Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/eSspHHlcdDnE5Qwus2Jmg_LTyBU.roa
File: eSspHHlcdDnE5Qwus2Jmg_LTyBU.roa (raw, json)
Hash identifier: OP6NNp7EvnCRLcMFneeCdVzdkPsZOtd7ILVWELHebMA=
Subject key identifier: 79:2B:29:1C:79:5C:74:39:C4:E5:0C:2E:B3:62:66:83:F2:D3:C8:15
Certificate issuer: /CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Certificate serial: 018CC6B7BC0F8C3B9CC756441C76D0E98DC3
Authority key identifier: 5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/eSspHHlcdDnE5Qwus2Jmg_LTyBU.roa
Signing time: Mon 01 Jan 2024 20:29:39 +0000
ROA not before: Mon 01 Jan 2024 20:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201771
IP address blocks: 134.239.128.0/19 maxlen: 19
46.49.186.0/24 maxlen: 24
46.49.192.0/24 maxlen: 24
134.239.64.0/19 maxlen: 19
46.49.202.0/23 maxlen: 23
46.49.200.0/23 maxlen: 23
46.49.211.0/24 maxlen: 24
46.49.209.0/24 maxlen: 24
46.49.128.0/24 maxlen: 24
46.49.133.0/24 maxlen: 24
46.49.138.0/24 maxlen: 24
95.177.151.0/24 maxlen: 24
46.49.151.0/24 maxlen: 24
95.177.150.0/24 maxlen: 24
46.49.150.0/24 maxlen: 24
95.177.147.0/24 maxlen: 24
95.177.146.0/24 maxlen: 24
134.239.12.0/24 maxlen: 24
46.49.159.0/24 maxlen: 24
46.49.154.0/24 maxlen: 24
95.177.160.0/19 maxlen: 19
134.239.192.0/22 maxlen: 22
2a02:df1::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:bc:0f:8c:3b:9c:c7:56:44:1c:76:d0:e9:8d:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Validity
Not Before: Jan 1 20:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792b291c795c7439c4e50c2eb3626683f2d3c815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c2:b8:ba:9b:82:2e:4f:fb:a1:33:cb:22:e7:
06:7a:e6:18:3f:6f:e0:ac:79:7e:bf:b1:a9:0e:dd:
a2:cc:06:bf:7c:9d:aa:1e:18:1e:d6:99:58:f3:01:
6b:c6:30:46:2e:00:61:9b:91:a2:86:c0:2d:76:e1:
bb:b4:89:42:75:b2:0a:6c:76:d1:48:01:d6:9d:b8:
68:3c:ee:49:da:fb:c2:ba:c8:de:51:f9:7f:00:e1:
13:41:ca:94:2b:38:29:e8:06:d3:cd:06:0a:a5:20:
6d:ba:ce:c9:4a:05:66:7e:84:8b:d8:f2:5d:94:d9:
01:fc:f5:96:e4:75:1c:3b:0a:dd:55:d6:54:41:0f:
c0:5f:b1:0a:2f:3a:d7:66:15:75:4b:08:2f:06:49:
a9:53:ea:e1:9e:ff:c7:1f:2c:98:80:25:d6:d4:3d:
67:ec:38:53:ea:03:99:4f:34:04:b5:15:a5:84:60:
52:f9:11:ee:a2:4a:64:38:f9:ed:3a:4e:bb:26:34:
13:39:60:53:2c:ea:01:7b:19:cb:88:93:54:b2:94:
97:c2:2c:e9:e7:98:5d:14:c3:aa:1f:7d:f8:3f:fe:
04:58:aa:d3:87:e4:8b:f5:62:0b:10:0d:00:bc:55:
50:cb:51:b2:8b:4d:42:59:1a:75:e4:fa:48:d9:4f:
62:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2B:29:1C:79:5C:74:39:C4:E5:0C:2E:B3:62:66:83:F2:D3:C8:15
X509v3 Authority Key Identifier:
keyid:5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/eSspHHlcdDnE5Qwus2Jmg_LTyBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.49.128.0/24
46.49.133.0/24
46.49.138.0/24
46.49.150.0/23
46.49.154.0/24
46.49.159.0/24
46.49.186.0/24
46.49.192.0/24
46.49.200.0/22
46.49.209.0/24
46.49.211.0/24
95.177.146.0/23
95.177.150.0/23
95.177.160.0/19
134.239.12.0/24
134.239.64.0/19
134.239.128.0/19
134.239.192.0/22
IPv6:
2a02:df1::/32
Signature Algorithm: sha256WithRSAEncryption
a9:f9:5e:6f:0c:cb:ca:c1:94:36:57:e1:b1:60:7d:3f:19:6c:
c7:01:cd:8f:87:63:cf:b3:35:bf:99:0c:0c:ea:3c:33:b9:12:
07:c1:b7:e6:c0:a5:b3:41:74:71:44:e2:01:8a:29:c6:e9:ad:
c3:09:33:41:c0:fd:9e:0c:19:20:e9:b8:01:a0:a2:54:b8:99:
33:03:ac:48:97:e5:53:b8:6a:db:fd:ee:5d:f2:fa:e6:8d:ec:
d3:25:49:cf:ab:10:1d:c0:18:7f:07:4c:75:df:40:3d:52:c9:
69:b8:ca:e1:27:6d:08:89:aa:21:8f:72:e2:81:70:cd:78:c6:
c8:43:ae:ff:6e:71:d0:99:8a:01:5a:76:b2:57:05:58:94:5d:
b5:da:1e:01:40:10:7e:ea:c1:9e:39:9f:43:c1:b5:4c:f4:bc:
13:eb:cf:c3:e7:78:03:23:f0:6d:c4:2f:90:e1:a6:c0:04:88:
27:46:fd:c4:a2:f9:ca:7b:4f:42:ea:13:2b:ac:50:9d:b4:ea:
a9:05:20:fc:fd:d4:ae:3f:ae:14:b6:de:d4:4e:82:9d:3e:b7:
fe:1c:f2:5e:c1:05:e1:bb:47:83:8c:0a:fb:0a:ac:23:ac:f8:
0a:55:32:95:be:1c:1d:5e:34:eb:5a:96:ef:56:a7:8b:43:0d:
a1:33:0f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:14:42 2024 by rpki-client on console-fra.rpki-client.org