Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/vUgr-uKTzqO0Kip6mrTyVPX2UP0.roa
File: vUgr-uKTzqO0Kip6mrTyVPX2UP0.roa (raw, json)
Hash identifier: ADTPLKcJ/WaqvVIl/3o7vNrv9AfHBnaTViNrK7ZLFhs=
Subject key identifier: BD:48:2B:FA:E2:93:CE:A3:B4:2A:2A:7A:9A:B4:F2:54:F5:F6:50:FD
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 018EA3FF5B8722E93ABF989B24D1CD864249
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/vUgr-uKTzqO0Kip6mrTyVPX2UP0.roa
Signing time: Wed 03 Apr 2024 12:46:44 +0000
ROA not before: Wed 03 Apr 2024 12:46:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205585
IP address blocks: 185.143.232.0/22 maxlen: 24
185.143.232.0/24 maxlen: 24
185.143.233.0/24 maxlen: 24
185.143.234.0/24 maxlen: 24
185.143.235.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
2a0c:a7c0::/46 maxlen: 48
2a0c:a7c0::/48 maxlen: 48
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:2::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
2a0c:a7c6:4::/48 maxlen: 48
2a0c:a7c6:5::/48 maxlen: 48
2a0c:a7c6:6::/48 maxlen: 48
2a0c:a7c6:7::/48 maxlen: 48
2a0c:a7c6:8::/48 maxlen: 48
2a0c:a7c6:d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 23:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:ff:5b:87:22:e9:3a:bf:98:9b:24:d1:cd:86:42:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Apr 3 12:46:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd482bfae293cea3b42a2a7a9ab4f254f5f650fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ba:a5:10:b3:51:b7:fa:8e:6a:3d:89:1d:81:
0c:7b:d7:98:43:25:ee:48:f5:c8:c8:0a:8a:ea:49:
3b:dd:52:98:e1:40:29:33:99:a8:0a:f5:3f:29:85:
62:a5:0a:05:d7:43:be:0e:5f:a3:a2:5f:09:be:4e:
cc:66:65:58:0d:33:b7:db:ab:00:50:50:eb:b3:56:
07:ab:e9:43:0f:eb:a0:f0:f8:7f:5f:5d:0b:67:80:
8b:9a:d3:e5:68:16:2e:87:81:12:95:e7:41:4e:39:
6f:7e:9c:aa:c8:af:e2:ad:11:91:2d:d2:7a:40:da:
d9:8e:27:4a:e9:9c:c2:6c:80:cb:01:27:d5:9b:f0:
56:fb:a7:5c:1b:f1:97:56:ff:2a:ea:86:0a:e8:82:
6e:7d:fc:dc:8a:21:2c:6c:8f:45:b0:a7:e9:1c:0c:
e4:68:40:94:3f:38:95:63:03:6a:49:ee:95:84:2a:
8d:33:66:e5:cd:f7:8b:24:bf:18:2c:90:f1:20:b9:
f5:9d:a4:b1:6a:b9:43:27:42:2e:81:3c:03:17:9d:
9d:44:7a:d7:3c:99:23:0a:6c:db:3c:ef:5f:3b:d0:
e0:96:42:11:88:82:3e:6c:d5:a6:67:4b:6d:6e:6d:
f4:e2:02:1d:3f:43:f9:19:42:06:1f:04:c7:91:d3:
3b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:48:2B:FA:E2:93:CE:A3:B4:2A:2A:7A:9A:B4:F2:54:F5:F6:50:FD
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/vUgr-uKTzqO0Kip6mrTyVPX2UP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.232.0/22
185.220.226.0/24
IPv6:
2a0c:a7c0::/46
2a0c:a7c6:4::-2a0c:a7c6:8:ffff:ffff:ffff:ffff:ffff
2a0c:a7c6:d::/48
Signature Algorithm: sha256WithRSAEncryption
18:a8:57:9f:47:88:f4:d1:cf:25:9f:29:f8:65:75:58:77:11:
ba:41:0f:f0:4b:43:8d:db:7d:6f:3d:e2:c3:ca:a2:c0:10:60:
52:90:82:a7:ce:7f:99:fe:9c:2f:15:7a:eb:e6:02:7a:6c:24:
ed:fb:88:7a:7f:b2:16:51:d0:80:ac:08:c8:dc:df:5b:26:e7:
d1:da:47:74:ef:4d:50:43:09:8e:c4:29:09:e3:69:5f:40:ce:
b2:ac:24:50:40:36:7b:30:4b:14:0e:ab:1d:72:7d:29:75:44:
e6:63:db:6e:87:91:47:f8:bf:49:99:28:dc:f9:a4:f2:27:91:
23:fe:56:65:3e:3e:98:75:a8:e1:35:88:6d:e1:36:0f:6d:80:
06:cb:e0:0e:e2:84:f9:8d:c9:65:b8:26:72:2e:93:c9:08:92:
fc:38:b3:a6:1e:44:c4:80:de:e7:cc:2d:36:2b:14:d4:04:2a:
b4:f0:a5:c8:3a:d4:e6:bf:7e:b7:dc:08:68:27:c4:d6:70:c8:
d2:a0:9a:48:ef:19:2f:4b:16:5f:0c:b4:17:d6:cd:32:48:14:
a2:4a:3f:5b:ee:c9:e5:b1:51:f0:6f:39:05:aa:ae:3e:e3:41:
95:5e:2a:4e:fc:42:ed:77:0c:16:83:81:04:2a:ec:3d:07:52:
0e:84:6e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:01:35 2024 by rpki-client on console-fra.rpki-client.org