Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/ydLsKwmWyEk-0eXgwWMlV5ie9Ac.roa
File: ydLsKwmWyEk-0eXgwWMlV5ie9Ac.roa (raw, json)
Hash identifier: jbChfSwfXOxQdbNbFGiy4rFeBP7NUtZ03dk435BDox4=
Subject key identifier: C9:D2:EC:2B:09:96:C8:49:3E:D1:E5:E0:C1:63:25:57:98:9E:F4:07
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 01918DEDE17A654D974E394C8B7C941F4A54
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/ydLsKwmWyEk-0eXgwWMlV5ie9Ac.roa
Signing time: Mon 26 Aug 2024 09:04:22 +0000
ROA not before: Mon 26 Aug 2024 09:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12670
IP address blocks: 46.218.0.0/18 maxlen: 18
46.218.64.0/18 maxlen: 18
77.104.0.0/18 maxlen: 18
82.101.0.0/18 maxlen: 18
83.145.64.0/18 maxlen: 18
89.224.0.0/14 maxlen: 14
89.224.0.0/16 maxlen: 16
89.225.192.0/18 maxlen: 18
89.227.192.0/18 maxlen: 18
92.102.0.0/15 maxlen: 15
92.102.0.0/16 maxlen: 16
92.103.0.0/16 maxlen: 16
92.103.0.0/18 maxlen: 18
92.103.64.0/18 maxlen: 18
185.204.172.0/22 maxlen: 22
212.99.0.0/17 maxlen: 17
212.103.0.0/19 maxlen: 19
213.30.128.0/18 maxlen: 18
213.244.0.0/19 maxlen: 19
217.66.112.0/20 maxlen: 20
2a02:e000::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8d:ed:e1:7a:65:4d:97:4e:39:4c:8b:7c:94:1f:4a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Aug 26 09:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9d2ec2b0996c8493ed1e5e0c1632557989ef407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:b0:85:a6:11:0a:ff:96:df:e2:8b:93:85:
c3:28:c3:02:e4:c5:8a:45:42:39:7d:4e:58:21:06:
b0:a9:ad:63:13:b8:cd:f3:7a:41:a0:26:e4:cf:db:
09:7e:c3:cd:10:ca:4a:28:28:00:4c:78:34:29:90:
77:90:d0:b4:ed:8b:8c:f9:8e:47:19:02:75:8d:35:
87:ba:b1:19:f8:3e:5c:f8:a8:ce:d1:f4:c7:73:1b:
c6:25:b5:22:7b:45:d0:cb:01:b4:06:82:a6:50:18:
03:e3:9c:59:fd:15:89:68:f3:c0:ac:0b:aa:0c:8f:
75:71:b0:e7:79:eb:94:f2:aa:da:a5:19:07:28:8e:
c6:70:61:cc:17:03:03:84:9b:46:7f:c0:b7:80:87:
56:a4:6f:a0:1c:81:d0:f5:06:35:92:54:7a:c9:3d:
1d:6e:fc:99:75:ff:3d:02:88:74:bd:47:5a:91:d4:
76:ec:cf:06:44:dc:38:7d:00:00:fe:83:a1:d8:d2:
7b:a1:4a:44:bd:32:c6:62:df:35:84:64:b5:c8:c1:
36:36:d8:45:5c:74:e2:61:0c:81:f9:af:a4:36:44:
af:6a:0f:06:ff:80:44:72:34:7c:e6:e5:65:97:7c:
50:2f:bb:4d:cd:95:5b:bf:be:0c:67:1d:f9:d2:64:
d3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D2:EC:2B:09:96:C8:49:3E:D1:E5:E0:C1:63:25:57:98:9E:F4:07
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/ydLsKwmWyEk-0eXgwWMlV5ie9Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.218.0.0/17
77.104.0.0/18
82.101.0.0/18
83.145.64.0/18
89.224.0.0/14
92.102.0.0/15
185.204.172.0/22
212.99.0.0/17
212.103.0.0/19
213.30.128.0/18
213.244.0.0/19
217.66.112.0/20
IPv6:
2a02:e000::/29
Signature Algorithm: sha256WithRSAEncryption
93:c9:75:e2:10:0b:2d:df:95:6c:4d:d8:e9:74:55:a6:aa:3a:
02:ea:af:4e:ff:83:22:71:9a:26:cf:cf:05:1a:ee:b3:76:bd:
80:ae:72:6b:f6:e2:03:ab:db:85:58:93:72:63:1b:44:ad:44:
0d:37:cf:8d:eb:82:1b:21:10:ca:12:88:da:bc:86:8e:97:c1:
f8:1d:51:b5:4c:e2:bf:18:f1:b6:ba:7a:ef:9d:cf:bd:fb:b6:
ba:11:38:24:90:83:bb:66:c8:d2:22:c9:6b:59:a0:f4:35:2d:
77:fd:58:ec:ec:ac:dc:e0:fa:25:a1:a3:45:bc:fd:3e:f3:2a:
dc:41:00:59:97:cc:cd:f6:b0:df:3b:1d:95:84:16:0a:49:d3:
29:43:44:2b:9f:37:2a:0b:c3:a4:45:78:f7:af:2f:69:36:5d:
cf:9a:38:23:d3:cc:5a:1a:a3:82:11:bd:e6:7b:48:41:e3:79:
d0:31:44:03:c3:fa:dd:b1:95:81:fe:82:21:b4:3e:ec:d9:91:
77:c5:06:17:ad:0b:12:40:ff:97:1e:98:23:ef:78:8f:b1:70:
bc:ea:25:40:10:2e:5f:2a:83:8e:03:54:0b:66:f7:0c:0d:0e:
be:81:22:ba:bd:6d:46:a5:12:c3:10:e0:fc:30:d1:29:67:a7:
4b:2f:57:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:43:14 2024 by rpki-client on console-fra.rpki-client.org