Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/lEPdcc3TVtidvWs5KTQ69HbSR2A.roa
File: lEPdcc3TVtidvWs5KTQ69HbSR2A.roa (raw, json)
Hash identifier: /dFMBz17yqrJ0twDw6zw0iBof5mviWTvPR+JOuTK7yU=
Subject key identifier: 94:43:DD:71:CD:D3:56:D8:9D:BD:6B:39:29:34:3A:F4:76:D2:47:60
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 018CC34965379135916DFBB382DF81556718
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/lEPdcc3TVtidvWs5KTQ69HbSR2A.roa
Signing time: Mon 01 Jan 2024 04:30:16 +0000
ROA not before: Mon 01 Jan 2024 04:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56724
IP address blocks: 178.236.140.0/23 maxlen: 23
178.236.140.0/22 maxlen: 22
178.236.142.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:65:37:91:35:91:6d:fb:b3:82:df:81:55:67:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 04:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9443dd71cdd356d89dbd6b3929343af476d24760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fd:40:39:46:11:ae:6e:e8:3f:bf:cc:d2:85:
06:22:3b:f4:50:f4:72:a7:95:c1:72:9e:80:0c:16:
4d:06:79:5a:9b:e4:0c:2f:07:e1:5a:d9:5f:96:c1:
ea:64:a3:1b:c0:73:f6:ca:e2:48:d2:3a:41:ed:f0:
42:b3:3b:a9:47:ad:be:f6:a2:49:15:09:d7:a7:b0:
88:ba:96:1d:7b:53:6b:2f:a7:a6:49:ca:13:e6:bc:
4f:e0:49:61:ac:58:cd:8b:fd:0d:6d:0d:42:c0:db:
53:9e:fa:dd:b6:52:03:f3:40:87:e6:20:25:ad:09:
fd:a1:06:fd:d2:2b:3e:06:a8:d0:36:c5:b5:4a:fa:
58:c0:1f:5e:60:6b:73:ec:7e:35:46:79:1e:44:f4:
7a:dd:3e:33:1f:0c:58:1e:f7:8a:f2:72:d5:05:ba:
d8:46:b9:b7:6d:2e:9c:63:20:b9:9a:50:e2:b3:93:
78:ff:17:7a:0d:11:f9:e0:6e:fc:d8:32:7d:f0:f5:
b0:21:72:13:26:50:54:63:8d:4f:54:ca:1e:3c:a8:
f4:ce:56:c0:4b:01:3e:bd:77:13:0b:09:77:23:ad:
1e:80:ad:08:59:c6:05:ef:6b:e6:e0:38:46:ee:ea:
b9:b6:57:27:74:f6:de:65:ce:72:fb:9a:17:53:23:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:43:DD:71:CD:D3:56:D8:9D:BD:6B:39:29:34:3A:F4:76:D2:47:60
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/lEPdcc3TVtidvWs5KTQ69HbSR2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.140.0/22
Signature Algorithm: sha256WithRSAEncryption
31:91:a7:fd:00:83:1d:e8:47:3d:71:ee:f1:53:5e:77:a6:33:
3a:59:4d:d0:be:7e:84:74:c5:03:6a:e1:73:ac:a6:bb:f2:f9:
64:b0:04:8a:29:02:42:9f:cd:23:66:a6:a8:ba:50:d8:87:8d:
23:33:ba:9e:3b:4e:29:82:b4:c1:c5:5c:22:6e:8a:10:56:fb:
f6:fa:f1:ac:d3:4d:17:a8:5f:26:95:19:32:bf:3b:73:53:6d:
64:34:43:5c:ea:1c:a3:5d:95:f0:57:c4:a6:b8:04:c6:e0:9c:
42:80:6c:3a:d9:54:32:60:41:01:a2:cd:0b:fc:d2:ad:0c:34:
73:47:7e:c0:17:11:e7:00:a2:ce:df:33:c2:3d:4e:8a:24:b5:
dc:b5:e5:dc:5d:47:c7:cb:9a:3a:d9:37:fe:9c:1a:a5:05:23:
a3:3b:02:2a:1c:25:30:7b:24:b0:e2:da:c4:ed:27:19:75:16:
22:46:a8:68:1d:c7:38:c4:82:48:34:e6:f2:75:5c:39:ea:e6:
c3:72:6c:31:d2:a4:a4:47:48:00:35:fd:5e:4f:ef:ed:09:7a:
ce:8f:11:bf:e0:7b:a2:ac:6a:ee:0f:36:e7:cb:68:c1:81:86:
85:a2:45:22:e6:64:21:0f:d9:d4:73:7b:61:00:09:71:72:86:
31:cd:84:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 00:50:35 2024 by rpki-client on console-fra.rpki-client.org