Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/eS_V4C4cNESsUi7U8IjjlNIhlSE.roa
File: eS_V4C4cNESsUi7U8IjjlNIhlSE.roa (raw, json)
Hash identifier: wdsqtGZ831qd+AJFvCqG1OGszbCCIEt4963PPzg5D0k=
Subject key identifier: 79:2F:D5:E0:2E:1C:34:44:AC:52:2E:D4:F0:88:E3:94:D2:21:95:21
Certificate issuer: /CN=82f2455dcf45ae65a6fdccf8f7821ce3c524011d
Certificate serial: 01947D4C18AAD43A19B32E04281D542544D4
Authority key identifier: 82:F2:45:5D:CF:45:AE:65:A6:FD:CC:F8:F7:82:1C:E3:C5:24:01:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/eS_V4C4cNESsUi7U8IjjlNIhlSE.roa
Signing time: Sun 19 Jan 2025 06:42:06 +0000
ROA not before: Sun 19 Jan 2025 06:42:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42067
IP address blocks: 91.151.160.0/24 maxlen: 24
91.151.161.0/24 maxlen: 24
91.151.162.0/24 maxlen: 24
212.93.160.0/19 maxlen: 19
212.93.160.0/24 maxlen: 24
212.93.161.0/24 maxlen: 24
212.93.162.0/24 maxlen: 24
212.93.163.0/24 maxlen: 24
212.93.164.0/24 maxlen: 24
212.93.165.0/24 maxlen: 24
212.93.170.0/24 maxlen: 24
212.93.176.0/24 maxlen: 24
212.93.177.0/24 maxlen: 24
212.93.178.0/24 maxlen: 24
212.93.179.0/24 maxlen: 24
212.93.180.0/24 maxlen: 24
212.93.181.0/24 maxlen: 24
212.93.182.0/24 maxlen: 24
212.93.183.0/24 maxlen: 24
212.93.186.0/24 maxlen: 24
212.93.187.0/24 maxlen: 24
212.93.188.0/24 maxlen: 24
212.93.189.0/24 maxlen: 24
212.93.190.0/24 maxlen: 24
212.93.191.0/24 maxlen: 24
2a00:50a0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 18:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7d:4c:18:aa:d4:3a:19:b3:2e:04:28:1d:54:25:44:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f2455dcf45ae65a6fdccf8f7821ce3c524011d
Validity
Not Before: Jan 19 06:42:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=792fd5e02e1c3444ac522ed4f088e394d2219521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ee:ca:77:13:b6:33:de:da:27:d3:eb:29:8a:
d1:37:72:ad:2d:0d:6e:b0:9a:3c:f7:9d:46:84:5d:
06:ab:01:59:42:2f:16:02:41:ff:3a:05:7b:35:5b:
8a:80:46:fb:b7:72:c4:67:b7:93:66:be:7c:75:e4:
79:80:6b:3f:29:bc:3e:73:2a:76:a7:8d:1f:a4:07:
47:ef:15:49:04:05:ea:ad:21:b3:f8:86:4e:2b:a5:
01:3d:74:99:1e:73:69:2a:60:3b:be:3b:96:54:7b:
7f:ec:75:a1:b2:a0:29:a2:17:ab:53:09:87:f0:a0:
d2:fb:94:f0:e1:de:05:09:91:bc:2a:d7:27:fe:f8:
f1:70:79:17:9b:fd:23:5a:4e:eb:4e:41:3f:31:51:
62:a7:d4:56:85:f3:e2:f9:c2:eb:ea:15:2f:8d:01:
38:c9:1c:27:c2:36:de:c4:60:ae:2c:2a:71:e5:61:
8a:0c:f2:60:0e:5d:29:9a:f9:dc:92:41:04:60:94:
69:b6:08:bd:58:f4:8e:9f:8c:e5:d1:ba:a9:c4:c4:
20:75:88:41:e5:a1:d7:4d:96:0b:98:a5:29:e2:53:
14:72:4d:31:dc:72:3f:e3:fa:bd:a5:07:40:b2:20:
0a:58:71:4a:83:6d:ab:88:4f:c8:7d:c4:9a:2e:55:
5b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2F:D5:E0:2E:1C:34:44:AC:52:2E:D4:F0:88:E3:94:D2:21:95:21
X509v3 Authority Key Identifier:
keyid:82:F2:45:5D:CF:45:AE:65:A6:FD:CC:F8:F7:82:1C:E3:C5:24:01:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvJFXc9FrmWm_cz494Ic48UkAR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/eS_V4C4cNESsUi7U8IjjlNIhlSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a24de-44f0-4a54-9137-ecd9faff262c/1/gvJFXc9FrmWm_cz494Ic48UkAR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.160.0-91.151.162.255
212.93.160.0/19
IPv6:
2a00:50a0::/48
Signature Algorithm: sha256WithRSAEncryption
21:03:e5:26:6e:41:43:8b:f4:11:74:87:87:92:61:d4:34:e8:
ea:a3:9c:1b:3c:c2:13:71:a3:52:55:7c:9d:39:f4:d4:df:09:
e7:0d:b7:16:16:cc:2d:ec:82:22:36:73:8f:13:91:7f:bf:7a:
5d:8f:1c:82:58:d0:77:da:62:06:3b:a1:d2:a8:9f:65:ec:d1:
7d:5c:c7:ea:13:5e:0c:9e:cf:ce:68:46:79:9a:5d:8c:69:b1:
b9:7a:4b:94:6b:75:43:5a:10:03:99:fe:4d:f0:8b:c0:36:ca:
3c:5b:c6:e6:0b:80:e5:45:db:08:4d:87:ca:c2:77:c2:c4:d9:
7f:6e:00:41:fd:27:74:8d:e7:be:fa:99:d4:39:ae:35:bf:0e:
17:46:8d:46:0e:6a:c1:a0:81:41:f0:9f:23:c7:f5:c4:33:2f:
fc:98:45:3f:15:c1:0e:c8:f4:94:ca:91:8a:98:7c:c5:37:fc:
d2:e6:0a:dc:a8:43:d4:1c:76:9c:81:57:42:a1:e9:b6:e0:d5:
7a:96:77:14:c6:18:4f:ce:c7:f6:77:2c:3e:77:e2:78:b6:76:
52:34:c4:60:12:43:d0:16:10:15:69:f9:8b:29:7e:8a:fa:25:
db:b3:be:24:79:9c:03:0d:af:a2:e0:4b:53:a7:63:e1:d5:ab:
4c:1a:ae:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:32 2025 by rpki-client