Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/gjXRue5SdvfWuVByq7F_O00Uo6k.roa
File: gjXRue5SdvfWuVByq7F_O00Uo6k.roa (raw, json)
Hash identifier: CKTojlBNBVR5zkyw3Gn+4myIvGUB13fa40Es3NqV8lA=
Subject key identifier: 82:35:D1:B9:EE:52:76:F7:D6:B9:50:72:AB:B1:7F:3B:4D:14:A3:A9
Certificate issuer: /CN=cbd4719d72d288a73218d8c1a498823333297e25
Certificate serial: 018CC49355C9FB8B7C8044C5318C94AB5806
Authority key identifier: CB:D4:71:9D:72:D2:88:A7:32:18:D8:C1:A4:98:82:33:33:29:7E:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9RxnXLSiKcyGNjBpJiCMzMpfiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/gjXRue5SdvfWuVByq7F_O00Uo6k.roa
Signing time: Mon 01 Jan 2024 10:30:39 +0000
ROA not before: Mon 01 Jan 2024 10:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206611
IP address blocks: 167.160.5.0/24 maxlen: 24
185.98.157.0/24 maxlen: 24
185.181.52.0/22 maxlen: 24
185.181.52.0/24 maxlen: 24
185.181.55.0/24 maxlen: 24
185.181.53.0/24 maxlen: 24
185.181.54.0/24 maxlen: 24
192.161.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/y9RxnXLSiKcyGNjBpJiCMzMpfiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/y9RxnXLSiKcyGNjBpJiCMzMpfiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9RxnXLSiKcyGNjBpJiCMzMpfiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:55:c9:fb:8b:7c:80:44:c5:31:8c:94:ab:58:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd4719d72d288a73218d8c1a498823333297e25
Validity
Not Before: Jan 1 10:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8235d1b9ee5276f7d6b95072abb17f3b4d14a3a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a1:d8:62:8e:51:8b:f3:e7:16:12:d0:6e:c8:
04:c1:54:79:1f:24:c0:af:14:9a:1f:48:52:17:68:
fc:c0:aa:5a:93:2e:59:60:95:e4:77:c8:9c:68:84:
ea:55:be:d6:a0:9d:ba:1b:d4:7c:50:5f:03:45:31:
74:a4:67:54:35:d7:ce:f9:96:98:9f:fe:3b:52:ab:
43:2e:d5:4d:1e:0b:0a:9f:f1:3d:cb:41:36:0d:35:
dd:e4:fe:e1:6d:18:fa:9d:a9:2f:b9:56:9c:42:24:
52:34:dd:1f:53:90:aa:56:ea:b7:e3:cf:99:2d:5d:
3e:08:d7:8b:09:cd:7d:e6:06:55:37:62:d8:d5:28:
7d:e9:dd:1b:2c:40:ee:d7:fe:5e:49:43:be:67:25:
63:13:24:9e:c9:16:b2:fc:2f:10:60:21:57:f4:de:
76:0a:ea:cc:3b:e7:ab:51:f9:c8:75:8f:7d:41:f0:
d1:ef:61:fc:37:3b:96:b8:32:bc:9c:04:67:f8:85:
a4:e6:8e:5b:9f:cf:55:b6:c1:f2:2f:a9:68:4a:ae:
03:bb:fe:db:d6:1d:cf:1a:e4:5c:dd:41:2b:de:77:
b1:01:3d:1b:a9:18:94:aa:a2:17:f0:2c:dd:bc:8e:
83:e4:ef:ba:c8:c0:c4:cf:a1:98:9d:ad:9c:16:9e:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:35:D1:B9:EE:52:76:F7:D6:B9:50:72:AB:B1:7F:3B:4D:14:A3:A9
X509v3 Authority Key Identifier:
keyid:CB:D4:71:9D:72:D2:88:A7:32:18:D8:C1:A4:98:82:33:33:29:7E:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9RxnXLSiKcyGNjBpJiCMzMpfiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/gjXRue5SdvfWuVByq7F_O00Uo6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc8c0d-f8c3-406c-b79e-b492d6ff483f/1/y9RxnXLSiKcyGNjBpJiCMzMpfiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.5.0/24
185.98.157.0/24
185.181.52.0/22
192.161.6.0/23
Signature Algorithm: sha256WithRSAEncryption
64:30:ef:61:8f:8d:14:fb:e9:76:5c:72:5d:af:57:04:08:46:
e0:c5:0f:cd:d2:88:2c:da:22:cf:f3:91:c2:3c:ea:f8:52:d4:
16:3a:02:53:32:5c:6e:69:61:15:e6:df:b1:c7:d2:6f:7f:81:
2e:df:63:56:3d:09:44:82:9f:70:d8:59:af:8d:58:ce:10:4a:
46:09:8a:85:ce:fa:68:04:82:36:07:58:d8:10:c8:9d:3f:a1:
1d:f9:57:98:bd:53:6d:b7:68:73:2f:8e:c4:ae:41:ef:83:0a:
2c:53:5f:e6:60:3d:80:65:d7:cb:49:8b:19:69:23:50:c7:99:
73:a5:cc:bc:f8:c5:83:d2:8b:bf:10:7d:e3:ad:84:1f:3f:b3:
99:0b:a8:75:d8:f7:29:c0:85:db:de:77:34:bf:28:d4:77:99:
59:4b:b5:fc:8e:1c:86:fb:5d:91:b1:3f:16:53:fb:14:ee:08:
19:30:6d:cd:9e:2b:b5:7d:79:63:1b:c5:16:ae:07:89:7c:d9:
08:a6:20:ff:ee:be:9e:ad:b3:cf:c4:97:3a:17:ea:35:f1:40:
5b:c4:23:7d:5e:05:44:fb:16:f1:29:2d:c3:ec:54:7d:1e:15:
01:5a:5c:42:9b:da:26:e6:82:a3:e8:f5:8e:c7:36:17:7e:d7:
ca:f3:33:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 23:46:39 2024 by rpki-client on console-fra.rpki-client.org