Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/C8Rx2uO-BzVI_KWt6vbgGgcuPJg.roa
File: C8Rx2uO-BzVI_KWt6vbgGgcuPJg.roa (raw, json)
Hash identifier: uJpHaR5uDu2UYVPTmZW2tL7DqaEhFGr1YJKvCZWs8ow=
Subject key identifier: 0B:C4:71:DA:E3:BE:07:35:48:FC:A5:AD:EA:F6:E0:1A:07:2E:3C:98
Certificate issuer: /CN=7c61e3d81f05acb56bdf798ed4ae2af637794201
Certificate serial: 018CCA2B980B893AC7C20D8875A653E84910
Authority key identifier: 7C:61:E3:D8:1F:05:AC:B5:6B:DF:79:8E:D4:AE:2A:F6:37:79:42:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGHj2B8FrLVr33mO1K4q9jd5QgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/C8Rx2uO-BzVI_KWt6vbgGgcuPJg.roa
Signing time: Tue 02 Jan 2024 12:35:03 +0000
ROA not before: Tue 02 Jan 2024 12:35:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61307
IP address blocks: 185.97.250.0/23 maxlen: 23
185.97.248.0/23 maxlen: 23
185.97.248.0/22 maxlen: 22
31.24.56.0/21 maxlen: 21
31.24.56.0/22 maxlen: 22
85.196.224.0/19 maxlen: 19
31.24.60.0/22 maxlen: 22
93.185.240.0/20 maxlen: 20
93.185.240.0/21 maxlen: 21
93.185.248.0/21 maxlen: 21
85.196.192.0/19 maxlen: 19
85.196.192.0/18 maxlen: 18
2a03:4360::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/fGHj2B8FrLVr33mO1K4q9jd5QgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/fGHj2B8FrLVr33mO1K4q9jd5QgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/fGHj2B8FrLVr33mO1K4q9jd5QgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:98:0b:89:3a:c7:c2:0d:88:75:a6:53:e8:49:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c61e3d81f05acb56bdf798ed4ae2af637794201
Validity
Not Before: Jan 2 12:35:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bc471dae3be073548fca5adeaf6e01a072e3c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:54:7c:33:95:a3:92:2b:58:a7:9a:b3:70:9f:
69:07:cf:a0:8f:be:73:dd:ee:49:ab:b8:77:90:9e:
c4:36:06:08:08:12:2a:98:d0:11:72:d6:76:2b:f4:
f1:b3:16:1f:34:a3:c4:bf:bf:a9:3b:a0:70:7e:47:
dd:a4:e5:b4:41:23:8b:af:ba:68:20:72:b3:e5:a5:
43:86:82:fa:34:89:6b:b1:18:05:ed:d2:b3:19:0b:
be:78:4e:16:de:ea:3a:be:49:05:d8:8c:9a:a6:af:
1d:0a:6c:2c:4a:8e:57:21:ea:42:0d:5d:7b:65:ac:
19:63:2e:a7:bf:49:30:5a:c3:72:6d:0d:05:38:56:
f6:fa:a6:0b:ef:b4:fa:9d:7d:82:4a:6f:e2:92:53:
20:f1:32:87:af:f2:25:a9:ad:96:fb:71:b4:26:7b:
73:b1:52:8e:12:53:87:50:2c:39:4d:64:00:fa:c2:
dc:04:35:75:87:a1:61:b1:de:0c:3f:8d:b1:2b:16:
7e:85:cd:be:42:49:8f:f1:57:21:cf:53:15:56:aa:
bc:0a:46:e4:5c:d5:c0:10:92:d2:d8:bb:bd:a8:38:
65:20:68:c7:3c:89:ed:76:e1:fc:ed:25:08:5d:ba:
4e:2a:3c:1f:02:ca:da:5d:d4:4b:77:c1:c3:76:45:
03:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C4:71:DA:E3:BE:07:35:48:FC:A5:AD:EA:F6:E0:1A:07:2E:3C:98
X509v3 Authority Key Identifier:
keyid:7C:61:E3:D8:1F:05:AC:B5:6B:DF:79:8E:D4:AE:2A:F6:37:79:42:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGHj2B8FrLVr33mO1K4q9jd5QgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/C8Rx2uO-BzVI_KWt6vbgGgcuPJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/fGHj2B8FrLVr33mO1K4q9jd5QgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.56.0/21
85.196.192.0/18
93.185.240.0/20
185.97.248.0/22
IPv6:
2a03:4360::/32
Signature Algorithm: sha256WithRSAEncryption
8c:49:0f:0b:4f:3d:e7:bf:a3:bb:f7:f6:32:3a:91:fb:2a:a7:
00:96:a1:72:74:5f:de:9b:34:91:f4:6d:41:eb:2a:0e:84:71:
9a:64:13:35:0c:e1:df:0c:f5:22:b1:4c:1e:64:73:9d:22:a7:
b0:5b:03:c8:46:0e:a8:99:41:98:54:2b:8a:a5:bf:4c:d2:0d:
1e:e9:07:a3:de:31:3d:17:83:4a:ba:21:99:1f:7d:d7:db:c6:
93:ae:b2:7b:95:95:44:cc:10:e7:73:42:0d:fc:b8:67:18:22:
c8:a2:ca:a2:27:4c:d0:ed:49:8a:71:b2:de:4c:32:81:06:67:
0f:ec:0e:c7:0b:6e:42:5d:2e:7e:ed:12:12:19:2b:30:10:81:
4e:9b:bc:75:97:b1:2b:7a:88:af:e4:ff:7c:e4:c2:71:58:e4:
d4:8f:83:99:0a:15:13:1e:3c:ac:1c:03:7c:3f:e2:eb:c6:f9:
f8:ab:38:40:31:87:07:ff:04:d4:d5:f0:cf:44:c6:0b:3e:4e:
4d:aa:45:6c:a5:4d:44:03:dd:ec:17:5a:cd:c9:53:a6:5f:60:
d4:b6:9b:04:6e:46:8f:c4:6a:a2:2d:ce:a4:56:d9:fd:33:85:
bc:44:34:d8:26:d3:b8:fc:62:9a:7c:71:61:17:86:6d:18:fc:
07:e7:6b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:16:42 2024 by rpki-client on console-fra.rpki-client.org