Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/XX1gQ8j5ek29CW55tdKFjDpoMiY.roa
File: XX1gQ8j5ek29CW55tdKFjDpoMiY.roa (raw, json)
Hash identifier: cyWnLOSFFncIEkf0MX0WeNPZhUV5jIgX06jd9naGUpo=
Subject key identifier: 5D:7D:60:43:C8:F9:7A:4D:BD:09:6E:79:B5:D2:85:8C:3A:68:32:26
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 018F1EA6EB9644DD2729AF7A22FBFA8D51E5
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/XX1gQ8j5ek29CW55tdKFjDpoMiY.roa
Signing time: Sat 27 Apr 2024 08:23:26 +0000
ROA not before: Sat 27 Apr 2024 08:23:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208349
IP address blocks: 31.10.6.0/24 maxlen: 24
31.10.7.0/24 maxlen: 24
45.134.124.0/22 maxlen: 22
45.134.124.0/24 maxlen: 24
45.134.125.0/24 maxlen: 24
45.134.126.0/24 maxlen: 24
45.134.127.0/24 maxlen: 24
77.105.156.0/24 maxlen: 24
77.105.157.0/24 maxlen: 24
77.105.158.0/24 maxlen: 24
77.105.159.0/24 maxlen: 24
185.31.133.0/24 maxlen: 24
2a0e:7e40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1e:a6:eb:96:44:dd:27:29:af:7a:22:fb:fa:8d:51:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: Apr 27 08:23:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d7d6043c8f97a4dbd096e79b5d2858c3a683226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:96:9b:06:6d:d4:cb:04:74:46:b8:9a:c8:2f:
f1:0a:bd:6d:15:9c:84:8b:d8:e3:99:78:6c:3e:ee:
8c:c8:42:6f:86:7c:74:45:e1:2e:d3:6a:02:67:e8:
f3:90:d6:35:d2:61:c1:3f:8a:b7:0d:3f:79:86:52:
b6:b3:94:0f:b9:d8:31:05:42:33:a7:23:7f:e9:66:
0d:ca:c6:1e:f8:e7:09:d2:65:0d:43:db:93:1c:86:
e3:fe:83:f0:17:65:66:d9:b9:a8:11:ca:45:14:bc:
5a:ea:f3:0c:d3:f9:93:04:29:1c:05:ab:7a:bb:92:
5e:c5:c5:37:e6:ab:14:cd:60:22:bb:e7:b3:26:2d:
97:8c:45:75:a3:3e:a2:f2:d0:57:54:db:db:ae:04:
26:77:37:dd:38:be:72:e5:50:a0:84:90:48:a8:ed:
ca:6c:bd:9e:bd:b1:01:3d:58:09:94:53:f4:09:14:
db:b7:38:08:d0:aa:41:9e:2b:9a:0c:08:9e:db:12:
b2:2f:55:fa:59:6c:ce:3e:85:17:88:b8:7d:c7:ab:
38:9b:4e:1a:c0:84:93:22:e7:d4:51:46:aa:00:c0:
f3:b3:bd:f2:c0:00:1d:24:b6:ac:d0:af:a4:29:e7:
9d:2a:3f:f8:ec:9f:4e:d3:6c:23:69:2b:cc:9f:d9:
2b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7D:60:43:C8:F9:7A:4D:BD:09:6E:79:B5:D2:85:8C:3A:68:32:26
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/XX1gQ8j5ek29CW55tdKFjDpoMiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.6.0/23
45.134.124.0/22
77.105.156.0/22
185.31.133.0/24
IPv6:
2a0e:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
35:50:10:b3:e5:28:37:82:39:2a:3c:9a:a9:eb:61:bd:90:9a:
65:af:b8:a4:f4:07:5c:99:f0:3b:8b:16:4a:aa:93:90:1d:0a:
cb:66:f1:c2:6b:1f:9a:b4:63:17:44:6b:76:70:cb:b4:96:bb:
45:a7:18:f1:a5:61:f8:14:82:2c:e1:cd:b2:f2:6a:fb:37:e7:
3e:4c:95:23:d3:df:02:bc:22:8c:c0:6e:02:c0:90:35:ea:85:
d1:60:73:38:36:a9:77:c5:63:11:e1:8f:9f:7e:58:74:bf:10:
97:60:1b:e2:a9:2e:ac:eb:cb:d3:b4:cc:69:a5:2c:ff:c6:ca:
ed:84:39:d1:d0:e5:ef:92:3e:09:be:f3:80:d7:1f:04:b2:13:
55:03:2b:40:cf:fe:c0:4b:18:e2:a2:6f:e5:e9:24:e6:94:2e:
2c:54:68:65:98:8b:9e:da:07:da:69:e9:3a:f8:5d:2b:f9:5e:
d8:f6:08:8b:77:d5:bf:17:8c:b7:43:dc:2a:96:d7:e6:ec:35:
72:7e:06:2c:e3:35:61:a2:59:e1:cc:f9:a0:c7:bd:34:3c:ea:
cd:52:59:e9:49:a4:9b:14:14:0a:e5:89:52:e6:ad:fd:cc:5e:
69:d1:bb:4a:7d:bf:e9:0e:eb:ae:fa:e1:67:7b:93:69:8f:9c:
39:b6:83:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 14:02:16 2024 by rpki-client on console-ams.rpki-client.org