Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/3dwVY__kQpfa7c7wQ2tirg5sJfE.roa
File: 3dwVY__kQpfa7c7wQ2tirg5sJfE.roa (raw, json)
Hash identifier: YwwyXygVZs+2f+0yQBt4ayXx0u9LY5LEzDmvJRvre2A=
Subject key identifier: DD:DC:15:63:FF:E4:42:97:DA:ED:CE:F0:43:6B:62:AE:0E:6C:25:F1
Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Certificate serial: 0192CDF93F63B7E34C850EB267E8A903FF9C
Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/3dwVY__kQpfa7c7wQ2tirg5sJfE.roa
Signing time: Sun 27 Oct 2024 12:35:16 +0000
ROA not before: Sun 27 Oct 2024 12:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213176
IP address blocks: 209.35.224.0/24 maxlen: 24
209.35.225.0/24 maxlen: 24
209.35.226.0/24 maxlen: 24
209.35.227.0/24 maxlen: 24
209.35.228.0/24 maxlen: 24
209.35.229.0/24 maxlen: 24
209.35.230.0/24 maxlen: 24
209.35.231.0/24 maxlen: 24
209.35.233.0/24 maxlen: 24
209.35.234.0/24 maxlen: 24
209.35.235.0/24 maxlen: 24
212.59.64.0/24 maxlen: 24
212.59.65.0/24 maxlen: 24
212.59.66.0/24 maxlen: 24
212.59.67.0/24 maxlen: 24
212.59.68.0/24 maxlen: 24
212.59.69.0/24 maxlen: 24
212.59.70.0/24 maxlen: 24
212.59.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:cd:f9:3f:63:b7:e3:4c:85:0e:b2:67:e8:a9:03:ff:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Validity
Not Before: Oct 27 12:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dddc1563ffe44297daedcef0436b62ae0e6c25f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cb:95:be:c1:25:7d:8d:a8:d6:52:2e:f1:49:
5d:ff:d8:81:e0:44:53:cb:df:1a:52:e0:14:63:cf:
d0:f3:bf:5c:16:fe:70:4c:76:ec:23:e8:c0:d1:a0:
d4:a7:2c:ed:45:07:48:6e:0f:93:8c:61:0c:49:a9:
9c:d5:fd:2a:0e:86:be:e1:5e:df:89:2b:99:bf:05:
7b:f1:31:78:a8:c8:b7:05:d6:86:24:26:00:6d:a5:
d5:07:a1:cf:ff:24:ae:27:0e:a3:3e:f4:f9:94:1d:
b5:9c:3c:d2:73:bb:a5:71:b0:8b:14:86:8c:39:91:
f3:19:4e:7c:73:7f:db:74:c7:37:95:e7:bc:0d:af:
46:5d:d4:8f:ef:0a:f2:ba:d8:eb:96:ff:1b:9c:34:
52:6c:fe:fe:ad:68:97:1d:03:c6:5d:67:15:3b:3a:
f4:40:a7:64:f4:af:f8:8a:25:27:ce:42:5a:4e:9d:
a0:0d:2c:12:db:0e:cd:f3:2f:55:c5:8e:97:e8:52:
94:9f:d4:ef:b1:2d:45:9e:cb:31:cb:22:f6:e6:09:
b3:c6:2c:33:b8:14:03:a3:3f:2b:36:2b:f1:95:3e:
41:0e:67:10:92:33:d4:4d:67:39:d8:e4:dc:cc:7a:
e4:00:da:47:4f:28:a3:bb:1d:5c:39:ca:3d:10:58:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DC:15:63:FF:E4:42:97:DA:ED:CE:F0:43:6B:62:AE:0E:6C:25:F1
X509v3 Authority Key Identifier:
keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/3dwVY__kQpfa7c7wQ2tirg5sJfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.35.224.0/21
209.35.233.0-209.35.235.255
212.59.64.0/21
Signature Algorithm: sha256WithRSAEncryption
24:eb:2f:64:96:e7:93:f2:27:29:aa:28:88:fa:d5:34:4b:e6:
13:75:6c:43:a8:ac:5f:ab:07:bf:19:25:76:7f:37:b6:7a:7c:
a1:f6:16:0d:69:ed:b3:ae:09:e5:22:1f:80:46:04:51:38:46:
fa:e8:98:46:95:58:de:7a:e0:9c:2e:bb:3f:8e:46:dd:21:31:
77:c4:09:b6:6a:67:05:c1:6c:3c:cc:f9:37:d0:c6:61:97:16:
9c:5a:0b:15:ac:18:d5:ad:4b:05:66:df:e5:71:c0:d1:bb:bb:
96:5a:99:9a:18:20:52:21:b0:11:04:67:86:d5:14:17:c1:48:
5c:b6:ef:b3:a7:fb:c6:c2:1b:8d:27:8e:99:7a:aa:29:44:75:
b1:50:e4:fd:d2:f5:f5:ee:c1:4f:38:7d:cd:55:7b:71:e1:81:
b8:b1:b4:61:b0:aa:96:4d:c1:a0:1f:72:cc:58:59:03:da:57:
b6:90:1b:ad:77:85:1e:01:e0:8c:b7:2c:12:f8:57:c7:2b:94:
50:b3:ec:07:06:09:8e:5e:b8:4a:69:7c:e3:55:d0:3e:e0:88:
89:cd:ec:41:b3:85:76:14:17:86:b0:55:f1:bc:16:71:aa:19:
03:65:02:75:e7:b4:6c:bb:4d:a5:9e:dc:fb:d9:04:af:26:b2:
fe:37:cf:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:59:11 2024 by rpki-client on console-ams.rpki-client.org