Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/3cUFUrnbimLQC5Uh8U6Dt3TA9z0.roa
File: 3cUFUrnbimLQC5Uh8U6Dt3TA9z0.roa (raw, json)
Hash identifier: AgjCSkZoX47W1aUp8q6RVGfrXx38eqYAFiNsOC1rB4k=
Subject key identifier: DD:C5:05:52:B9:DB:8A:62:D0:0B:95:21:F1:4E:83:B7:74:C0:F7:3D
Certificate issuer: /CN=10eedc33aa442907189f0b3c563836951fb185bb
Certificate serial: 019077F84957BA78512688F5199BE8CBEFEF
Authority key identifier: 10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/3cUFUrnbimLQC5Uh8U6Dt3TA9z0.roa
Signing time: Wed 03 Jul 2024 09:41:18 +0000
ROA not before: Wed 03 Jul 2024 09:41:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47849
IP address blocks: 83.222.162.0/24 maxlen: 24
212.5.55.0/24 maxlen: 24
212.70.134.0/23 maxlen: 23
212.70.134.0/24 maxlen: 24
212.70.135.0/24 maxlen: 24
212.70.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/EO7cM6pEKQcYnws8Vjg2lR-xhbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/EO7cM6pEKQcYnws8Vjg2lR-xhbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:77:f8:49:57:ba:78:51:26:88:f5:19:9b:e8:cb:ef:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10eedc33aa442907189f0b3c563836951fb185bb
Validity
Not Before: Jul 3 09:41:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddc50552b9db8a62d00b9521f14e83b774c0f73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:4a:9d:7d:bc:58:ac:ec:92:e9:28:1f:dd:
92:d8:37:a9:2f:75:1a:7c:51:90:f8:4f:31:31:49:
08:92:f9:c8:57:48:3c:41:8b:5f:39:d0:c6:fd:d1:
46:b4:31:5e:60:a0:36:2c:ca:82:53:ab:73:af:33:
17:77:02:d4:14:28:62:59:6f:45:ac:b9:46:8f:62:
5c:e5:47:15:48:ca:21:8c:23:46:28:46:65:5d:51:
c4:dd:9f:c6:23:54:63:64:a9:ad:97:e0:f4:af:c4:
36:d4:46:48:01:96:f9:2d:88:55:0c:c2:d8:d9:b5:
64:76:dc:08:10:24:dd:d7:ab:df:07:2f:56:40:18:
8f:37:bd:3e:51:45:37:ce:7e:92:de:92:ea:12:82:
f3:d6:39:e3:e9:d1:64:50:72:23:bc:cd:a2:42:f5:
2b:8d:6e:74:50:d5:5f:17:84:3c:5a:b6:97:ee:d4:
00:df:24:98:67:4c:6c:fd:4e:c9:02:72:c8:96:a8:
45:30:1a:fb:28:29:e6:5f:0a:2e:06:e6:b6:bc:c2:
51:c0:5f:9a:52:cc:b4:36:fa:21:97:f4:0b:f6:f6:
1f:59:7d:95:11:3a:1e:c1:b8:d2:2c:8d:63:c5:35:
1e:30:d4:fe:14:0f:34:00:f6:60:53:4d:71:d4:ca:
a6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C5:05:52:B9:DB:8A:62:D0:0B:95:21:F1:4E:83:B7:74:C0:F7:3D
X509v3 Authority Key Identifier:
keyid:10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/3cUFUrnbimLQC5Uh8U6Dt3TA9z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/EO7cM6pEKQcYnws8Vjg2lR-xhbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.222.162.0/24
212.5.55.0/24
212.70.134.0/23
212.70.138.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ea:ce:bd:66:03:58:db:f9:d7:97:d8:f8:b2:66:5d:9a:99:
88:60:e3:07:90:fb:8d:3a:b9:de:f3:6a:9b:82:7e:f4:22:00:
27:24:22:c3:44:e9:0f:39:c1:c7:43:0a:12:a4:be:6f:30:39:
42:4c:fe:f5:ee:a6:61:6d:77:98:88:b0:4e:0a:1f:ec:64:25:
ae:5a:b9:e8:b3:53:ac:b0:34:7f:80:6f:4f:93:dc:38:bf:cd:
26:51:1c:91:26:2a:16:ba:2d:21:8e:e7:7d:4d:48:d3:98:bc:
47:3d:c0:af:3b:b9:1e:77:f4:5b:c0:1e:a8:b1:b9:1a:5d:83:
0a:62:07:4d:93:93:81:87:07:78:49:b6:49:43:ce:1a:0f:89:
51:7e:56:b5:67:25:2d:ca:67:13:45:ab:48:27:87:d6:61:25:
b7:fc:b1:bd:a2:74:27:4e:3e:09:f0:1e:c5:d0:75:a2:72:58:
8a:ca:0a:92:5f:47:55:0a:1e:25:c8:16:fb:b3:2e:f6:69:2c:
2f:7b:2a:3c:b0:e1:d5:98:ad:ff:df:6a:47:31:05:cc:fa:9b:
89:0e:13:71:6e:7e:61:1b:52:01:13:f4:f8:de:05:c6:7f:56:
18:18:19:6f:a4:cb:d6:c4:63:b7:92:15:be:20:cf:68:65:64:
da:c6:91:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:31:22 2024 by rpki-client on console-fra.rpki-client.org