Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/hHTc5WSNewYP0m_Xbk9399DO9uU.roa
File: hHTc5WSNewYP0m_Xbk9399DO9uU.roa (raw, json)
Hash identifier: YmPtOCX15wX7Rvf+nDHf7yLIHAWSX2QkFVmtgpCgeWM=
Subject key identifier: 84:74:DC:E5:64:8D:7B:06:0F:D2:6F:D7:6E:4F:77:F7:D0:CE:F6:E5
Certificate issuer: /CN=64d171f93cc1ca716fc806e36a55852cdf4f1c1c
Certificate serial: 0191A2999F9DC0397069A75CDCE0BD18800D
Authority key identifier: 64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNFx-TzBynFvyAbjalWFLN9PHBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/hHTc5WSNewYP0m_Xbk9399DO9uU.roa
Signing time: Fri 30 Aug 2024 09:24:22 +0000
ROA not before: Fri 30 Aug 2024 09:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47962
IP address blocks: 37.122.152.0/22 maxlen: 22
37.122.152.0/23 maxlen: 23
37.122.153.0/24 maxlen: 24
37.122.154.0/23 maxlen: 23
37.122.154.0/24 maxlen: 24
37.122.155.0/24 maxlen: 24
37.122.156.0/23 maxlen: 23
37.122.156.0/24 maxlen: 24
37.122.157.0/24 maxlen: 24
176.106.224.0/22 maxlen: 22
176.106.224.0/23 maxlen: 23
176.106.224.0/24 maxlen: 24
176.106.230.0/23 maxlen: 23
176.106.230.0/24 maxlen: 24
176.106.231.0/24 maxlen: 24
2a0f:6a80::/29 maxlen: 29
2a0f:6a80:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNFx-TzBynFvyAbjalWFLN9PHBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:99:9f:9d:c0:39:70:69:a7:5c:dc:e0:bd:18:80:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d171f93cc1ca716fc806e36a55852cdf4f1c1c
Validity
Not Before: Aug 30 09:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8474dce5648d7b060fd26fd76e4f77f7d0cef6e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:93:b6:52:c9:df:fd:e3:dc:14:3a:db:ba:4e:
ff:d5:f2:a8:c8:38:ba:0a:e1:17:7b:36:d6:cb:ba:
bc:ba:24:9e:48:bb:56:83:0a:40:60:a8:8b:c3:a7:
2f:42:e0:47:73:c9:fd:96:9f:45:6a:c4:27:06:b6:
b7:c2:b4:c0:0d:0e:24:f5:1c:c9:35:38:a8:6b:d1:
a8:45:be:00:ea:80:25:01:3e:13:c5:99:d7:57:af:
ab:a8:a5:e4:c0:f4:fe:9f:a1:60:4b:c2:47:a6:b2:
95:9e:e4:0a:1d:dc:eb:8e:f5:8e:cb:21:b5:85:5b:
32:3f:65:c3:e3:02:5c:7e:76:bd:7d:cd:f0:4f:42:
3a:56:da:3f:38:3d:7e:89:56:92:73:da:98:51:95:
79:b1:7d:98:0f:e0:1f:f1:63:b6:c4:d1:46:d6:f0:
da:34:28:93:06:22:c3:ac:f1:9a:ff:61:69:a8:b3:
61:b1:57:eb:6e:f1:15:1b:46:3f:76:a6:d0:f2:00:
cc:a6:35:08:47:db:c6:57:ad:51:6d:d7:a4:5f:1e:
8e:9f:71:0e:20:65:5e:6f:25:d1:3f:8f:33:66:10:
77:cf:56:5f:77:63:1d:fa:af:5a:0f:3c:77:00:60:
6f:3f:6c:ae:12:9f:13:63:a7:78:31:a4:92:dc:cf:
2d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:74:DC:E5:64:8D:7B:06:0F:D2:6F:D7:6E:4F:77:F7:D0:CE:F6:E5
X509v3 Authority Key Identifier:
keyid:64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNFx-TzBynFvyAbjalWFLN9PHBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/hHTc5WSNewYP0m_Xbk9399DO9uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.122.152.0-37.122.157.255
176.106.224.0/22
176.106.230.0/23
IPv6:
2a0f:6a80::/29
Signature Algorithm: sha256WithRSAEncryption
a5:7f:13:00:16:58:7a:01:6d:60:9c:83:ac:e5:8e:7b:f6:22:
6c:76:96:99:d4:af:48:67:bb:c7:d3:aa:19:0b:5f:5a:76:35:
93:99:5e:df:ed:b3:8f:c6:c5:39:fa:d6:a5:19:b1:04:f2:0b:
76:86:61:a1:35:16:f9:72:17:c3:71:5f:95:9b:ba:d9:38:bd:
19:89:ff:55:e7:96:03:27:2d:9b:3b:1e:f3:8c:63:97:86:45:
9c:b3:fe:7d:dc:42:d0:ab:4d:34:60:4f:0b:f2:20:5e:11:05:
11:a4:e1:77:c1:75:20:a2:f3:ac:0c:b0:84:6d:f7:7a:bf:91:
64:d9:3f:1e:45:e9:2d:82:40:6e:36:05:ee:db:52:ad:35:bf:
da:5d:4e:64:1c:86:a5:f5:f1:88:18:18:52:13:f8:af:b3:5e:
4c:e8:b5:3f:58:28:5d:59:ba:09:5c:22:b2:77:b1:14:46:8e:
fb:98:55:74:ae:15:78:cb:cb:d9:0e:ba:a3:74:5b:ba:58:9e:
22:36:72:b5:17:56:b3:7b:c3:a2:8c:fc:28:c2:15:92:6f:c4:
4f:d0:5b:85:20:5f:2f:18:0e:2f:0e:d0:47:7e:27:0c:88:fd:
b4:d5:9f:67:c3:af:f3:7e:43:c9:d3:62:d2:74:80:15:05:d8:
ab:3a:8b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:57:14 2024 by rpki-client on console-ams.rpki-client.org