Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jSrcHuUc2281J0Hz-8s8FkGsTo4.roa
File: jSrcHuUc2281J0Hz-8s8FkGsTo4.roa (raw, json)
Hash identifier: TNY56taNwjrH1LZyZVUyOhmLOyjuvOXAmKrieki5iPU=
Subject key identifier: 8D:2A:DC:1E:E5:1C:DB:6F:35:27:41:F3:FB:CB:3C:16:41:AC:4E:8E
Certificate issuer: /CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Certificate serial: 018CC26D6AFE196459BA208544A9B1EAE74B
Authority key identifier: 7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jSrcHuUc2281J0Hz-8s8FkGsTo4.roa
Signing time: Mon 01 Jan 2024 00:29:59 +0000
ROA not before: Mon 01 Jan 2024 00:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 194.207.96.0/19 maxlen: 24
213.249.128.0/18 maxlen: 24
185.188.232.0/22 maxlen: 24
83.100.128.0/17 maxlen: 24
194.207.128.0/19 maxlen: 24
94.72.192.0/18 maxlen: 24
194.207.64.0/19 maxlen: 24
87.102.0.0/17 maxlen: 24
5.198.0.0/17 maxlen: 24
77.86.0.0/17 maxlen: 24
212.50.160.0/19 maxlen: 24
194.207.0.0/19 maxlen: 24
194.207.224.0/19 maxlen: 24
178.78.64.0/18 maxlen: 24
194.207.160.0/19 maxlen: 24
213.249.192.0/18 maxlen: 24
194.207.192.0/19 maxlen: 24
159.253.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/fRXP7bmuq0K_isWyTLGu7CpmCUM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/fRXP7bmuq0K_isWyTLGu7CpmCUM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 14:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:6a:fe:19:64:59:ba:20:85:44:a9:b1:ea:e7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Validity
Not Before: Jan 1 00:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d2adc1ee51cdb6f352741f3fbcb3c1641ac4e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d7:e0:78:ac:48:1c:fb:50:ab:c4:51:ef:7b:
94:92:37:f7:c4:be:f7:6d:fc:7a:5b:8a:7c:d0:ed:
36:6c:61:21:d2:6e:30:d5:9c:17:e7:5c:14:df:1e:
86:11:d8:98:2c:cd:e1:41:6e:f5:7b:3b:5c:38:c5:
28:54:1c:97:d8:a7:df:b1:07:ae:47:6d:8a:73:c7:
3b:3e:cb:24:53:6c:1f:49:c9:46:39:82:0b:51:e0:
d4:68:c9:1b:84:98:30:7e:4b:ca:51:c0:0d:c0:1d:
b3:47:7e:cf:f3:bb:e6:93:40:52:3d:e2:d9:b7:2f:
c2:10:49:2d:90:24:a1:1e:c9:aa:28:45:de:b5:91:
94:f6:96:eb:77:b6:50:55:87:f8:0c:23:3e:ed:bc:
aa:3a:c2:54:4e:ab:19:50:bc:3f:f9:fc:d9:21:38:
55:f3:94:c9:33:f8:5b:39:d8:f3:a1:9b:85:e0:c3:
c4:cd:69:23:f1:27:c5:1f:89:4c:df:73:d1:5a:26:
fd:01:34:70:84:cc:e0:a2:f7:82:a1:56:52:1f:d4:
4b:8e:61:fc:f2:c7:77:1e:a6:10:e5:c3:fe:ab:b8:
51:1c:d4:60:a5:b9:dd:5e:4e:d9:d0:e8:df:d2:b9:
6e:9b:b2:fa:48:fc:38:ee:d6:a5:1d:90:b7:b7:cb:
54:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2A:DC:1E:E5:1C:DB:6F:35:27:41:F3:FB:CB:3C:16:41:AC:4E:8E
X509v3 Authority Key Identifier:
keyid:7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jSrcHuUc2281J0Hz-8s8FkGsTo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/fRXP7bmuq0K_isWyTLGu7CpmCUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.0.0/17
77.86.0.0/17
83.100.128.0/17
87.102.0.0/17
94.72.192.0/18
159.253.64.0/20
178.78.64.0/18
185.188.232.0/22
194.207.0.0/19
194.207.64.0-194.207.255.255
212.50.160.0/19
213.249.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5e:ff:fa:18:e1:9d:74:1b:66:79:73:61:41:11:4f:44:47:e2:
b6:ed:66:a7:7a:5c:74:a7:37:77:1e:24:e7:6c:09:d6:17:18:
0d:f1:19:17:26:ac:a4:d6:f7:3c:5f:54:d8:b1:e6:cc:0d:12:
35:dc:32:29:97:f9:72:f2:b7:64:20:bd:6d:d5:77:e8:c6:dd:
a6:ee:31:59:98:4c:fe:77:ce:06:91:1d:8d:0c:62:82:23:c5:
63:ef:fe:24:92:71:5d:68:5a:1d:18:65:01:59:b5:24:a7:3f:
86:85:b0:b2:83:1e:60:7b:5b:71:1b:05:1f:98:24:9b:0a:0b:
d2:51:4e:48:73:80:ba:e6:46:7c:ec:dd:d7:04:7b:49:36:16:
14:fb:93:7c:ee:63:4e:4a:03:aa:91:92:f9:25:ba:af:9c:5d:
57:78:2e:92:d0:24:75:a9:51:c6:8d:13:48:af:58:af:6b:92:
6d:91:1d:22:82:2d:9f:8e:e5:14:b2:75:ce:51:f0:0c:af:f4:
55:66:ff:3e:6f:9a:a4:a0:4a:86:e9:0a:02:17:dd:ed:f1:88:
34:47:43:b3:b5:18:5a:9c:ec:ca:88:b9:2a:17:a5:78:14:84:
67:91:71:53:2b:32:54:08:11:a3:f1:af:a7:e7:3b:c3:02:3e:
97:44:a4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:40:10 2024 by rpki-client on console-ams.rpki-client.org