Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/AFd5SwdYEWY_JrddQqQriIr9rc8.roa
File: AFd5SwdYEWY_JrddQqQriIr9rc8.roa (raw, json)
Hash identifier: 5DHehwbXu5g6SS6Tc3M0pYKA3PEwr8bMyfAiyVRe+K8=
Subject key identifier: 00:57:79:4B:07:58:11:66:3F:26:B7:5D:42:A4:2B:88:8A:FD:AD:CF
Certificate issuer: /CN=19ee619ef96a3afd02fc2d5d003a947e4d2d590a
Certificate serial: 01934E34D4FEDB586E1A5E86F2F96C1D09F5
Authority key identifier: 19:EE:61:9E:F9:6A:3A:FD:02:FC:2D:5D:00:3A:94:7E:4D:2D:59:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/AFd5SwdYEWY_JrddQqQriIr9rc8.roa
Signing time: Thu 21 Nov 2024 10:11:45 +0000
ROA not before: Thu 21 Nov 2024 10:11:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216258
IP address blocks: 92.42.98.0/24 maxlen: 26
2a13:2140::/32 maxlen: 48
2a13:2141:1::/48 maxlen: 48
2a13:2141:2::/48 maxlen: 48
2a13:2142:1::/48 maxlen: 48
2a13:2142:2::/48 maxlen: 48
2a13:2143:1::/48 maxlen: 48
2a13:2144::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4e:34:d4:fe:db:58:6e:1a:5e:86:f2:f9:6c:1d:09:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee619ef96a3afd02fc2d5d003a947e4d2d590a
Validity
Not Before: Nov 21 10:11:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0057794b075811663f26b75d42a42b888afdadcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:97:14:92:19:42:e2:c8:3d:6f:2f:69:47:
dd:db:73:d0:8d:ed:0a:b9:1c:d0:5d:2c:81:91:24:
bd:35:11:c1:ed:08:60:35:f7:64:eb:df:65:fc:c5:
e1:00:d6:ff:da:a6:01:e8:af:09:1a:9a:bb:9f:7d:
8b:87:9f:be:68:93:80:d2:65:6c:e1:a0:31:ce:24:
67:85:b4:2a:cb:04:a7:4b:1f:9b:80:15:c0:ed:e6:
ee:c5:31:49:25:d0:20:a0:ab:68:ed:75:81:f2:e8:
a9:d8:ab:9a:dd:2f:80:cf:dd:62:46:59:04:a1:80:
3e:4b:ac:08:92:b3:9b:8e:e1:7c:70:9b:b9:57:e6:
4b:20:f2:8f:c7:07:ed:bf:c8:cb:73:db:03:1d:57:
e9:25:e5:a0:66:e5:24:00:79:99:74:8d:08:f9:59:
a0:8d:60:b5:53:c2:ae:08:a1:f0:5f:22:e1:87:7f:
c0:8b:23:1c:f7:42:27:c6:86:6f:e9:28:b1:67:50:
71:51:e0:14:ae:d2:e8:18:f8:99:20:9f:cc:87:85:
a6:75:2c:84:cf:7b:c7:55:40:85:4e:31:b8:cc:03:
1d:46:bd:1a:e7:98:ca:12:0f:3c:b3:df:e8:42:27:
a0:db:0f:6f:ca:60:d6:cd:2b:ec:df:14:4b:e2:2c:
1e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:57:79:4B:07:58:11:66:3F:26:B7:5D:42:A4:2B:88:8A:FD:AD:CF
X509v3 Authority Key Identifier:
keyid:19:EE:61:9E:F9:6A:3A:FD:02:FC:2D:5D:00:3A:94:7E:4D:2D:59:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/AFd5SwdYEWY_JrddQqQriIr9rc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.42.98.0/24
IPv6:
2a13:2140::/32
2a13:2141:1::-2a13:2141:2:ffff:ffff:ffff:ffff:ffff
2a13:2142:1::-2a13:2142:2:ffff:ffff:ffff:ffff:ffff
2a13:2143:1::/48
2a13:2144::/32
Signature Algorithm: sha256WithRSAEncryption
4d:83:ab:8a:f9:32:ca:6d:5d:be:d6:50:90:6d:65:b9:e7:f2:
95:72:50:3a:73:20:d5:f6:7f:6e:d9:2e:6e:f3:8a:aa:67:ba:
d7:8e:98:68:3a:79:de:ce:2f:9b:ba:2c:17:03:b7:3c:b0:1f:
98:c3:95:6e:ae:69:e6:75:0d:d1:7f:59:d3:38:70:2d:47:d1:
22:d2:a1:45:8d:94:f5:5f:5b:12:40:9d:8f:35:59:4f:ef:2e:
11:5c:9f:cb:d9:7c:fe:48:54:6b:c3:c2:54:84:b7:1f:bb:a0:
62:b3:a2:75:cd:77:a7:99:f3:7d:be:60:25:dd:23:7e:b6:40:
0f:1c:e1:80:39:ff:35:78:8c:18:cc:97:01:b1:52:93:45:4a:
b0:02:c3:99:45:a8:be:3e:c3:e7:b1:a9:74:6d:fe:6e:17:37:
7d:ea:c8:fe:c4:d2:0c:d7:b1:cd:e0:0b:5c:10:0b:d2:7d:9d:
44:11:ef:6b:b0:33:b8:24:24:e7:54:37:bd:48:31:21:b7:80:
e6:2b:48:85:36:8b:e3:23:30:86:33:37:56:3c:7b:5d:c8:b2:
d1:d3:e2:de:e2:36:07:3b:2a:e6:e2:47:cb:c3:50:26:c6:a0:
8f:c9:00:fc:17:09:2a:97:bf:17:da:1c:9c:aa:c7:cd:57:bd:
c0:21:da:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:53:11 2024 by rpki-client on console-fra.rpki-client.org