Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/T5SEnwBuBQb72U9_oVbg1JJ15ME.roa
File: T5SEnwBuBQb72U9_oVbg1JJ15ME.roa (raw, json)
Hash identifier: 3HXhjhvPZ+StT6dDnUkH+AIfo45pXPN31p7TVjPlK9g=
Subject key identifier: 4F:94:84:9F:00:6E:05:06:FB:D9:4F:7F:A1:56:E0:D4:92:75:E4:C1
Certificate issuer: /CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Certificate serial: 018CC26D885049EE5C441C4C8090AB23D817
Authority key identifier: 9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/T5SEnwBuBQb72U9_oVbg1JJ15ME.roa
Signing time: Mon 01 Jan 2024 00:30:07 +0000
ROA not before: Mon 01 Jan 2024 00:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 212.62.85.0/24 maxlen: 24
84.201.65.0/24 maxlen: 24
84.201.64.0/18 maxlen: 24
84.201.66.0/24 maxlen: 24
84.201.73.0/24 maxlen: 24
84.201.98.0/24 maxlen: 24
81.89.246.0/24 maxlen: 24
212.62.64.0/19 maxlen: 24
212.62.68.0/24 maxlen: 24
212.62.67.0/24 maxlen: 24
212.62.72.0/24 maxlen: 24
81.89.224.0/19 maxlen: 24
2a00:1348:10::/48 maxlen: 64
2a00:1348:11::/48 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:88:50:49:ee:5c:44:1c:4c:80:90:ab:23:d8:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Validity
Not Before: Jan 1 00:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f94849f006e0506fbd94f7fa156e0d49275e4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5c:de:4c:e3:d6:1a:56:41:df:cc:e1:51:86:
1d:ac:ee:48:d9:11:b7:3e:e7:92:28:cb:b4:20:2b:
39:0f:32:d7:81:4b:54:98:a8:8b:88:a7:74:e5:1c:
4e:b1:ea:96:8f:9e:0f:b1:86:c5:4b:05:d5:55:c5:
72:67:4f:d0:f9:c4:30:b9:d5:01:f5:13:a8:8a:05:
a7:97:f2:c7:ae:86:11:7c:86:93:2f:31:91:b3:cf:
6d:7b:a0:ed:61:b5:f8:0f:ea:67:d4:c8:06:11:cb:
ba:b3:d9:8b:0c:89:2f:d4:1e:0d:20:01:c3:6e:58:
d2:48:13:72:a0:cd:d8:e3:15:79:af:08:a7:01:d2:
19:37:c0:78:6f:5a:fc:7e:32:30:60:e2:f5:c0:90:
fe:a2:e2:fe:64:08:2d:75:2a:9c:6d:da:49:4c:63:
da:1a:32:51:6d:c4:2b:23:a8:62:19:d9:4b:a8:5f:
ef:70:dc:83:e3:c1:26:4e:e8:8a:40:b1:68:16:31:
af:71:75:0d:19:eb:4d:4c:a9:47:c1:dd:22:65:53:
31:6b:22:c3:02:d5:fb:e3:18:db:56:30:6a:4b:cb:
b1:42:0d:03:4a:c8:f8:02:4e:07:df:c0:25:0e:45:
25:b7:39:3f:de:10:c3:90:38:54:a5:46:71:ee:f3:
bd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:94:84:9F:00:6E:05:06:FB:D9:4F:7F:A1:56:E0:D4:92:75:E4:C1
X509v3 Authority Key Identifier:
keyid:9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/T5SEnwBuBQb72U9_oVbg1JJ15ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.224.0/19
84.201.64.0/18
212.62.64.0/19
IPv6:
2a00:1348:10::/47
Signature Algorithm: sha256WithRSAEncryption
23:d7:e9:03:fb:74:9e:59:59:c1:39:11:d4:1d:ab:ad:24:5d:
22:a6:7e:1d:7b:7b:a7:7a:6d:d5:1e:56:ca:1e:7e:37:ec:72:
d6:1a:ea:6b:e3:00:8b:ce:69:48:bf:c7:d2:3c:20:55:07:f8:
41:8e:20:26:dd:ed:d4:14:9b:f1:34:8a:15:85:84:81:3f:6e:
e1:3a:bc:a7:18:0d:41:ab:9e:ee:cf:28:ee:68:4c:9b:52:3a:
5f:92:7e:ec:f7:bf:8d:f4:1d:94:da:6a:3d:ad:d7:2a:7c:39:
27:af:27:ec:f1:c6:cd:64:81:00:e9:b8:39:29:a5:79:02:d3:
4a:76:b7:1b:80:c0:01:1b:3e:28:32:32:00:36:56:67:c0:e0:
61:62:cf:13:bd:9f:50:6f:24:3a:75:41:f2:eb:ed:08:e3:be:
ac:fb:25:0b:cb:72:90:85:3c:f7:f5:e8:34:dc:3f:dd:5a:4b:
ff:c8:32:63:71:43:d2:7f:00:ee:20:30:dd:73:ca:30:e5:a3:
c7:94:5a:3a:fa:97:9c:84:37:6b:22:ca:1c:c7:03:ce:3d:ff:
6e:92:66:35:64:4c:ef:db:8e:9b:32:04:c6:26:5e:91:35:36:
0f:a4:37:18:85:fa:ff:25:e6:61:1a:9e:32:64:a3:c9:e8:fe:
f7:09:f8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:51:15 2024 by rpki-client on console-fra.rpki-client.org