Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Djed9NGdp-loih_gNOHFxmJIwD4.roa
File: Djed9NGdp-loih_gNOHFxmJIwD4.roa (raw, json)
Hash identifier: JrdjduYdmcEA3VEW0Mpeuxdx82AvnCjnHuKvyA6cQ3I=
Subject key identifier: 0E:37:9D:F4:D1:9D:A7:E9:68:8A:1F:E0:34:E1:C5:C6:62:48:C0:3E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01934643D2D92667AC8A6B394F686E36935F
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Djed9NGdp-loih_gNOHFxmJIwD4.roa
Signing time: Tue 19 Nov 2024 21:11:10 +0000
ROA not before: Tue 19 Nov 2024 21:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 46.3.160.0/22 maxlen: 22
46.3.205.0/24 maxlen: 24
46.3.216.0/22 maxlen: 22
46.3.222.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.229.0/24 maxlen: 24
149.126.230.0/24 maxlen: 24
149.126.243.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:46:43:d2:d9:26:67:ac:8a:6b:39:4f:68:6e:36:93:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 19 21:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e379df4d19da7e9688a1fe034e1c5c66248c03e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:75:5f:e3:6d:21:5f:69:c6:74:0f:4a:42:8f:
47:c1:e2:15:61:a3:09:57:c5:95:95:8b:da:40:b0:
02:39:90:13:67:95:e8:2e:c3:03:be:57:a1:0a:68:
ea:86:82:17:af:8e:6b:11:6a:fe:64:e1:8d:d1:07:
c6:fb:25:dc:c0:3b:64:b0:4c:f5:5d:fb:39:50:bf:
b7:f0:d0:f8:f3:82:8e:3b:99:bc:28:65:4a:87:65:
1f:be:a2:51:89:95:48:82:0e:74:fb:f6:23:67:15:
84:b9:c0:df:94:a9:8e:43:26:7d:ab:05:5c:72:56:
36:71:02:1d:84:a8:5e:2b:20:fb:d4:1d:5d:60:06:
34:ba:56:1e:3a:f0:de:8d:34:2c:f9:f7:02:a9:24:
b8:ca:fa:c2:59:2a:52:57:38:f2:fd:0e:96:77:17:
bd:04:78:2c:35:1a:c9:98:57:d9:c7:20:72:a8:2f:
9b:cf:3f:c5:14:fb:0f:89:c0:b2:eb:9b:22:6a:b1:
2e:f4:0d:e4:3a:99:54:1c:f2:2f:1a:e5:6a:f3:b2:
d5:c2:34:51:56:a4:4b:19:43:72:88:1e:7d:ab:9d:
d1:3a:f9:7c:7a:0e:d1:c8:b6:5d:41:d0:b7:05:19:
1b:32:a0:dd:62:55:0e:c6:54:f3:2d:e7:6d:05:bf:
e7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:37:9D:F4:D1:9D:A7:E9:68:8A:1F:E0:34:E1:C5:C6:62:48:C0:3E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Djed9NGdp-loih_gNOHFxmJIwD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.160.0/22
46.3.205.0/24
46.3.216.0/22
46.3.222.0/24
46.3.248.0/24
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.229.0-149.126.230.255
149.126.243.0-149.126.245.255
149.126.247.0-149.126.250.255
Signature Algorithm: sha256WithRSAEncryption
6d:63:fb:da:c8:25:4a:22:37:53:c9:3c:1c:49:e5:2f:15:bd:
cb:9b:56:3b:ac:5e:3e:28:49:ef:e3:6d:63:4c:f9:54:e2:17:
97:92:6f:bd:8f:92:13:89:14:2d:6b:c2:3f:63:69:51:d2:de:
a3:18:44:63:72:32:9d:1b:3a:40:db:eb:ed:b1:4c:31:d7:a2:
3b:f0:f4:63:e1:e4:02:3e:74:2c:87:0f:56:6b:40:46:f4:67:
19:45:7c:2c:78:86:6f:e0:0f:cb:c4:07:14:68:92:3e:a9:26:
ae:a0:fe:93:03:5d:c7:f1:3c:91:aa:03:cb:bc:e8:e6:b8:3b:
7d:d4:7a:e1:3d:31:a6:9e:80:ea:34:0b:c5:b7:83:e2:61:41:
b8:46:a7:e7:67:ff:4c:9d:0a:69:a5:5a:67:d7:2b:c8:02:3f:
c6:e8:16:95:6e:08:fd:e8:0f:92:39:53:73:e9:8c:67:16:8c:
e4:f4:ca:6a:30:8a:8e:ce:9b:46:80:df:da:47:ec:83:0c:f3:
cc:5f:53:2b:ea:fe:46:d7:ac:9f:0d:c7:c3:bf:b8:2d:c4:f4:
52:35:b5:e1:b7:d5:e1:d7:5d:4d:49:cf:ca:38:0a:66:d7:69:
67:69:db:2e:a7:29:56:aa:49:10:be:b6:1d:44:59:97:c6:30:
6d:fe:17:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:36:28 2024 by rpki-client on console-fra.rpki-client.org