Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kWPjWa-PjA46JXtkgYEtm5ElOmM.roa
File: kWPjWa-PjA46JXtkgYEtm5ElOmM.roa (raw, json)
Hash identifier: 6OH/nwlt8oId0q1cankLz8uOSk2Du0qds9r3STUcNbA=
Subject key identifier: 91:63:E3:59:AF:8F:8C:0E:3A:25:7B:64:81:81:2D:9B:91:25:3A:63
Certificate issuer: /CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Certificate serial: 0190C7CDD74291BFFF6D29BD697DDD064A5B
Authority key identifier: 92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kWPjWa-PjA46JXtkgYEtm5ElOmM.roa
Signing time: Thu 18 Jul 2024 21:44:34 +0000
ROA not before: Thu 18 Jul 2024 21:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62597
IP address blocks: 185.103.32.0/22 maxlen: 24
185.103.32.0/24 maxlen: 24
185.103.33.0/24 maxlen: 24
185.103.34.0/24 maxlen: 24
2a00:edc0::/32 maxlen: 32
2a00:edc0:100::/44 maxlen: 48
2a00:edc0:10f::/48 maxlen: 48
2a00:edc0:1f0::/44 maxlen: 44
2a00:edc0:1000::/48 maxlen: 48
2a00:edc0:1001::/48 maxlen: 48
2a00:edc0:1002::/48 maxlen: 48
2a00:edc0:1003::/48 maxlen: 48
2a00:edc0:1004::/48 maxlen: 48
2a00:edc0:1005::/48 maxlen: 48
2a00:edc0:1010::/48 maxlen: 48
2a00:edc0:6000::/48 maxlen: 48
2a00:edc0:6259::/48 maxlen: 48
2a00:edc0:7ffe::/48 maxlen: 48
2a00:edc0:7fff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c7:cd:d7:42:91:bf:ff:6d:29:bd:69:7d:dd:06:4a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Validity
Not Before: Jul 18 21:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9163e359af8f8c0e3a257b6481812d9b91253a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:54:ca:71:e5:19:d4:cb:e5:de:44:5d:59:6d:
d1:7d:1f:c8:6f:ce:f6:3e:4b:c0:5c:1f:fb:47:df:
28:2a:98:50:fc:04:ed:c8:c0:7b:94:dd:02:ef:e2:
0b:97:9d:e5:39:87:cd:0d:c3:8c:5a:d7:98:0f:d0:
54:9d:5c:bc:96:1f:8e:cc:1c:ef:3e:f4:c2:7a:16:
72:55:d9:9b:f9:a9:da:39:77:52:f5:e8:2d:23:4d:
36:8e:86:d3:ec:09:b8:01:ee:ee:d6:e6:8e:de:9c:
3c:da:ee:e9:3f:90:89:b1:76:13:10:ee:33:e8:54:
4a:d8:04:d7:45:65:5f:d1:01:5e:ca:0d:8d:3f:95:
8a:7c:6f:dd:37:e8:eb:46:23:c3:ea:b3:4a:1c:c2:
34:d0:a4:1d:4e:f7:5e:ea:96:e9:49:7f:8f:14:79:
2a:1a:c6:0c:01:13:94:a2:55:f9:ca:1c:96:88:32:
16:c4:f9:ab:91:6c:fc:67:62:b6:90:1e:ea:9f:bc:
cb:8a:13:11:91:32:d7:b1:f0:eb:4a:76:4e:d0:b4:
ea:9d:ab:c4:0b:7f:c6:ca:63:15:7d:e8:ba:79:c3:
f4:de:f1:15:03:9b:2b:5d:32:a3:57:e4:e9:93:b3:
61:22:d9:b9:8f:db:31:5d:b0:4f:f7:46:33:4c:5d:
4a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:63:E3:59:AF:8F:8C:0E:3A:25:7B:64:81:81:2D:9B:91:25:3A:63
X509v3 Authority Key Identifier:
keyid:92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kWPjWa-PjA46JXtkgYEtm5ElOmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.32.0/22
IPv6:
2a00:edc0::/32
Signature Algorithm: sha256WithRSAEncryption
51:61:95:e7:8c:c0:20:5d:f1:cc:26:be:ef:e1:5a:fe:03:77:
bd:6c:43:a8:5b:6f:f3:cc:ab:17:e8:e7:94:83:f8:4d:91:f8:
23:ce:b6:9b:83:ab:bc:b1:a9:cc:5f:ca:af:bd:ed:d0:7d:b5:
de:60:4a:82:f0:6f:0b:15:fe:9b:e2:e1:0b:4b:03:0e:e9:c3:
57:21:8f:fc:06:a3:3f:aa:f1:e5:d7:9a:7d:01:91:68:a4:5f:
8c:11:30:e7:68:ea:30:d6:54:f2:62:04:d0:29:5f:47:a0:88:
59:93:ed:35:dd:a9:24:66:12:5c:91:91:5c:73:78:9c:a1:0c:
c4:6f:c2:3a:b9:e7:b0:6b:55:ee:9c:93:12:87:50:b8:b4:fa:
45:52:b4:df:eb:a8:ec:30:e1:ea:35:58:e3:d7:fd:95:7c:e9:
4b:1f:8d:0a:4b:30:dc:09:79:03:60:25:8a:59:1d:b9:6c:05:
25:77:4c:0d:93:5f:13:0c:90:11:e6:4f:d2:b6:ea:b3:f5:37:
03:34:fd:ef:c2:12:d0:dc:41:af:48:0c:52:57:10:84:4a:8e:
47:54:8a:3d:b8:b3:80:ff:87:a3:33:4d:08:58:b9:52:8b:e3:
1f:41:b1:65:4a:b9:8b:8e:1d:65:0b:ea:51:d8:fa:db:10:58:
2f:a4:14:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:25:34 2024 by rpki-client on console-fra.rpki-client.org