Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/3Rzejw8OzKc_lZAE8eNpF6W61c0.roa
File: 3Rzejw8OzKc_lZAE8eNpF6W61c0.roa (raw, json)
Hash identifier: oqx5W/jpanJ3ocd5HLmr+Oln7h+I+D0DaqkGCQdoOlE=
Subject key identifier: DD:1C:DE:8F:0F:0E:CC:A7:3F:95:90:04:F1:E3:69:17:A5:BA:D5:CD
Certificate issuer: /CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Certificate serial: 01906D67D0611B6A5EEC27E0322776B3ABB9
Authority key identifier: C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/3Rzejw8OzKc_lZAE8eNpF6W61c0.roa
Signing time: Mon 01 Jul 2024 08:27:18 +0000
ROA not before: Mon 01 Jul 2024 08:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 46.34.160.0/22 maxlen: 24
89.42.196.0/22 maxlen: 22
89.42.196.0/24 maxlen: 24
89.42.197.0/24 maxlen: 24
89.42.198.0/24 maxlen: 24
89.42.199.0/24 maxlen: 24
89.47.196.0/22 maxlen: 24
89.47.196.0/24 maxlen: 24
89.47.197.0/24 maxlen: 24
89.47.198.0/24 maxlen: 24
89.47.200.0/22 maxlen: 22
89.47.200.0/24 maxlen: 24
89.47.201.0/24 maxlen: 24
89.47.202.0/24 maxlen: 24
89.47.203.0/24 maxlen: 24
92.114.48.0/23 maxlen: 24
92.114.48.0/24 maxlen: 24
92.114.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jul 2024 18:45:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:67:d0:61:1b:6a:5e:ec:27:e0:32:27:76:b3:ab:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Validity
Not Before: Jul 1 08:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd1cde8f0f0ecca73f959004f1e36917a5bad5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:e2:56:f6:3f:f8:27:c3:b5:77:06:4c:d5:
fa:2b:e6:1e:e5:3c:99:e7:cd:84:e7:c8:31:ae:74:
d4:dd:67:a0:2e:31:bc:10:13:3e:9e:a6:30:c5:9e:
4b:8c:3c:1f:69:43:5a:42:d0:ff:36:0e:c0:20:e3:
8c:f6:6b:49:af:73:89:65:3d:7b:60:73:6f:67:c0:
7c:7e:0e:bd:28:8f:46:30:fc:96:a7:0f:3a:1a:3d:
1c:a9:02:63:75:28:7b:0c:8e:7e:9e:d2:b5:d7:ba:
98:53:4f:39:82:95:3f:e3:23:e9:69:7b:fb:2f:f1:
e6:7b:5e:6c:ef:fe:da:4f:be:d9:50:ff:3e:c8:23:
4e:c1:cd:4b:d8:d5:ee:cd:a0:24:37:07:0c:94:40:
c3:b1:37:db:05:7a:4d:85:38:29:fc:62:58:73:e2:
96:c8:e7:af:8b:c2:1b:96:f9:4e:03:2d:0f:cc:a4:
11:54:96:49:44:f9:e5:d4:10:fa:cc:be:6a:fb:c0:
0f:cb:df:3c:63:d5:92:76:0c:40:e7:9f:a3:1d:af:
f0:c2:ee:49:08:22:aa:9f:67:10:fb:a6:90:51:d7:
52:dc:df:09:df:1f:ca:90:30:52:fe:34:91:e5:35:
b2:11:1f:dc:63:a7:4a:53:37:9b:73:af:6c:bd:70:
5e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1C:DE:8F:0F:0E:CC:A7:3F:95:90:04:F1:E3:69:17:A5:BA:D5:CD
X509v3 Authority Key Identifier:
keyid:C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/3Rzejw8OzKc_lZAE8eNpF6W61c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.160.0/22
89.42.196.0/22
89.47.196.0-89.47.203.255
92.114.48.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:61:53:f5:0e:66:7a:9f:3d:12:76:e0:39:fb:c2:96:24:52:
72:e6:aa:31:c4:a5:f5:bb:4a:cc:a7:32:de:2a:99:51:a4:88:
dd:4e:3b:7a:54:ce:3f:dc:ac:34:45:e7:6e:ae:49:ea:a1:47:
9f:12:d4:8b:4c:63:0c:2b:b0:9e:83:db:c3:5e:98:13:e4:1f:
d7:25:f8:86:4f:81:5c:c7:81:6b:55:31:4f:5f:f0:44:5b:a4:
38:8b:a5:0e:49:9a:8d:01:52:3f:ec:23:ac:b7:b9:f3:38:08:
99:84:20:95:52:c3:e3:82:dd:1b:d3:6f:fa:45:76:9d:3d:99:
8e:f6:00:a0:8f:ab:1a:48:ed:ec:3b:0b:6c:07:a1:c0:e9:a9:
53:e5:9c:d3:32:66:bc:4b:f1:a9:f5:3f:2e:c3:88:de:b8:dc:
cd:7a:21:23:f6:78:78:2e:40:73:b6:d8:51:22:1b:7f:17:ae:
f3:7a:06:d8:34:0a:9c:3c:0b:79:7f:f3:3b:49:8b:4e:10:e1:
24:17:6d:62:4a:44:aa:67:74:c9:71:a8:31:59:a4:79:40:8a:
44:47:45:aa:d5:52:b3:e3:55:c0:5b:9b:d1:f1:11:1c:22:60:
53:5e:c9:b0:1a:d3:47:a9:6e:e6:52:a9:c1:9f:5d:8a:df:92:
b0:01:20:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 03:48:20 2024 by rpki-client on console.sobornost.net