Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/DlLohTkrYcpeF6TZqygu4uc_uEI.roa
File: DlLohTkrYcpeF6TZqygu4uc_uEI.roa (raw, json)
Hash identifier: xZ7tX5A+J7RL+yQLEUTvI6sg75FeGFbrPmjzxDfalCE=
Subject key identifier: 0E:52:E8:85:39:2B:61:CA:5E:17:A4:D9:AB:28:2E:E2:E7:3F:B8:42
Certificate issuer: /CN=2ac943517f5e3b747e7530320789a03444b43912
Certificate serial: 018CC64B55702AD0C400450E05E3AF5B2C31
Authority key identifier: 2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/DlLohTkrYcpeF6TZqygu4uc_uEI.roa
Signing time: Mon 01 Jan 2024 18:31:15 +0000
ROA not before: Mon 01 Jan 2024 18:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49033
IP address blocks: 185.232.160.0/22 maxlen: 24
185.171.48.0/22 maxlen: 24
185.116.144.0/22 maxlen: 24
185.238.108.0/22 maxlen: 24
185.91.92.0/22 maxlen: 24
185.166.91.0/24 maxlen: 24
185.166.89.0/24 maxlen: 24
185.166.90.0/24 maxlen: 24
185.166.90.0/23 maxlen: 24
185.166.88.0/24 maxlen: 24
185.166.88.0/22 maxlen: 22
94.46.218.0/23 maxlen: 23
94.46.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:55:70:2a:d0:c4:00:45:0e:05:e3:af:5b:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac943517f5e3b747e7530320789a03444b43912
Validity
Not Before: Jan 1 18:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e52e885392b61ca5e17a4d9ab282ee2e73fb842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ee:32:ce:6d:66:60:60:8b:df:e6:5f:3a:f4:
2a:84:3a:39:d7:99:87:f4:e0:df:ca:34:91:96:73:
3e:74:48:82:e2:f1:72:df:40:1f:8b:d0:d9:fd:8a:
fc:e0:24:6d:53:fd:69:bb:ea:b4:ca:8c:49:e7:b8:
25:c2:d4:49:88:d9:9b:e9:fb:34:9d:40:2e:8e:3b:
0d:30:90:ff:ac:bc:67:8e:46:c5:25:ca:2b:49:a6:
5e:2c:9a:ef:e6:fd:22:45:83:53:b9:a6:b5:ef:2b:
68:2d:2f:27:b9:5a:f3:e3:e3:0b:9a:59:51:14:7c:
5a:c7:7e:26:83:e8:92:95:1f:d8:8e:76:6d:b2:20:
dc:0c:09:9b:2e:09:87:e9:dc:a3:f4:fc:fb:d2:7f:
c6:01:f5:89:ba:39:e7:fa:71:77:1d:cc:70:2a:c7:
56:58:77:9d:83:88:75:09:c9:27:09:73:38:76:a0:
5d:cf:34:38:62:a6:47:fc:3e:55:0b:02:73:20:d5:
98:92:b8:98:02:52:a6:0d:5a:b9:41:39:3d:35:24:
8f:41:e1:3b:08:e3:64:af:fc:05:0d:ab:54:04:5b:
f1:48:d6:81:0d:c7:a7:0a:8e:5f:45:a1:56:88:bc:
cd:2a:0e:01:13:cb:96:1b:22:87:c8:dd:4f:12:ec:
3e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:52:E8:85:39:2B:61:CA:5E:17:A4:D9:AB:28:2E:E2:E7:3F:B8:42
X509v3 Authority Key Identifier:
keyid:2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/DlLohTkrYcpeF6TZqygu4uc_uEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.46.216.0/22
185.91.92.0/22
185.116.144.0/22
185.166.88.0/22
185.171.48.0/22
185.232.160.0/22
185.238.108.0/22
Signature Algorithm: sha256WithRSAEncryption
04:5e:b0:cb:ad:14:00:9d:53:f4:79:a0:0f:c8:ef:96:0e:0b:
b8:99:f0:6f:55:1e:5b:85:5d:b0:46:d8:1e:56:45:f9:08:66:
d5:5b:6c:76:3c:2c:23:49:26:0f:d8:ff:1b:45:16:48:cd:56:
e8:6f:2d:ab:4a:42:20:c3:99:5d:07:fe:c1:c8:3a:82:f0:43:
33:83:11:20:5f:a3:8b:94:d0:5d:7b:e1:b9:a2:46:c9:0f:0f:
58:82:63:fe:0b:4d:dc:13:15:2a:09:64:e3:58:e5:19:3d:89:
b9:9a:40:b9:b5:6b:e0:7e:95:61:3f:ef:54:90:eb:4f:48:87:
88:5f:50:55:73:ba:06:c0:72:c3:78:13:29:da:c4:e1:cb:7e:
84:6f:91:6f:90:76:cd:2f:8d:85:9e:35:52:98:3c:50:73:cc:
b7:2c:8a:ed:ac:d7:aa:f9:14:a4:5b:b1:38:b6:bc:9f:95:eb:
c3:d6:fd:a2:6d:ae:e1:4a:b2:32:3c:99:d0:73:4c:eb:c4:c2:
0e:8f:e2:52:b6:ad:e3:04:90:45:ee:c6:b0:e9:cf:3f:b6:54:
46:1f:c8:35:52:19:02:89:0c:8d:67:a9:67:5a:6e:35:97:fb:
21:e2:e9:ee:52:c2:80:23:39:38:bc:d2:af:d9:78:7c:eb:2d:
c9:2c:52:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:43:43 2024 by rpki-client on console-fra.rpki-client.org