHkzJRzMZTapmNCqqJg4.roa
Signing time: Mon 01 Jan 2024 18:30:59 +0000
ROA not before: Mon 01 Jan 2024 18:30:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48966
IP address blocks: 95.130.91.0/24 maxlen: 24
95.130.89.0/24 maxlen: 24
95.130.88.0/23 maxlen: 23
95.130.88.0/24 maxlen: 24
95.130.90.0/23 maxlen: 23
95.130.92.0/23 maxlen: 23
95.130.92.0/24 maxlen: 24
95.130.94.0/24 maxlen: 24
95.130.93.0/24 maxlen: 24
185.88.81.0/24 maxlen: 24
185.88.80.0/24 maxlen: 24
185.88.80.0/23 maxlen: 23
185.88.83.0/24 maxlen: 24
185.88.82.0/23 maxlen: 23
185.88.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/TLkyvGDp_RGG-Ppr1xPCBymuc-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/TLkyvGDp_RGG-Ppr1xPCBymuc-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLkyvGDp_RGG-Ppr1xPCBymuc-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:17:cd:ca:77:52:3d:81:25:a3:4d:d6:ee:15:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb932bc60e9fd1186f8fa6bd713c20729ae73ee
Validity
Not Before: Jan 1 18:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aef04fdad5d51e4cc94733194daa66342aaa260e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7d:b5:62:c5:91:44:11:05:0f:f5:f9:ab:d2:
77:c9:64:ab:84:39:c4:85:d0:b4:bc:b0:49:04:bf:
3e:21:2b:51:e1:68:6a:5a:d6:e7:bf:63:9b:28:0d:
8f:86:ea:3f:d9:37:c2:f4:8e:d2:8b:a1:9a:81:b6:
60:10:d2:64:55:a2:ed:70:c2:82:19:18:ba:16:9d:
0c:32:d1:b6:3b:ee:b8:92:28:d9:62:8b:c0:6b:c9:
cf:42:9d:57:f4:58:ae:31:97:40:9b:54:54:a0:57:
90:be:8f:e9:a0:f4:1e:de:d9:95:87:8c:a5:67:98:
c0:25:6e:59:b0:a4:79:fc:e9:9e:b5:7a:51:fe:a9:
22:26:b3:54:1b:0d:0e:96:95:a8:70:d9:a7:83:33:
5e:e5:41:7c:8d:98:80:7e:4b:44:f0:46:d2:a0:1b:
62:5d:2c:cb:de:fa:ad:5f:69:57:f1:15:b2:15:35:
cc:db:4c:a4:57:bd:e0:28:9e:eb:07:58:ab:23:fb:
12:0b:86:33:83:3a:9a:9d:08:eb:e4:20:3c:67:6a:
8f:d3:25:2f:61:7e:d5:70:58:8b:e8:5c:0d:e8:90:
e6:92:6f:49:7c:9a:9a:7c:06:86:04:6f:9e:f1:11:
6a:00:bc:56:c3:59:d4:1b:82:d4:33:65:ea:44:53:
4a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F0:4F:DA:D5:D5:1E:4C:C9:47:33:19:4D:AA:66:34:2A:AA:26:0E
X509v3 Authority Key Identifier:
keyid:4C:B9:32:BC:60:E9:FD:11:86:F8:FA:6B:D7:13:C2:07:29:AE:73:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLkyvGDp_RGG-Ppr1xPCBymuc-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/rvBP2tXVHkzJRzMZTapmNCqqJg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/343892-780c-432a-882f-1e0d7c42da76/1/TLkyvGDp_RGG-Ppr1xPCBymuc-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.88.0-95.130.94.255
185.88.80.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:58:ae:cb:ec:f6:0e:aa:53:1a:2f:6b:01:72:e9:0a:55:d4:
2e:ca:4e:84:be:08:6e:bb:89:a9:19:e9:6b:35:4b:d0:fb:c1:
56:5b:ea:a4:77:16:01:90:30:61:4a:14:68:6e:11:9d:1e:99:
b8:4a:3e:3c:77:13:76:04:58:89:a9:40:04:d9:bd:d1:cc:70:
0b:5d:b1:94:cf:03:6c:a5:b1:a5:8e:18:d1:b8:85:61:d3:25:
8e:41:12:ad:81:d7:3e:b9:b2:3c:f9:9c:d2:d7:c4:71:29:49:
88:46:a6:27:d4:70:ab:9c:2d:69:6a:8c:b5:fc:3d:44:6a:6d:
1c:2c:5f:64:14:37:dc:a5:e9:a2:26:5a:6f:d6:a1:1d:b7:2f:
f5:5f:10:d7:f3:42:d0:5c:76:e9:ea:55:0e:15:cb:ac:c3:54:
0c:cb:f1:08:a7:81:26:1d:c3:39:2d:3a:e3:0c:13:f7:e4:11:
06:6c:84:c5:a1:1a:dd:46:6e:65:17:d1:78:3f:cf:c9:31:a0:
94:4c:ac:bb:9c:07:17:b5:3f:0e:c0:de:eb:3b:66:81:61:41:
f8:80:e7:be:6c:b7:d7:f8:0e:85:9a:c7:7a:88:06:0a:03:2f:
a2:b1:a4:36:77:6a:86:17:e5:5e:9f:ed:6b:54:f8:7c:3f:e3:
17:4d:38:83
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 1 12:36:16 2024 by rpki-client on console-fra.rpki-client.org