Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/n-AZSFXBXZntqHd6kCZ1SMEY7fc.roa
File: n-AZSFXBXZntqHd6kCZ1SMEY7fc.roa (raw, json)
Hash identifier: NbOynaos/t/NmDWP6uf1f6HYw61kVV4CoBpj7+aG7sU=
Subject key identifier: 9F:E0:19:48:55:C1:5D:99:ED:A8:77:7A:90:26:75:48:C1:18:ED:F7
Certificate issuer: /CN=3357ad406df9934b5048b5fa21de31450b936fa9
Certificate serial: 018CC56EBC5AF5FB7A3334A7815EE5EB0AF6
Authority key identifier: 33:57:AD:40:6D:F9:93:4B:50:48:B5:FA:21:DE:31:45:0B:93:6F:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1etQG35k0tQSLX6Id4xRQuTb6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/n-AZSFXBXZntqHd6kCZ1SMEY7fc.roa
Signing time: Mon 01 Jan 2024 14:30:17 +0000
ROA not before: Mon 01 Jan 2024 14:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199283
IP address blocks: 31.169.119.0/24 maxlen: 24
185.87.208.0/22 maxlen: 22
185.87.208.0/24 maxlen: 24
185.87.209.0/24 maxlen: 24
185.87.210.0/24 maxlen: 24
185.87.211.0/24 maxlen: 24
31.169.112.0/23 maxlen: 23
31.169.114.0/24 maxlen: 24
31.169.115.0/24 maxlen: 24
31.169.116.0/24 maxlen: 24
31.169.117.0/24 maxlen: 24
31.169.112.0/21 maxlen: 21
31.169.118.0/24 maxlen: 24
95.87.104.0/24 maxlen: 24
95.87.105.0/24 maxlen: 24
95.87.104.0/21 maxlen: 21
95.87.109.0/24 maxlen: 24
95.87.110.0/24 maxlen: 24
95.87.111.0/24 maxlen: 24
95.87.106.0/24 maxlen: 24
95.87.107.0/24 maxlen: 24
95.87.108.0/24 maxlen: 24
2a04:2140::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/M1etQG35k0tQSLX6Id4xRQuTb6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/M1etQG35k0tQSLX6Id4xRQuTb6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/M1etQG35k0tQSLX6Id4xRQuTb6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 20:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:bc:5a:f5:fb:7a:33:34:a7:81:5e:e5:eb:0a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3357ad406df9934b5048b5fa21de31450b936fa9
Validity
Not Before: Jan 1 14:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fe0194855c15d99eda8777a90267548c118edf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6d:07:35:7f:24:c3:13:00:79:7f:d9:65:e9:
06:26:06:a5:a0:70:cc:52:b3:b6:7f:39:91:8d:2d:
0f:63:e4:cf:21:a0:46:87:62:0b:81:6b:f7:40:e1:
c8:7e:e3:ce:c4:fd:ee:a3:50:51:c4:51:58:73:0e:
6b:91:ff:fc:63:11:29:9d:42:dc:c4:6b:45:09:df:
68:b3:03:3f:05:64:fd:10:93:98:40:7c:74:d2:b8:
6e:e8:16:47:95:fb:1b:1e:c9:d1:ed:2a:10:ca:65:
24:22:d3:7d:59:92:16:0d:97:66:49:43:a6:ee:ca:
68:9b:1e:bf:b3:59:d0:6d:bd:ce:0d:c7:fa:16:3f:
ea:16:57:7b:50:c8:43:ce:a3:30:cd:97:91:9f:4e:
df:8b:87:4f:c4:2c:82:b3:cf:7f:34:a9:59:1c:f3:
6b:a5:c9:7f:34:40:e6:af:4b:df:e2:15:21:b3:d1:
25:fc:86:b2:84:d9:3a:a1:5c:44:56:fb:bf:74:75:
1f:97:cc:cc:92:79:9f:5c:37:b0:8d:f6:3a:93:c9:
0e:66:93:68:a8:5e:84:67:40:72:38:e1:95:39:48:
80:75:9a:e7:5e:83:f9:35:fc:74:26:7c:de:99:16:
02:66:a1:e4:0e:0a:80:65:8c:fe:00:8d:6d:78:6c:
64:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E0:19:48:55:C1:5D:99:ED:A8:77:7A:90:26:75:48:C1:18:ED:F7
X509v3 Authority Key Identifier:
keyid:33:57:AD:40:6D:F9:93:4B:50:48:B5:FA:21:DE:31:45:0B:93:6F:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1etQG35k0tQSLX6Id4xRQuTb6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/n-AZSFXBXZntqHd6kCZ1SMEY7fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c6d4ec-a072-4f3e-acda-0cf6384a5610/1/M1etQG35k0tQSLX6Id4xRQuTb6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.112.0/21
95.87.104.0/21
185.87.208.0/22
IPv6:
2a04:2140::/29
Signature Algorithm: sha256WithRSAEncryption
67:f0:23:8d:0c:f5:85:3d:33:b4:e2:11:37:15:b0:79:47:7a:
c5:43:ad:86:61:83:3e:3c:0f:d4:9f:b8:38:62:58:c3:29:57:
a7:42:a0:6d:08:52:29:0e:68:99:52:eb:10:14:54:4c:60:a9:
a9:3b:08:2f:80:ef:87:51:cc:c3:0f:1a:58:19:6c:80:bd:44:
31:0b:59:ad:57:be:27:4f:5f:70:da:53:d7:31:f9:09:e0:2b:
a3:4c:da:4b:f4:f1:9b:0e:1c:8d:1d:33:8f:b5:5d:e2:b4:ae:
2c:e1:23:2a:22:59:da:99:ca:27:cc:4a:9c:5e:da:5f:3b:48:
46:0a:90:5e:c3:20:d6:2a:40:19:8d:df:5b:9b:72:a8:c0:3b:
dd:9a:47:37:cd:53:0c:7e:2e:ec:df:e9:a7:82:5d:27:46:d3:
55:1e:75:d2:f4:ef:80:24:06:a9:0c:f3:39:2c:f0:0a:c9:27:
bd:d0:da:42:cb:6a:e9:80:3b:de:38:9f:6e:03:11:8d:e8:05:
ca:5d:c9:38:26:4c:95:42:95:b6:a7:ad:c7:16:49:5c:ba:e6:
24:6a:05:5a:cf:44:95:ac:24:80:44:4c:60:15:29:e0:0c:20:
f8:60:6e:7e:dc:18:76:23:4b:35:dc:15:07:da:76:ad:8e:b8:
6d:56:2e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 04:29:58 2024 by rpki-client on console-ams.rpki-client.org