Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/jvfazVySxZvrZMZ8NUg5nK0s5cc.roa
File: jvfazVySxZvrZMZ8NUg5nK0s5cc.roa (raw, json)
Hash identifier: O9L4AHepjQPlNy66qMXnUuHJhtFlKZJrnHaKiEzIDMw=
Subject key identifier: 8E:F7:DA:CD:5C:92:C5:9B:EB:64:C6:7C:35:48:39:9C:AD:2C:E5:C7
Certificate issuer: /CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Certificate serial: 018CC349596DEDB6FE6AD4EFC3F2C7BEBB0C
Authority key identifier: F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/jvfazVySxZvrZMZ8NUg5nK0s5cc.roa
Signing time: Mon 01 Jan 2024 04:30:13 +0000
ROA not before: Mon 01 Jan 2024 04:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52048
IP address blocks: 46.183.219.0/24 maxlen: 24
46.183.218.0/24 maxlen: 24
46.183.217.0/24 maxlen: 24
46.183.216.0/24 maxlen: 24
46.183.216.0/21 maxlen: 21
46.183.223.0/24 maxlen: 24
46.183.222.0/24 maxlen: 24
46.183.221.0/24 maxlen: 24
46.183.220.0/24 maxlen: 24
84.38.135.0/24 maxlen: 24
84.38.134.0/24 maxlen: 24
84.38.132.0/24 maxlen: 24
84.38.130.0/24 maxlen: 24
2a02:4840:2::/48 maxlen: 48
2a02:4840:1::/48 maxlen: 48
2a02:4840:1000::/48 maxlen: 48
2a02:4840::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/92Tu0VxStMgRCiIpY9x7fUui0UY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/92Tu0VxStMgRCiIpY9x7fUui0UY.mft
rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:59:6d:ed:b6:fe:6a:d4:ef:c3:f2:c7:be:bb:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f764eed15c52b4c8110a222963dc7b7d4ba2d146
Validity
Not Before: Jan 1 04:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ef7dacd5c92c59beb64c67c3548399cad2ce5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c2:70:bc:5c:96:58:44:38:46:f5:fd:ed:c4:
d4:92:0b:78:cc:0f:da:66:34:99:2f:da:b9:fb:11:
54:c9:c5:28:3e:86:57:c5:a7:aa:7e:68:f9:ef:c1:
96:f5:66:bf:01:36:0f:77:9a:80:96:2a:0f:79:90:
0c:f2:2c:3b:64:c9:f4:c0:aa:bc:28:f1:fe:58:30:
bc:44:0c:66:d3:23:3a:d4:56:7b:b7:da:ac:7b:72:
aa:46:54:5b:e1:36:2c:a0:95:a3:2f:36:38:f7:49:
46:e9:d9:05:dd:e6:59:28:00:b1:fe:f2:71:42:e8:
97:a0:9e:a7:1a:19:4d:8c:80:a6:a2:a3:00:d5:63:
d6:1d:a0:5a:40:16:d6:62:89:a2:e6:6e:9a:4b:64:
24:00:82:7e:52:36:ba:3a:7c:d9:94:93:51:3b:26:
c6:3d:60:b3:85:47:e5:58:cd:4c:12:b1:e0:2a:83:
35:c5:76:60:4f:84:ea:45:7e:99:2c:86:3f:f0:cc:
2f:68:ba:c8:56:c8:52:41:43:2a:d7:91:b0:17:86:
5c:ad:8f:76:71:97:46:9f:aa:f5:5f:3c:38:25:db:
8d:7f:94:2c:3c:b3:78:c9:3b:34:23:20:10:a6:1b:
05:31:df:1a:e9:3e:b7:d6:3a:64:43:8e:d9:03:ab:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F7:DA:CD:5C:92:C5:9B:EB:64:C6:7C:35:48:39:9C:AD:2C:E5:C7
X509v3 Authority Key Identifier:
keyid:F7:64:EE:D1:5C:52:B4:C8:11:0A:22:29:63:DC:7B:7D:4B:A2:D1:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/92Tu0VxStMgRCiIpY9x7fUui0UY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/jvfazVySxZvrZMZ8NUg5nK0s5cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/741f06-c3d1-483b-b908-28a4953f0530/1/92Tu0VxStMgRCiIpY9x7fUui0UY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.216.0/21
84.38.130.0/24
84.38.132.0/24
84.38.134.0/23
IPv6:
2a02:4840::-2a02:4840:2:ffff:ffff:ffff:ffff:ffff
2a02:4840:1000::/48
Signature Algorithm: sha256WithRSAEncryption
51:c2:fc:a5:0e:af:a7:f4:0a:25:65:1b:30:02:e5:ec:0e:10:
d8:38:d8:a3:cf:1c:6b:39:6e:bc:52:84:e0:e2:ad:6b:73:8d:
fb:9c:b2:e4:3b:a9:90:d5:20:3b:51:9c:96:4f:b8:27:06:5f:
e3:41:11:4e:e1:7e:3e:b7:b2:4d:ed:34:01:ec:91:fc:ca:bd:
e7:57:dd:f6:33:e3:11:43:1f:e3:64:8c:ba:01:f9:c4:93:37:
0f:07:72:b5:40:89:b4:a5:19:a5:d7:d2:5e:99:0b:53:c5:96:
da:b4:e6:2e:ce:76:12:44:2c:63:56:78:8b:be:5c:8d:66:55:
2f:92:bd:cd:30:65:ac:28:01:cb:bc:c9:ac:45:74:f0:05:85:
e5:46:33:9d:81:67:36:57:57:e2:82:90:7a:51:a8:9d:ba:76:
3f:0d:c8:bc:c8:58:26:d6:d5:ac:f5:7e:9a:1e:b3:5b:24:c7:
b8:37:1f:c7:c0:11:be:1a:fd:aa:17:84:11:8e:9b:91:ee:ef:
d4:73:ff:10:dc:f4:6b:2f:6b:a2:53:8f:c4:18:44:94:4b:10:
89:c2:f1:b7:98:3d:18:74:90:e4:a1:e7:b6:56:48:89:82:77:
70:5e:60:52:05:a2:bf:19:cb:3a:6c:8b:97:01:f0:3a:25:05:
8f:0f:f2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:54:23 2024 by rpki-client on console-fra.rpki-client.org