Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/yfLjCbXl4fTTC513-23AwRxMTOY.roa
File: yfLjCbXl4fTTC513-23AwRxMTOY.roa (raw, json)
Hash identifier: fNVydBNFGdbIYzMvqLyVkcSMNf2QPQnJfJ4TXTEfL50=
Subject key identifier: C9:F2:E3:09:B5:E5:E1:F4:D3:0B:9D:77:FB:6D:C0:C1:1C:4C:4C:E6
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 01932015A69860C2AE3E93BBE1B3E7E567E7
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/yfLjCbXl4fTTC513-23AwRxMTOY.roa
Signing time: Tue 12 Nov 2024 11:15:09 +0000
ROA not before: Tue 12 Nov 2024 11:15:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56484
IP address blocks: 93.187.32.0/21 maxlen: 21
93.187.32.0/24 maxlen: 24
93.187.33.0/24 maxlen: 24
93.187.34.0/24 maxlen: 24
93.187.35.0/24 maxlen: 24
93.187.36.0/24 maxlen: 24
93.187.37.0/24 maxlen: 24
93.187.38.0/24 maxlen: 24
93.187.39.0/24 maxlen: 24
185.52.116.0/22 maxlen: 22
185.52.116.0/24 maxlen: 24
185.52.117.0/24 maxlen: 24
185.52.118.0/24 maxlen: 24
185.52.119.0/24 maxlen: 24
2a00:dd00::/32 maxlen: 32
2a00:dd00:3::/48 maxlen: 48
2a00:dd00:4::/48 maxlen: 48
2a00:dd00:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:20:15:a6:98:60:c2:ae:3e:93:bb:e1:b3:e7:e5:67:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Nov 12 11:15:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9f2e309b5e5e1f4d30b9d77fb6dc0c11c4c4ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bf:12:54:96:41:05:2d:bb:68:de:8f:3c:98:
91:fa:8b:03:26:4a:5f:24:1f:ba:6f:07:c6:95:d2:
27:3c:2a:92:f7:6c:56:32:2d:50:46:55:8d:b9:92:
28:7b:60:8b:d1:18:b3:71:b7:7d:3e:0b:8b:d8:56:
2a:c7:cc:19:59:db:30:18:6b:aa:a3:28:2a:9a:14:
9d:4a:0f:ee:2f:31:be:3c:74:6c:98:5a:ba:7f:33:
b2:b6:ea:60:b7:af:b1:c9:29:7c:44:03:31:fa:c8:
83:8b:1e:e4:03:8b:3c:5c:03:86:03:6e:d5:13:0b:
e2:d4:75:6a:0d:7e:5d:29:27:e2:4f:cc:18:b9:f5:
64:07:d9:82:d8:57:58:0f:69:e7:2b:8c:06:4a:78:
1a:f1:82:f4:62:0c:1e:e4:f8:cb:fa:fb:2f:bb:7e:
3a:52:57:e5:68:83:ed:0e:0d:ea:10:36:29:e8:12:
d0:27:10:47:d1:e7:52:46:1d:83:f8:d3:37:94:4f:
34:8d:c9:be:4f:cf:d4:8c:b0:86:48:d8:ed:32:79:
e2:ee:48:f0:80:3a:43:be:62:e8:73:a3:38:81:06:
51:d9:c6:5e:a9:b2:9d:2f:99:9d:ab:73:50:5b:73:
b1:ee:ba:e9:74:43:c9:23:3a:30:f2:79:c2:08:24:
34:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F2:E3:09:B5:E5:E1:F4:D3:0B:9D:77:FB:6D:C0:C1:1C:4C:4C:E6
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/yfLjCbXl4fTTC513-23AwRxMTOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.187.32.0/21
185.52.116.0/22
IPv6:
2a00:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
0a:25:ec:8c:e9:80:f8:58:73:fa:27:a5:3b:2d:f0:bb:94:4d:
c8:f0:e8:05:46:00:03:9b:e8:b4:7c:1c:26:e6:f6:dc:3d:f6:
56:f3:db:47:98:0f:ae:e8:81:ff:af:b4:81:c2:7c:c3:ac:ba:
2f:92:57:98:2a:a5:bf:f6:67:34:d5:43:fc:25:f0:d2:e5:c2:
15:7b:17:55:f1:0e:bf:d1:e6:ee:40:34:4d:bd:43:d5:6b:4d:
45:ad:98:2a:54:7d:c9:68:30:8d:04:5f:ec:41:81:42:7a:11:
19:16:33:1b:b7:68:ea:63:3c:4b:a0:05:48:61:c7:8c:e3:fc:
e0:66:cf:7b:10:da:76:1f:c3:39:20:f6:47:da:88:87:30:68:
9d:22:c4:29:b9:d5:ea:fd:73:43:5b:54:fb:a2:8a:a3:3b:a7:
21:a1:73:1e:35:36:5f:c6:f6:75:a3:e7:9e:62:ca:88:e7:fb:
c2:51:df:54:95:48:16:6e:e8:2f:77:72:3f:e0:b2:13:b5:d6:
4c:0f:02:83:b8:1f:9d:3e:0e:df:8f:83:21:9e:2c:d7:cb:b0:
ae:ba:6f:3e:3f:58:75:b8:1d:f9:0b:3a:a3:52:82:8b:5c:14:
1b:fc:60:77:35:cc:da:1c:72:ef:03:53:8e:f7:b7:54:f5:df:
83:83:76:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:01:23 2024 by rpki-client on console-ams.rpki-client.org