Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/Yu5eIRc5bOaiLtU_-Eju-fVaJTk.roa
File: Yu5eIRc5bOaiLtU_-Eju-fVaJTk.roa (raw, json)
Hash identifier: e2VT9LS+drV4Yx78zv4D1CVdMTi/Q1x412xTajIq4TU=
Subject key identifier: 62:EE:5E:21:17:39:6C:E6:A2:2E:D5:3F:F8:48:EE:F9:F5:5A:25:39
Certificate issuer: /CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Certificate serial: 018CC42482CAD4D8A1FEFA1D8A65C540CCF3
Authority key identifier: F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/Yu5eIRc5bOaiLtU_-Eju-fVaJTk.roa
Signing time: Mon 01 Jan 2024 08:29:36 +0000
ROA not before: Mon 01 Jan 2024 08:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43843
IP address blocks: 185.74.248.0/24 maxlen: 24
185.74.248.0/22 maxlen: 22
185.74.249.0/24 maxlen: 24
93.94.26.0/24 maxlen: 24
93.94.28.0/24 maxlen: 24
93.94.25.0/24 maxlen: 24
91.142.64.0/21 maxlen: 21
91.142.71.0/24 maxlen: 24
91.142.68.0/24 maxlen: 24
91.142.69.0/24 maxlen: 24
91.142.70.0/24 maxlen: 24
109.69.128.0/24 maxlen: 24
109.69.128.0/21 maxlen: 21
109.69.129.0/24 maxlen: 24
109.69.130.0/24 maxlen: 24
109.69.131.0/24 maxlen: 24
109.69.132.0/24 maxlen: 24
93.94.24.0/21 maxlen: 21
93.94.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:82:ca:d4:d8:a1:fe:fa:1d:8a:65:c5:40:cc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Validity
Not Before: Jan 1 08:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62ee5e2117396ce6a22ed53ff848eef9f55a2539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b9:0d:f8:bc:26:57:65:46:d0:de:de:eb:56:
1f:8b:39:7e:ec:d3:6a:5d:ee:3b:1a:bd:39:87:3f:
8d:ac:57:de:70:61:0f:a0:4e:d1:0f:ed:3a:19:3b:
0f:9a:bd:a5:cf:10:66:cd:5e:5f:88:13:02:85:41:
1b:4a:96:87:4b:bf:9a:86:6e:46:c3:a5:86:80:68:
55:78:e6:1f:c8:ac:ba:8b:b8:ba:64:d7:0e:fa:60:
43:d1:d7:77:fd:af:c2:00:19:df:c0:a2:68:1c:27:
39:f2:6b:c6:40:0a:3c:b7:45:ad:ec:bb:d5:5e:d1:
f2:6c:97:b4:47:a2:5b:6f:18:1b:e7:c1:1b:3f:3b:
44:1b:00:a9:52:08:0f:a9:6a:79:4c:a1:e2:ca:9e:
1a:8c:4f:c5:98:c1:e6:9d:9f:23:92:cb:36:8a:f1:
85:90:e8:f7:97:f7:d5:e8:8b:89:6c:f3:eb:72:38:
e5:5c:6a:56:6d:2b:20:4f:8c:b9:12:49:1a:c2:aa:
b8:ac:7e:39:d9:2c:ae:0f:cd:6d:94:9c:61:0d:25:
dd:d4:50:75:de:b8:00:87:8b:3e:e5:e3:c7:05:bd:
9a:3f:d9:49:83:c7:81:f1:8b:b4:a1:c3:2a:f5:c0:
7b:91:9e:79:89:02:82:86:a3:e0:0a:0f:6b:18:11:
b7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EE:5E:21:17:39:6C:E6:A2:2E:D5:3F:F8:48:EE:F9:F5:5A:25:39
X509v3 Authority Key Identifier:
keyid:F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/Yu5eIRc5bOaiLtU_-Eju-fVaJTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.64.0/21
93.94.24.0/21
109.69.128.0/21
185.74.248.0/22
Signature Algorithm: sha256WithRSAEncryption
90:ad:12:2a:c0:7b:68:69:3d:41:63:71:e7:18:3f:58:57:0e:
6c:8b:a9:4a:41:66:d5:17:7d:5a:41:95:60:4d:73:72:da:f8:
63:08:82:db:4e:4c:5f:5e:82:c6:3c:f5:ed:c7:5b:8b:f0:c3:
26:9b:82:18:47:b6:2a:7b:3f:47:13:c7:2c:b7:03:84:30:bd:
ab:8f:36:b8:3c:fa:ae:c0:cb:e0:62:5a:72:c8:94:00:ec:b2:
2c:3a:7c:19:a4:87:63:c2:b1:c8:7d:0e:ee:26:f0:8f:b3:a4:
db:d8:4e:70:be:74:4d:e5:57:dc:2b:e1:63:8a:95:50:37:8b:
5e:57:10:ed:12:c3:7f:4d:c6:ed:20:42:8b:f7:9d:fa:2b:25:
d7:68:ba:cd:f0:88:83:55:ce:82:24:b4:f7:a7:02:f0:6b:e7:
49:0b:10:e0:d7:79:b5:1d:2c:f9:89:3c:b3:13:02:24:49:6a:
e8:01:51:ea:84:64:26:6f:7a:12:77:ff:f8:f7:26:f7:a0:64:
95:52:b7:04:28:2c:9e:00:84:77:d8:83:4a:e8:63:a3:eb:1e:
34:60:5c:2b:fe:34:65:8f:e3:31:16:4c:88:dc:c3:aa:70:29:
7e:54:ee:2e:7a:77:3a:af:f2:f3:ce:43:dd:78:5b:f1:9c:7d:
34:63:ce:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:23 2024 by rpki-client on console-fra.rpki-client.org