Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/_1cUObqL-gFeV5Arwb0Ph6YJagk.roa
File: _1cUObqL-gFeV5Arwb0Ph6YJagk.roa (raw, json)
Hash identifier: CuzthoXhHYNHNzQH5QRpziIbIaJIE3OcGH1X/Jd99Jw=
Subject key identifier: FF:57:14:39:BA:8B:FA:01:5E:57:90:2B:C1:BD:0F:87:A6:09:6A:09
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 0190E90A4D07FB0BFFBCB9B8EB0A97D210B2
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/_1cUObqL-gFeV5Arwb0Ph6YJagk.roa
Signing time: Thu 25 Jul 2024 08:38:04 +0000
ROA not before: Thu 25 Jul 2024 08:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50266
IP address blocks: 31.20.0.0/16 maxlen: 24
31.21.0.0/16 maxlen: 24
31.184.64.0/18 maxlen: 24
31.187.128.0/17 maxlen: 24
62.166.128.0/17 maxlen: 24
62.250.0.0/17 maxlen: 24
62.250.128.0/17 maxlen: 24
81.59.0.0/17 maxlen: 17
82.172.0.0/17 maxlen: 17
82.174.0.0/16 maxlen: 24
85.223.0.0/17 maxlen: 24
87.208.0.0/16 maxlen: 24
87.209.0.0/16 maxlen: 24
87.210.0.0/16 maxlen: 24
87.212.0.0/16 maxlen: 24
92.254.0.0/17 maxlen: 24
94.157.0.0/16 maxlen: 24
95.98.0.0/15 maxlen: 24
95.99.0.0/16 maxlen: 16
143.177.0.0/16 maxlen: 24
143.178.0.0/17 maxlen: 24
143.178.128.0/17 maxlen: 24
143.179.0.0/16 maxlen: 24
188.88.0.0/14 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:0a:4d:07:fb:0b:ff:bc:b9:b8:eb:0a:97:d2:10:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jul 25 08:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff571439ba8bfa015e57902bc1bd0f87a6096a09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:78:ee:ee:32:98:0a:a9:c4:36:c5:13:49:58:
2f:5c:15:a5:ee:07:dd:68:4b:8d:2c:f4:e4:28:f6:
60:32:de:34:9d:96:6a:e9:d3:0d:e8:b4:36:fa:75:
e7:34:a8:8a:13:ec:8a:a2:6e:e5:b1:61:de:31:7d:
0f:e7:54:4b:12:fc:f2:7b:78:83:01:47:5a:1d:f9:
87:72:60:5c:3f:bb:c6:18:e3:a6:e5:df:bf:fe:1c:
e3:09:2c:08:72:c7:3f:fa:c5:da:55:4a:35:83:35:
5a:52:e3:0d:5f:63:05:e3:98:5c:52:9a:c4:3c:85:
3f:48:56:16:f7:a8:f4:40:43:90:c3:b7:ae:47:eb:
28:c3:27:c0:2c:da:a0:16:f9:67:8d:a6:01:8e:72:
0e:ad:a9:86:a4:bc:86:5c:bf:95:1d:cc:af:00:b5:
96:3b:9c:94:ca:bb:ed:20:71:8c:57:d5:2e:7f:d8:
cb:75:08:0c:39:95:5f:9d:08:e6:d9:73:3e:f7:f0:
d9:e5:fb:e7:1e:ab:e8:40:c7:53:60:8c:07:e2:a1:
72:84:90:df:e4:fc:90:d0:fa:79:ea:e5:a6:68:fe:
3d:f6:0b:4d:08:94:85:55:3e:17:e5:77:dc:8d:f8:
32:10:40:ce:3e:45:aa:7a:cf:f0:f0:47:40:4d:1b:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:57:14:39:BA:8B:FA:01:5E:57:90:2B:C1:BD:0F:87:A6:09:6A:09
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/_1cUObqL-gFeV5Arwb0Ph6YJagk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.20.0.0/15
31.184.64.0/18
31.187.128.0/17
62.166.128.0/17
62.250.0.0/16
81.59.0.0/17
82.172.0.0/17
82.174.0.0/16
85.223.0.0/17
87.208.0.0-87.210.255.255
87.212.0.0/16
92.254.0.0/17
94.157.0.0/16
95.98.0.0/15
143.177.0.0-143.179.255.255
188.88.0.0/14
Signature Algorithm: sha256WithRSAEncryption
28:8a:18:10:85:23:8c:c9:72:b3:33:c6:ef:a4:1d:50:bb:48:
5f:bf:5c:9a:41:c7:37:b9:ad:88:71:09:9e:b8:92:74:ec:d1:
b9:5e:c2:a1:23:60:12:aa:75:70:19:e4:e4:c2:00:e0:f1:32:
4a:12:37:e7:25:9e:a2:39:d5:0d:a1:84:f6:4e:1c:b9:b4:b3:
e4:d1:87:b9:b2:aa:d5:be:19:af:ab:1b:bf:f4:6e:63:d9:0f:
2f:fe:2c:c8:11:21:07:b5:36:8c:10:93:73:36:9e:46:54:b8:
3c:50:ac:1a:9c:a2:ab:7b:65:39:57:1c:63:d2:3b:b7:fc:cb:
5a:72:25:75:09:9b:fb:47:6f:cf:0f:4a:7b:a5:2d:d7:58:e1:
65:61:c6:19:9f:74:32:5c:ff:37:86:d2:a9:b1:57:d0:59:1c:
8d:f3:b5:5a:21:0d:2a:56:03:5e:f9:8b:be:e8:18:85:c7:d9:
da:61:61:eb:7f:61:98:30:f0:0d:6e:6d:46:9e:35:d4:62:a9:
19:9b:76:27:45:3a:70:28:7c:90:9a:f9:04:5d:24:0a:eb:22:
d5:6b:fb:cf:7e:23:c8:55:59:89:e1:3a:69:79:df:b2:55:d5:
d5:73:d4:0f:56:aa:c4:29:98:6a:35:2a:4b:b0:1f:9e:39:92:
5c:9c:ff:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:04:03 2024 by rpki-client on console-fra.rpki-client.org