Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/Enl1G7ABU13xh4iEM_3NcROgnFs.roa
File: Enl1G7ABU13xh4iEM_3NcROgnFs.roa (raw, json)
Hash identifier: CCQp4z4WP96RO2It+tpVrWgU3T7Fqizkuu+FPX2YN9o=
Subject key identifier: 12:79:75:1B:B0:01:53:5D:F1:87:88:84:33:FD:CD:71:13:A0:9C:5B
Certificate issuer: /CN=461207a3eef2b44f8e2731b7b0ac7d1716e355c5
Certificate serial: 018CC8DEF08BA8BC2F2FDD24995AE31C82EE
Authority key identifier: 46:12:07:A3:EE:F2:B4:4F:8E:27:31:B7:B0:AC:7D:17:16:E3:55:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhIHo-7ytE-OJzG3sKx9FxbjVcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/Enl1G7ABU13xh4iEM_3NcROgnFs.roa
Signing time: Tue 02 Jan 2024 06:31:42 +0000
ROA not before: Tue 02 Jan 2024 06:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207851
IP address blocks: 193.105.250.0/24 maxlen: 24
193.106.239.0/24 maxlen: 24
193.105.208.0/24 maxlen: 24
193.105.217.0/24 maxlen: 24
2a0f:8b40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/RhIHo-7ytE-OJzG3sKx9FxbjVcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/RhIHo-7ytE-OJzG3sKx9FxbjVcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RhIHo-7ytE-OJzG3sKx9FxbjVcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:f0:8b:a8:bc:2f:2f:dd:24:99:5a:e3:1c:82:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461207a3eef2b44f8e2731b7b0ac7d1716e355c5
Validity
Not Before: Jan 2 06:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1279751bb001535df187888433fdcd7113a09c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3c:45:43:f7:e0:77:ec:95:39:b1:55:7a:a6:
3d:ef:c5:52:09:4e:56:36:20:54:39:e7:05:e8:74:
8d:ed:92:15:98:a2:7e:5e:a2:e5:f6:d2:22:e5:8b:
c2:dc:4f:c4:0c:a0:0a:0c:dc:d5:1d:13:61:6c:11:
e9:de:7d:8f:e0:fc:9b:4d:10:2c:96:58:ff:42:3f:
95:00:39:4d:9b:82:4d:b4:b3:39:13:92:e6:20:e2:
85:72:d6:a4:d7:5b:73:17:14:9a:5b:75:8a:f3:43:
53:0b:38:30:e9:f1:e0:a8:0d:be:7d:b6:cc:b4:89:
dc:b9:57:22:3f:8a:70:6e:a3:b6:26:95:91:e8:b4:
5d:d6:be:78:67:19:24:b1:20:5c:f8:93:4e:e0:8d:
a4:e5:72:3d:91:4b:3b:5f:5f:70:16:51:0b:d3:13:
14:ae:64:8f:6c:3b:4a:8e:b8:13:1c:59:b5:81:dc:
81:1b:8c:73:1c:69:3f:c4:83:6a:06:b2:e7:7d:27:
3a:79:b1:9d:9d:64:d2:b6:ee:a5:a2:64:91:78:30:
4a:0d:b7:8b:4d:0b:3f:b3:0c:ee:9e:a5:32:8c:86:
75:e2:05:45:bd:09:a5:bf:e8:49:f6:27:d2:d5:47:
af:32:9c:16:da:ac:4f:f8:a1:3a:12:0f:98:a2:b6:
06:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:79:75:1B:B0:01:53:5D:F1:87:88:84:33:FD:CD:71:13:A0:9C:5B
X509v3 Authority Key Identifier:
keyid:46:12:07:A3:EE:F2:B4:4F:8E:27:31:B7:B0:AC:7D:17:16:E3:55:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhIHo-7ytE-OJzG3sKx9FxbjVcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/Enl1G7ABU13xh4iEM_3NcROgnFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/RhIHo-7ytE-OJzG3sKx9FxbjVcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.208.0/24
193.105.217.0/24
193.105.250.0/24
193.106.239.0/24
IPv6:
2a0f:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
69:31:e2:eb:10:4e:8e:1d:a2:2b:9c:0a:07:c8:bc:a5:c0:fe:
54:c8:d4:f9:9f:e2:03:e6:c3:44:94:45:c4:60:06:b4:08:56:
66:50:cc:07:e6:cc:7e:da:87:19:33:e8:9e:2a:04:72:01:6a:
4b:42:98:70:09:01:dc:1c:85:30:5e:d7:d6:34:a5:d9:fc:03:
a0:07:09:a6:69:c8:76:29:9f:8d:2a:a6:d0:54:67:ec:1f:c5:
1f:d7:53:b5:c3:df:2e:be:b8:fe:04:e3:ee:f8:2b:f3:01:e0:
b0:78:00:37:52:a4:3f:fb:cc:75:25:82:e8:f8:19:e0:92:27:
36:ab:c3:2e:85:73:81:f0:54:89:f4:ce:25:d1:fc:1e:91:0d:
a4:21:de:ec:1d:36:7d:1a:e2:42:88:a0:3f:8d:e7:9b:d9:07:
f8:9b:34:96:5b:e5:65:45:87:01:b4:cb:9b:e7:fd:f0:09:96:
cc:ce:b4:f4:fc:c3:be:72:9f:30:06:87:92:2f:3a:c7:45:ee:
9a:ea:fa:54:c3:62:7d:82:60:97:db:70:87:ca:af:2e:9e:bd:
38:74:b5:20:43:48:e5:0a:58:12:1b:c4:bd:96:4b:ad:91:48:
30:39:8a:da:8c:f4:da:26:7a:7b:a3:97:54:67:2f:d0:e6:e4:
0d:92:b8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:16:18 2024 by rpki-client on console-ams.rpki-client.org