Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/gHIxv1Syx4N_MipL-mYRocClN5U.roa
File: gHIxv1Syx4N_MipL-mYRocClN5U.roa (raw, json)
Hash identifier: 4V2Q3xl5NdrU3cdeWKohfRMgjcg0GYls2kGKgJM/ft0=
Subject key identifier: 80:72:31:BF:54:B2:C7:83:7F:32:2A:4B:FA:66:11:A1:C0:A5:37:95
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018E752F1BEDECA50E706A3AC32D436265FA
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/gHIxv1Syx4N_MipL-mYRocClN5U.roa
Signing time: Mon 25 Mar 2024 10:36:45 +0000
ROA not before: Mon 25 Mar 2024 10:36:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 84.239.5.0/24 maxlen: 24
84.239.6.0/24 maxlen: 24
84.239.7.0/24 maxlen: 24
84.239.10.0/24 maxlen: 24
84.239.12.0/24 maxlen: 24
84.239.16.0/24 maxlen: 24
84.239.17.0/24 maxlen: 24
84.239.25.0/24 maxlen: 24
84.239.27.0/24 maxlen: 24
84.239.28.0/24 maxlen: 24
84.239.31.0/24 maxlen: 24
84.239.33.0/24 maxlen: 24
84.239.37.0/24 maxlen: 24
84.239.41.0/24 maxlen: 24
84.239.42.0/24 maxlen: 24
84.239.43.0/24 maxlen: 24
84.239.45.0/24 maxlen: 24
84.239.47.0/24 maxlen: 24
84.239.48.0/24 maxlen: 24
84.239.50.0/24 maxlen: 24
84.239.52.0/24 maxlen: 24
84.239.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 04:37:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:2f:1b:ed:ec:a5:0e:70:6a:3a:c3:2d:43:62:65:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Mar 25 10:36:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=807231bf54b2c7837f322a4bfa6611a1c0a53795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:21:d5:b1:8c:51:a3:63:06:0b:60:46:17:e6:
67:24:89:cf:e1:0e:f5:31:aa:8b:22:fd:4d:99:17:
d3:cc:e6:33:ff:40:41:cd:25:94:c9:ac:c5:a7:80:
1f:a0:8a:d2:a1:32:3e:53:f6:61:37:40:52:28:6a:
e5:30:9a:e0:07:2f:20:fd:84:fa:ba:cb:33:29:6e:
53:d8:5b:dc:f4:83:5d:f2:8f:7c:56:eb:3f:87:98:
9c:81:26:78:78:32:10:01:66:59:cc:d0:23:e2:e5:
17:28:56:22:da:c0:57:5d:c9:b7:e7:b8:6d:81:ea:
f9:ef:37:8a:11:57:61:8b:b5:ae:a9:ea:5a:ae:c0:
32:3f:d9:60:1e:ed:a5:03:ff:01:9f:f4:82:a0:ff:
fb:63:09:12:32:6c:68:ed:0e:2c:32:d0:a6:95:0a:
42:33:a4:43:8e:66:2c:47:83:de:ac:60:9b:6d:9b:
c1:da:61:84:57:8a:c6:11:d8:20:4e:c0:94:b7:f9:
11:ca:27:f4:2b:19:9e:eb:e5:64:a1:58:ef:3f:aa:
42:d4:84:66:dc:0e:2f:48:93:b1:e2:56:e6:ad:ca:
36:26:59:e3:0d:60:76:9b:8a:1f:f0:59:9b:c6:c7:
22:31:ce:0e:c7:e3:13:e8:ca:ab:54:0d:9a:7c:81:
68:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:72:31:BF:54:B2:C7:83:7F:32:2A:4B:FA:66:11:A1:C0:A5:37:95
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/gHIxv1Syx4N_MipL-mYRocClN5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.5.0-84.239.7.255
84.239.10.0/24
84.239.12.0/24
84.239.16.0/23
84.239.25.0/24
84.239.27.0-84.239.28.255
84.239.31.0/24
84.239.33.0/24
84.239.37.0/24
84.239.41.0-84.239.43.255
84.239.45.0/24
84.239.47.0-84.239.48.255
84.239.50.0/24
84.239.52.0/24
84.239.54.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:42:cc:d9:93:c1:51:58:85:3f:b4:af:7d:6d:a4:42:2a:03:
07:cb:0c:55:0b:7f:2d:b3:c8:ec:31:92:24:57:c9:84:47:c2:
b4:58:dc:81:24:1d:9a:1a:f4:35:d3:71:34:b7:f5:c3:72:d5:
cf:20:be:c6:bc:cc:78:42:59:9c:44:12:63:73:5f:e6:75:28:
e3:15:29:aa:25:95:98:52:82:35:2e:56:97:a7:a7:2c:e2:74:
52:bb:de:82:cb:7f:16:49:c9:7d:37:09:87:0d:6f:87:98:c3:
9f:34:be:f5:99:87:83:d9:3f:e5:16:ce:5a:7d:80:9b:eb:1d:
5c:56:17:09:80:2b:0f:1d:76:26:30:a2:2b:bb:92:99:41:6c:
b3:67:74:1f:61:6f:72:5d:17:36:45:32:c2:23:8e:e0:c0:33:
ba:a5:35:46:93:ac:3a:61:6c:8c:3d:4c:80:86:b6:7f:c4:87:
ef:e6:7d:2d:eb:9e:21:04:4d:9a:90:c2:86:61:ca:8f:4c:44:
c5:60:de:85:65:04:94:c1:db:4f:c0:55:03:8c:9c:09:8b:2b:
63:93:79:a0:c5:68:b3:a7:ca:74:8d:f3:de:ad:00:00:cd:66:
0d:f1:96:28:99:ec:75:e4:cc:4f:c4:fd:7e:60:ca:bc:da:c4:
68:2f:2e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 14:11:16 2024 by rpki-client on console-ams.rpki-client.org