Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/m2zFhaaZOjme0sH-TPAuBsNRa_E.roa
File: m2zFhaaZOjme0sH-TPAuBsNRa_E.roa (raw, json)
Hash identifier: +uT7qVFvJ5QydpoTHYWd7MCcbSfLPeyWrwrmYOyXXxc=
Subject key identifier: 9B:6C:C5:85:A6:99:3A:39:9E:D2:C1:FE:4C:F0:2E:06:C3:51:6B:F1
Certificate issuer: /CN=eb51359c9989b963e9594c1929c820367de322dd
Certificate serial: 018F3F022705E64E3F2D241E540CDF5715D2
Authority key identifier: EB:51:35:9C:99:89:B9:63:E9:59:4C:19:29:C8:20:36:7D:E3:22:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61E1nJmJuWPpWUwZKcggNn3jIt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/m2zFhaaZOjme0sH-TPAuBsNRa_E.roa
Signing time: Fri 03 May 2024 15:10:56 +0000
ROA not before: Fri 03 May 2024 15:10:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 92.40.128.0/19 maxlen: 19
94.197.48.0/20 maxlen: 20
94.197.104.0/21 maxlen: 21
188.28.192.0/18 maxlen: 18
188.29.32.0/20 maxlen: 20
188.29.48.0/20 maxlen: 20
188.30.0.0/22 maxlen: 22
188.30.4.0/23 maxlen: 23
188.30.6.0/24 maxlen: 24
188.30.7.0/25 maxlen: 25
188.30.8.0/21 maxlen: 21
188.30.16.0/21 maxlen: 21
188.30.160.0/19 maxlen: 19
188.30.224.0/20 maxlen: 20
188.31.0.0/22 maxlen: 22
188.31.4.0/23 maxlen: 23
188.31.6.0/24 maxlen: 24
188.31.32.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/61E1nJmJuWPpWUwZKcggNn3jIt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/61E1nJmJuWPpWUwZKcggNn3jIt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/61E1nJmJuWPpWUwZKcggNn3jIt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3f:02:27:05:e6:4e:3f:2d:24:1e:54:0c:df:57:15:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb51359c9989b963e9594c1929c820367de322dd
Validity
Not Before: May 3 15:10:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b6cc585a6993a399ed2c1fe4cf02e06c3516bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bb:14:06:76:29:99:5e:5f:20:49:76:eb:58:
14:92:9e:72:e3:1f:57:bf:8b:9f:c0:aa:53:22:7d:
38:ac:e2:8c:84:e9:5c:9a:4b:51:94:53:f7:00:99:
b9:ed:66:3a:86:3f:dd:db:c6:42:60:75:f4:56:2a:
37:5a:12:a3:67:ef:91:00:a7:ce:bf:2d:6e:59:cf:
72:c8:90:45:fe:7e:39:b9:f5:35:c3:b8:ab:40:d2:
3d:c1:af:58:a8:a8:3b:67:70:bb:57:f8:c3:eb:77:
10:8a:2a:6b:ba:8a:46:7f:88:d7:5e:04:52:58:06:
7e:4f:d6:39:c6:93:31:c2:c2:78:a7:37:28:5c:f5:
21:01:7d:0d:81:80:03:ee:8a:ed:1a:c5:32:e1:1b:
b1:39:18:5a:c6:a5:b9:6f:da:ac:9a:ea:85:61:56:
c2:85:13:98:d0:e8:94:1c:81:96:33:08:4c:06:44:
59:51:03:63:64:67:e8:55:be:75:57:eb:24:3f:62:
b8:bb:9f:0b:a9:30:eb:41:b1:dc:8f:93:c7:e4:c7:
4d:a0:5c:4c:79:12:66:fc:1f:4d:65:63:bf:67:d1:
90:5d:d3:bd:4c:ae:27:9a:f1:1e:52:7a:89:c1:44:
28:a9:02:57:27:17:1b:81:f2:4e:d1:bc:e2:02:89:
74:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:6C:C5:85:A6:99:3A:39:9E:D2:C1:FE:4C:F0:2E:06:C3:51:6B:F1
X509v3 Authority Key Identifier:
keyid:EB:51:35:9C:99:89:B9:63:E9:59:4C:19:29:C8:20:36:7D:E3:22:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61E1nJmJuWPpWUwZKcggNn3jIt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/m2zFhaaZOjme0sH-TPAuBsNRa_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d97d28-a2e2-401d-8ff0-59fc73d60322/1/61E1nJmJuWPpWUwZKcggNn3jIt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.40.128.0/19
94.197.48.0/20
94.197.104.0/21
188.28.192.0/18
188.29.32.0/19
188.30.0.0-188.30.7.127
188.30.8.0-188.30.23.255
188.30.160.0/19
188.30.224.0/20
188.31.0.0-188.31.6.255
188.31.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1e:0d:f6:30:c5:a5:54:20:6b:19:d1:15:d3:8f:2d:45:85:36:
b3:68:70:1d:9a:82:e7:e7:4a:b9:67:c2:57:a8:ee:cb:82:2f:
e4:e2:71:e5:b3:53:5f:62:ef:8d:98:2c:90:8e:41:c4:f9:fd:
43:fe:c1:fd:c8:61:f7:40:41:18:4c:77:42:d4:ed:bc:16:c5:
c2:68:0e:1a:81:fd:c5:da:c6:31:81:77:54:8b:dd:f1:ca:c2:
bc:44:0d:96:aa:b3:75:8a:24:04:06:1a:4b:bb:53:df:e4:39:
fa:98:27:68:61:62:8b:42:65:e4:1c:91:3f:fb:cd:ec:0a:0d:
03:34:ad:d1:1a:89:c3:9f:07:10:4d:3e:b6:41:9c:1d:e7:27:
84:e6:87:2d:a5:6c:af:69:3c:20:b0:c5:da:9c:50:c6:9d:66:
b5:d9:6e:80:71:38:26:61:42:e0:8d:65:57:8a:49:8e:4f:4e:
7f:4c:43:0e:cd:8b:58:58:af:19:72:45:ea:12:18:c9:c7:10:
b1:7e:5b:9e:97:e3:39:fa:a0:f0:9d:82:15:db:e4:c5:06:f0:
13:71:1f:68:aa:40:16:49:a1:f3:9b:cc:ce:e0:ad:ce:e3:a6:
27:1f:da:0c:5a:00:b0:e5:b6:6e:00:7f:21:90:3e:7f:35:e5:
06:c1:ab:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 25 09:55:10 2024 by rpki-client on console-fra.rpki-client.org