Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/E8FV2AdEOh-frgk56aaG93CgTnA.roa
File: E8FV2AdEOh-frgk56aaG93CgTnA.roa (raw, json)
Hash identifier: Ph9HXYoDr8dmNUZ2kfTa2gsHwh0Q9lgTDJa4hWuYWHE=
Subject key identifier: 13:C1:55:D8:07:44:3A:1F:9F:AE:09:39:E9:A6:86:F7:70:A0:4E:70
Certificate issuer: /CN=415c10f84dc22937ef6d15eb71bbb4a5308162bf
Certificate serial: 0191076F5E1E9A102F0D12EBEB7D187E7940
Authority key identifier: 41:5C:10:F8:4D:C2:29:37:EF:6D:15:EB:71:BB:B4:A5:30:81:62:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/E8FV2AdEOh-frgk56aaG93CgTnA.roa
Signing time: Wed 31 Jul 2024 06:17:04 +0000
ROA not before: Wed 31 Jul 2024 06:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197524
IP address blocks: 91.235.8.0/22 maxlen: 23
185.18.36.0/22 maxlen: 23
185.93.200.0/22 maxlen: 23
2a05:fa40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 18:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:6f:5e:1e:9a:10:2f:0d:12:eb:eb:7d:18:7e:79:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415c10f84dc22937ef6d15eb71bbb4a5308162bf
Validity
Not Before: Jul 31 06:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13c155d807443a1f9fae0939e9a686f770a04e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ba:28:d4:87:d4:c1:d4:66:25:5a:30:e5:38:
39:83:7c:c5:7b:ca:4e:33:2b:4a:1f:8e:99:35:01:
b8:13:6a:9b:89:24:fb:8e:bb:29:25:86:94:c5:c8:
38:33:de:a2:60:07:1d:9f:66:3e:5d:fc:6d:77:56:
19:78:30:66:ce:43:b5:bd:ae:4c:5a:da:87:53:08:
60:2a:03:68:85:f5:a6:71:a3:92:2a:0e:75:d6:f7:
c4:57:e4:97:b3:da:68:65:c3:0e:64:d0:69:5b:c6:
70:81:80:93:d8:cf:cf:3a:a7:90:89:9c:ae:f4:44:
16:b4:07:d2:2f:7e:d5:98:9e:37:de:ff:2c:ed:99:
d0:df:32:3d:08:79:12:9f:0c:2b:0d:85:a9:ce:f9:
13:31:a4:8a:0e:ab:9b:f0:c8:e6:f3:12:1a:58:cb:
e3:50:52:5b:e3:26:4d:fb:14:60:65:96:a5:a4:59:
9c:9e:22:45:52:ee:05:1d:40:9d:d3:cd:82:e3:27:
01:be:59:36:46:cd:ef:3b:8e:fc:a5:c0:18:b0:8f:
a0:f0:94:d9:f6:c0:55:04:2b:46:34:e2:00:64:a1:
9c:2d:29:c1:72:d2:8e:31:04:64:0d:23:7d:42:23:
c1:34:91:a5:57:0b:07:a9:b2:9d:23:44:8f:bd:2c:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C1:55:D8:07:44:3A:1F:9F:AE:09:39:E9:A6:86:F7:70:A0:4E:70
X509v3 Authority Key Identifier:
keyid:41:5C:10:F8:4D:C2:29:37:EF:6D:15:EB:71:BB:B4:A5:30:81:62:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/E8FV2AdEOh-frgk56aaG93CgTnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/5c57e7-7ba8-4a62-8d15-c6b6fd12ce27/1/QVwQ-E3CKTfvbRXrcbu0pTCBYr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.8.0/22
185.18.36.0/22
185.93.200.0/22
IPv6:
2a05:fa40::/29
Signature Algorithm: sha256WithRSAEncryption
37:3a:4c:6b:f8:88:e9:34:bd:d8:d7:84:1b:3e:b7:57:2f:65:
4a:1a:aa:7b:10:d4:aa:b0:49:47:5a:02:c2:17:5d:07:b7:9b:
cb:bc:5c:16:2a:ea:a3:eb:e2:be:e6:49:6f:29:1f:db:47:69:
21:9c:e7:8b:4b:9d:29:98:0f:59:35:5f:2f:ed:17:37:a2:65:
a9:a0:a5:23:de:6b:8e:2d:4a:ae:a3:98:26:d7:88:5a:4a:2c:
82:f9:05:da:9e:03:f3:02:7d:c6:68:da:25:57:83:b2:81:c7:
ba:bb:a0:43:c4:80:89:fb:d7:f1:9b:1d:5f:29:22:2a:c7:b7:
76:96:1d:d4:d3:26:0f:59:49:0e:4c:53:30:44:fc:5f:2f:4d:
3f:45:63:21:25:d7:72:e2:dc:ae:e2:1e:35:eb:3a:f9:8b:cd:
13:4d:5b:4a:f3:bf:a1:02:ed:21:8e:a1:8f:c6:5a:8d:39:1e:
6a:2c:40:a6:a2:37:43:a2:7f:fd:9d:ed:f1:b6:f3:fc:98:56:
85:fc:67:bb:a3:52:9d:01:e1:b3:28:c4:c9:cd:65:a0:73:88:
0c:85:b6:78:b2:9d:75:bf:33:b9:3d:45:c3:97:cd:fe:5d:ed:
82:85:1f:85:fd:7a:67:cb:03:6d:59:e1:52:ea:b0:a5:bf:b0:
f2:00:c8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:35:17 2024 by rpki-client on console-fra.rpki-client.org