Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/uegvGagwK9zU4hne7SF3f2p26sQ.roa
File: uegvGagwK9zU4hne7SF3f2p26sQ.roa (raw, json)
Hash identifier: XgwpKniQixZj1lde6UJkRmWPGbQKNx0UIDPrSzx3PWc=
Subject key identifier: B9:E8:2F:19:A8:30:2B:DC:D4:E2:19:DE:ED:21:77:7F:6A:76:EA:C4
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0190A5F634D0A0117E4AECE19DA1F172E357
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/uegvGagwK9zU4hne7SF3f2p26sQ.roa
Signing time: Fri 12 Jul 2024 08:01:34 +0000
ROA not before: Fri 12 Jul 2024 08:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36007
IP address blocks: 45.91.171.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.223.169.0/24 maxlen: 24
103.45.245.0/24 maxlen: 24
103.45.246.0/24 maxlen: 24
103.241.66.0/24 maxlen: 24
103.241.67.0/24 maxlen: 24
185.47.172.0/24 maxlen: 24
185.53.209.0/24 maxlen: 24
185.139.228.0/24 maxlen: 24
185.144.156.0/22 maxlen: 22
193.168.172.0/24 maxlen: 24
193.168.175.0/24 maxlen: 24
2a06:c5c0:1500::/48 maxlen: 48
2a06:c5c0:1600::/48 maxlen: 48
2a06:c5c0:1700::/48 maxlen: 48
2a07:3b80::/48 maxlen: 48
2a07:3b80:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a5:f6:34:d0:a0:11:7e:4a:ec:e1:9d:a1:f1:72:e3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jul 12 08:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9e82f19a8302bdcd4e219deed21777f6a76eac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:30:ad:cc:92:5d:71:95:63:3f:99:b7:5f:2c:
3f:f0:01:1d:4d:04:8d:46:52:ce:47:b1:0f:68:bd:
f0:43:da:b1:60:a2:e8:41:d0:85:68:10:b5:34:40:
5f:dd:91:fe:97:75:8d:40:4f:ee:77:fe:3a:a5:3c:
7e:19:29:6d:91:55:15:6a:09:5c:39:df:e9:82:fd:
3d:fc:8b:97:b9:1f:6d:07:7f:bf:64:40:db:96:61:
70:02:fd:88:83:86:68:95:5e:3d:4b:40:37:13:5f:
47:19:56:11:22:36:ef:eb:e1:59:56:83:c5:6c:88:
70:d6:ec:35:d6:ea:0b:86:6c:2b:1a:41:5d:57:9f:
65:70:1a:6c:48:c9:4a:b5:de:9e:1a:a2:bc:87:d5:
6f:4f:fa:c8:9e:aa:df:1e:84:df:c3:44:9e:ac:2e:
cf:a3:27:bc:da:17:62:bb:6a:9f:47:99:0c:79:4e:
7c:c3:82:e7:c8:77:89:3e:51:d0:3a:07:c1:b9:1a:
23:97:f9:11:bd:02:2f:df:4a:94:09:03:16:b8:ba:
e4:f2:e8:f3:e4:41:b5:89:bf:c4:8b:7e:d2:4c:ab:
0b:e3:57:4a:28:4f:02:42:4e:51:d9:70:4d:c0:2a:
44:de:fa:0f:23:0c:41:48:fc:95:70:2f:85:8f:9c:
84:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E8:2F:19:A8:30:2B:DC:D4:E2:19:DE:ED:21:77:7F:6A:76:EA:C4
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/uegvGagwK9zU4hne7SF3f2p26sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.171.0/24
91.202.170.0/24
91.223.169.0/24
103.45.245.0-103.45.246.255
103.241.66.0/23
185.47.172.0/24
185.53.209.0/24
185.139.228.0/24
185.144.156.0/22
193.168.172.0/24
193.168.175.0/24
IPv6:
2a06:c5c0:1500::/48
2a06:c5c0:1600::/48
2a06:c5c0:1700::/48
2a07:3b80::/48
2a07:3b80:8::/48
Signature Algorithm: sha256WithRSAEncryption
49:ea:38:bf:22:ac:8b:d9:83:03:e2:c7:8b:10:f5:0c:1d:ca:
31:aa:c7:d7:64:e7:e6:29:7e:3f:2c:31:59:37:75:04:41:8f:
f9:22:3c:be:7c:37:be:96:09:13:98:cc:f9:26:50:49:4b:02:
ba:5b:7b:86:14:3f:52:64:f9:d9:8d:52:de:64:99:07:06:18:
1a:33:5b:1f:88:5e:dc:5e:38:78:32:8a:6f:84:39:6e:eb:69:
b4:d4:50:56:78:a3:04:1f:78:21:1a:09:cf:85:6d:19:61:a2:
08:1f:8d:92:98:87:84:be:31:64:c4:e5:2d:59:ea:a7:26:ae:
0f:8e:b8:e4:e0:49:69:d4:a0:44:5f:51:56:e7:c8:1f:17:7c:
3b:fb:0b:3c:8e:ca:0f:97:f1:f5:de:97:85:7a:62:23:a9:ce:
0d:c2:cb:5e:71:94:c1:6a:9d:7e:f7:a3:69:01:5d:80:d5:52:
9a:11:8e:22:99:a6:c2:4f:9b:4e:f3:db:53:c3:c1:dd:94:f6:
9e:93:a8:9a:f9:64:f7:54:11:ce:75:63:a2:50:f6:be:b6:55:
08:d8:9b:2b:75:f3:07:4e:8d:a8:49:12:d7:42:b1:93:91:87:
94:98:2d:54:19:c5:2a:8a:89:4b:48:1c:5a:e5:37:1a:ce:d3:
ae:a3:70:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:57:00 2024 by rpki-client on console-ams.rpki-client.org