Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/v6YtcQkdJ66EsQ1Widj2ySOGFvM.roa
File: v6YtcQkdJ66EsQ1Widj2ySOGFvM.roa (raw, json)
Hash identifier: AOJWj9fShByd7Ki9R0joV5ryj5zLZiX+krPdSp6q5Tc=
Subject key identifier: BF:A6:2D:71:09:1D:27:AE:84:B1:0D:56:89:D8:F6:C9:23:86:16:F3
Certificate issuer: /CN=2452ab1d2d29bac9d52eb479de64c0700fc6724f
Certificate serial: 018CC9BB9C807500020CCB553BE849E9FF0F
Authority key identifier: 24:52:AB:1D:2D:29:BA:C9:D5:2E:B4:79:DE:64:C0:70:0F:C6:72:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFKrHS0pusnVLrR53mTAcA_Gck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/v6YtcQkdJ66EsQ1Widj2ySOGFvM.roa
Signing time: Tue 02 Jan 2024 10:32:44 +0000
ROA not before: Tue 02 Jan 2024 10:32:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202024
IP address blocks: 46.31.70.0/24 maxlen: 24
185.54.16.0/24 maxlen: 24
185.54.16.0/23 maxlen: 23
185.54.16.0/22 maxlen: 22
185.54.17.0/24 maxlen: 24
185.54.19.0/24 maxlen: 24
185.54.18.0/23 maxlen: 23
185.54.18.0/24 maxlen: 24
79.98.127.0/24 maxlen: 24
185.141.15.0/24 maxlen: 24
185.141.14.0/23 maxlen: 23
185.141.14.0/24 maxlen: 24
185.141.12.0/24 maxlen: 24
185.141.12.0/23 maxlen: 23
185.141.12.0/22 maxlen: 22
185.141.13.0/24 maxlen: 24
2a00:d30:16::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/JFKrHS0pusnVLrR53mTAcA_Gck8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/JFKrHS0pusnVLrR53mTAcA_Gck8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JFKrHS0pusnVLrR53mTAcA_Gck8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:9c:80:75:00:02:0c:cb:55:3b:e8:49:e9:ff:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2452ab1d2d29bac9d52eb479de64c0700fc6724f
Validity
Not Before: Jan 2 10:32:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfa62d71091d27ae84b10d5689d8f6c9238616f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:5f:8c:62:64:a1:49:80:cb:c9:b6:41:4e:
51:be:d0:da:be:90:23:78:cc:c3:4c:22:c2:fe:0d:
df:e0:f5:68:00:bd:58:e3:d6:25:12:40:ba:b8:c6:
44:84:26:61:34:76:5f:b8:cc:74:6f:8b:5f:ee:93:
d2:9e:9d:c2:fb:d9:37:6c:83:36:bf:36:6a:91:dc:
d7:f1:be:b0:36:d1:fc:e4:1f:29:dc:6d:37:c2:f7:
c6:f2:75:02:ea:ba:6f:ae:c7:c4:91:f0:8c:d5:71:
14:ef:d0:38:8c:a9:e7:5d:9a:ed:15:dd:6c:fa:0b:
f8:b9:b3:79:bb:da:08:40:54:4d:9a:39:f1:f9:77:
72:01:e4:1a:91:c0:d7:06:db:5f:c2:88:31:6f:f5:
62:42:a1:4d:ea:24:30:c4:7b:3d:3c:c9:f2:a6:10:
50:5c:b5:9e:d0:71:c3:db:06:91:55:fe:08:9e:78:
d6:08:8c:8a:5a:4a:74:52:ba:cf:46:06:64:38:3a:
04:3c:d4:4a:0f:8c:a8:e7:4a:01:96:e6:27:dc:d6:
f8:77:a5:0d:ef:02:d2:05:e4:ed:ec:75:a9:75:c5:
3e:e5:d2:c5:a6:56:71:73:5f:e2:af:b2:ec:e2:93:
02:bd:d1:75:cd:55:2e:90:84:c7:98:b0:0e:d6:6b:
9c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A6:2D:71:09:1D:27:AE:84:B1:0D:56:89:D8:F6:C9:23:86:16:F3
X509v3 Authority Key Identifier:
keyid:24:52:AB:1D:2D:29:BA:C9:D5:2E:B4:79:DE:64:C0:70:0F:C6:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFKrHS0pusnVLrR53mTAcA_Gck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/v6YtcQkdJ66EsQ1Widj2ySOGFvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc1d14-15c8-48fd-9ec3-969c94de89a5/1/JFKrHS0pusnVLrR53mTAcA_Gck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.70.0/24
79.98.127.0/24
185.54.16.0/22
185.141.12.0/22
IPv6:
2a00:d30:16::/48
Signature Algorithm: sha256WithRSAEncryption
c3:fa:30:39:c0:ee:8a:95:c3:e1:0c:90:83:45:6a:35:1e:db:
1b:93:8c:18:b8:2f:52:3d:ef:44:63:7a:6c:ba:bc:b8:a4:ee:
4e:4c:94:90:68:ea:db:69:93:3d:91:c6:83:42:8e:7c:e0:0f:
00:9a:12:cc:6d:91:36:77:14:e3:bd:e4:63:4b:21:42:22:8b:
e5:19:e9:29:5f:6c:b0:8d:40:d1:d4:02:c0:81:15:22:ce:6b:
b2:e5:77:be:72:c4:67:4f:b2:e4:88:b3:05:fb:2f:ea:4f:24:
51:2f:0d:cc:55:95:44:26:9a:50:cd:d5:77:d1:00:20:c9:3b:
40:e7:53:6f:3b:82:0e:3e:d1:f9:8f:0f:76:df:4a:01:42:9a:
fb:d6:61:7d:cd:1e:46:18:27:e5:fc:10:f7:03:81:91:1e:7c:
39:60:66:21:33:73:8b:d3:08:f5:ae:ec:f8:b7:6b:6b:36:ca:
6f:4e:85:a1:4e:e4:49:63:b9:57:6c:2e:22:37:c8:14:b0:de:
6c:52:3d:49:d4:f3:9d:db:f5:d0:cf:f4:f4:9c:1f:9c:34:83:
03:c5:01:24:33:7c:37:16:fe:93:b0:d1:7b:5b:b7:ce:e1:6c:
55:ad:cb:e3:fb:34:66:aa:4d:33:92:1d:49:70:fa:cf:15:9b:
3e:a5:ab:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:59:55 2024 by rpki-client on console-ams.rpki-client.org