Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/eE4VnJy79cU-elsKI_U6uDgyMZs.roa
File: eE4VnJy79cU-elsKI_U6uDgyMZs.roa (raw, json)
Hash identifier: ng96SmvczviboqMNWOT5YoHyts2UmcVsXRbFyseDlpg=
Subject key identifier: 78:4E:15:9C:9C:BB:F5:C5:3E:7A:5B:0A:23:F5:3A:B8:38:32:31:9B
Certificate issuer: /CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Certificate serial: 018CC4930F987ABABC2436AC81CEB9245307
Authority key identifier: D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/eE4VnJy79cU-elsKI_U6uDgyMZs.roa
Signing time: Mon 01 Jan 2024 10:30:21 +0000
ROA not before: Mon 01 Jan 2024 10:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41906
IP address blocks: 185.88.118.0/23 maxlen: 23
185.88.116.0/23 maxlen: 23
185.88.116.0/22 maxlen: 22
2a05:ca40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/0FqFxFv1PD2Ip2aVqv671Kp3u8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/0FqFxFv1PD2Ip2aVqv671Kp3u8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:0f:98:7a:ba:bc:24:36:ac:81:ce:b9:24:53:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d05a85c45bf53c3d88a76695aafebbd4aa77bbc1
Validity
Not Before: Jan 1 10:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=784e159c9cbbf5c53e7a5b0a23f53ab83832319b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9c:ec:b5:26:a6:7f:93:06:5e:b2:fc:91:9d:
64:0e:b9:58:d1:82:52:da:81:cf:fb:07:46:15:2a:
a5:f8:35:d3:24:23:cb:0e:26:78:db:59:59:ff:42:
38:d1:23:c4:a6:a6:8d:9d:36:3f:19:35:af:0f:41:
dd:0d:55:c1:4c:1e:f6:3a:46:3b:16:a3:4e:6b:96:
19:b0:11:6f:40:17:5d:47:22:df:47:9b:24:82:11:
9b:46:9c:08:54:f5:93:c1:c1:cd:7e:b6:d1:ec:70:
cb:57:fd:d6:5e:1c:35:27:bf:6f:df:29:f2:d7:a3:
34:86:75:aa:64:0f:7b:9e:9b:c6:7f:d5:4d:f4:01:
5f:b8:18:7f:75:fc:d4:d3:74:43:40:65:60:42:d1:
d7:06:7c:83:4a:85:cc:60:3f:c5:9d:0a:be:aa:f9:
a9:06:69:ee:e5:24:70:ea:fd:10:a1:5c:10:f4:44:
33:32:aa:a8:25:99:68:c4:40:ab:30:2a:bf:15:87:
29:cd:6b:c2:2f:b6:8b:8e:bd:ad:ce:5c:d1:43:03:
e1:42:69:f4:ff:84:3d:ff:cb:68:9f:54:27:a1:33:
75:e9:36:8a:8b:1f:59:3a:b2:1e:8d:e1:66:9b:fb:
8c:0f:91:ec:f3:06:b5:0e:2a:01:51:42:a6:11:13:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4E:15:9C:9C:BB:F5:C5:3E:7A:5B:0A:23:F5:3A:B8:38:32:31:9B
X509v3 Authority Key Identifier:
keyid:D0:5A:85:C4:5B:F5:3C:3D:88:A7:66:95:AA:FE:BB:D4:AA:77:BB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FqFxFv1PD2Ip2aVqv671Kp3u8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/eE4VnJy79cU-elsKI_U6uDgyMZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/549477-4a82-42bc-839e-4f9840defa1f/1/0FqFxFv1PD2Ip2aVqv671Kp3u8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.116.0/22
IPv6:
2a05:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
98:74:47:8f:e4:7c:0c:d9:71:2e:16:ef:d5:f2:1c:6c:91:a0:
45:58:cd:27:d9:7e:e6:2d:aa:23:a5:62:95:c9:39:0b:d0:27:
3f:89:54:f4:a0:64:1d:c9:3d:1b:cc:2c:66:63:e7:34:2f:58:
a1:c5:40:03:0f:04:d3:10:a8:21:8a:6c:f7:11:99:70:49:7c:
32:19:26:70:b5:b4:50:a8:f8:66:cd:1e:16:1a:71:af:b0:55:
ba:a7:ba:6d:6a:86:68:fb:00:13:9d:19:d5:e7:2f:73:2e:7f:
f3:c8:e9:13:ef:49:f3:96:55:64:98:7f:cd:a5:5e:81:00:3d:
52:4c:ce:90:20:fe:d7:84:ce:ae:eb:9e:e7:86:7e:7c:b0:55:
1a:20:43:d5:7c:39:b8:0f:23:32:d9:b5:6a:85:12:6e:42:8b:
ed:50:d0:77:14:2d:04:5b:ff:47:78:27:fc:3c:fd:56:01:d3:
2d:12:38:23:b2:92:da:36:5f:96:d0:a8:c3:03:74:77:d2:9c:
6c:e8:26:7f:4f:17:b8:64:84:69:89:17:fc:48:8a:36:94:52:
34:03:75:18:de:3b:01:90:aa:c0:08:ce:c6:27:c4:79:1c:3d:
a4:7c:51:02:26:0c:a1:64:79:c2:73:d6:72:72:a4:05:ac:1e:
eb:9c:30:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:31:05 2024 by rpki-client on console-fra.rpki-client.org