Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/u5ZBAAkuRWO4jTndrGDRqXsxZWs.roa
File: u5ZBAAkuRWO4jTndrGDRqXsxZWs.roa (raw, json)
Hash identifier: KEWI0xX5rCdsVyIOQQGLkRkvNUcDWVrVwo4I7DiuQyY=
Subject key identifier: BB:96:41:00:09:2E:45:63:B8:8D:39:DD:AC:60:D1:A9:7B:31:65:6B
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 018CC5DC516765F0C8FE1B4F2E569EDBF15B
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/u5ZBAAkuRWO4jTndrGDRqXsxZWs.roa
Signing time: Mon 01 Jan 2024 16:29:59 +0000
ROA not before: Mon 01 Jan 2024 16:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15829
IP address blocks: 213.180.224.0/24 maxlen: 24
213.180.232.0/22 maxlen: 22
213.180.227.0/24 maxlen: 24
213.180.236.0/22 maxlen: 22
213.180.248.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:51:67:65:f0:c8:fe:1b:4f:2e:56:9e:db:f1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 1 16:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb964100092e4563b88d39ddac60d1a97b31656b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b1:cc:21:08:97:56:f0:d6:e5:ff:88:5f:bb:
38:9c:20:c9:f2:2a:5f:f0:b7:a4:9f:a9:46:be:28:
e3:69:1d:ef:a5:ef:9a:0e:78:41:1c:5f:84:84:18:
72:1e:eb:ec:1d:de:ad:d4:bf:55:40:e3:c1:8d:13:
8c:da:29:a6:6a:e9:2a:f5:79:35:c0:73:26:c4:f3:
a0:52:2e:0a:36:9d:43:c5:06:f6:f4:8f:b5:11:ec:
cf:b7:81:5d:11:5e:b8:1d:97:a1:3e:b9:13:9f:e4:
48:46:1d:f7:a0:7e:72:6e:2e:ca:93:db:45:16:82:
25:50:58:55:cc:9f:2b:ca:ba:13:f1:9c:b0:0a:6b:
f5:60:7b:f5:7c:d8:a3:8a:38:89:47:96:b6:31:e1:
e3:1a:cf:cd:4a:11:f9:1b:31:ca:6e:ff:70:f9:56:
19:88:7a:3e:da:d5:9d:49:9c:82:20:2f:cb:1e:08:
45:62:34:93:7c:57:27:55:62:ba:ea:2e:95:27:98:
8a:97:fc:54:d2:75:5c:73:30:71:89:3f:92:d7:f5:
98:e7:b7:4a:89:ed:28:ec:14:90:4b:8c:9b:52:02:
4b:a2:42:4f:d9:ce:78:55:d8:e4:dc:ff:29:cd:ed:
18:60:78:09:63:cb:ac:eb:ec:91:fb:5c:6f:d0:bd:
f2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:96:41:00:09:2E:45:63:B8:8D:39:DD:AC:60:D1:A9:7B:31:65:6B
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/u5ZBAAkuRWO4jTndrGDRqXsxZWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.180.224.0/24
213.180.227.0/24
213.180.232.0/21
213.180.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:3c:f1:98:42:7c:3e:34:94:1c:5a:f4:cc:8c:d5:92:56:81:
63:e6:0d:28:bc:08:45:76:c7:14:25:7d:39:08:b4:7f:2d:ff:
f4:57:3f:9f:99:fb:24:04:04:0e:7a:e4:e2:c7:88:b6:14:f1:
0c:3e:05:ff:04:de:ca:21:8d:1f:64:c1:1f:c9:4f:b5:2e:06:
89:bd:ff:b6:10:32:94:d7:f7:64:64:15:e7:c4:3e:a5:f0:64:
49:b9:43:b6:36:7f:84:da:bc:e1:2a:32:7a:0f:a3:d6:92:6c:
0b:0e:67:13:a1:7d:ac:1a:4c:f3:c3:3c:22:d6:e6:5e:7d:3d:
e3:cf:81:5c:0d:ff:d2:6e:b6:7a:1d:01:a7:8f:ee:67:33:82:
28:20:85:7a:34:a1:d6:84:6a:64:dc:08:7a:a0:c7:c0:e7:fd:
50:ac:26:c4:04:1e:48:4d:ec:0e:f3:ad:f4:fd:f7:78:db:64:
4e:24:63:a6:bd:dc:0c:4c:63:46:71:e0:da:51:dd:b3:b1:22:
61:a7:8f:b7:52:1d:17:21:11:29:82:de:b2:3a:62:98:24:f3:
2f:8d:f8:ba:a4:39:02:5b:b5:71:99:00:7e:0f:07:bb:f8:b3:
61:01:fc:88:63:f6:30:90:9c:0c:32:1c:30:b5:2b:c9:84:f2:
a1:49:f0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:14:01 2024 by rpki-client on console-ams.rpki-client.org