Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/Q-cu-MELNiFwXoKbChxUFN1Vmdw.roa
File: Q-cu-MELNiFwXoKbChxUFN1Vmdw.roa (raw, json)
Hash identifier: tUtCQ1UAk1LPbHha6gEJfQL+FPXWU5v0uudUcbRwAsM=
Subject key identifier: 43:E7:2E:F8:C1:0B:36:21:70:5E:82:9B:0A:1C:54:14:DD:55:99:DC
Certificate issuer: /CN=eeb59b791c7a11d232a95c7ef169285caea695bc
Certificate serial: 018CC50067F72E30A677E8282B155FEB7486
Authority key identifier: EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/Q-cu-MELNiFwXoKbChxUFN1Vmdw.roa
Signing time: Mon 01 Jan 2024 12:29:47 +0000
ROA not before: Mon 01 Jan 2024 12:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208143
IP address blocks: 185.179.34.0/24 maxlen: 24
2a02:6c20:5::/48 maxlen: 48
2a02:6c20:810::/48 maxlen: 48
2a02:6c20:828::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 09:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:67:f7:2e:30:a6:77:e8:28:2b:15:5f:eb:74:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeb59b791c7a11d232a95c7ef169285caea695bc
Validity
Not Before: Jan 1 12:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43e72ef8c10b3621705e829b0a1c5414dd5599dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8d:e5:2c:f1:0d:bc:25:ab:8a:7d:0c:a8:0f:
7f:95:76:19:b1:9e:e7:bc:8e:ed:33:30:00:84:51:
b8:fb:7b:9e:9c:3d:c0:d8:46:c7:12:9b:42:67:e3:
7e:fd:23:98:67:0e:32:f0:9b:fc:33:a4:9b:e9:c5:
6e:b4:f5:36:5d:86:37:e1:2c:89:a1:73:20:03:c3:
ce:ee:68:27:e9:3e:e3:ca:76:5c:14:34:d2:69:b7:
7b:84:70:36:8a:ce:f7:1f:b6:e8:50:62:66:9d:61:
f3:75:8d:de:ba:53:73:d0:3d:24:38:38:18:70:f3:
8b:f5:4d:ca:bb:be:28:f7:b4:c2:37:37:ac:a0:f0:
80:f9:76:f1:f0:87:e8:af:c3:4a:47:7a:00:6f:e9:
45:63:dd:fd:89:94:89:1f:9b:f7:22:93:ca:9c:9d:
5c:59:1a:ca:2b:2e:9f:a5:f1:af:1e:1c:f6:de:3e:
ef:2e:30:c5:6c:b6:1c:78:f5:29:2b:0d:29:a5:6a:
07:28:19:04:6e:59:ed:c4:fc:e1:72:ce:a0:f8:d1:
ec:66:06:cf:6a:e8:6f:4d:01:74:68:e9:49:26:bc:
c4:af:41:af:5b:49:e6:de:3c:06:aa:95:fb:6f:3e:
5d:f5:dd:27:bb:eb:0a:0a:e4:90:d3:2d:6f:58:33:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E7:2E:F8:C1:0B:36:21:70:5E:82:9B:0A:1C:54:14:DD:55:99:DC
X509v3 Authority Key Identifier:
keyid:EE:B5:9B:79:1C:7A:11:D2:32:A9:5C:7E:F1:69:28:5C:AE:A6:95:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rWbeRx6EdIyqVx-8WkoXK6mlbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/Q-cu-MELNiFwXoKbChxUFN1Vmdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/efff71-7d11-4a1a-8ad3-a67d8c7ed7ca/1/7rWbeRx6EdIyqVx-8WkoXK6mlbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.34.0/24
IPv6:
2a02:6c20:5::/48
2a02:6c20:810::/48
2a02:6c20:828::/48
Signature Algorithm: sha256WithRSAEncryption
77:ed:d7:55:58:6d:57:94:0d:02:f2:8c:91:f4:e9:68:e8:50:
9d:07:2b:fc:a6:8e:08:08:4b:fb:ac:15:14:97:e9:34:5b:e7:
ae:05:de:99:c6:49:c6:5d:11:bd:35:ad:82:44:a2:74:f1:24:
96:63:e5:b5:28:ab:78:fc:60:5c:ac:66:9b:10:88:79:06:27:
41:71:0e:7c:f1:8a:f4:64:61:21:b1:a2:a9:4e:e4:59:b9:c8:
90:af:59:49:27:dc:5a:d1:92:2a:f3:55:e2:19:31:44:9d:3e:
46:37:f7:c9:07:0a:e8:e8:e1:d3:b3:ff:ba:65:e3:4d:66:42:
71:83:38:66:65:84:12:c4:05:55:ef:ee:77:84:d0:84:0c:f0:
e1:ac:e4:aa:da:78:9f:51:3d:3e:11:be:97:0e:27:c8:71:90:
0f:c3:64:45:cf:f5:ac:5e:a2:fd:3d:22:92:80:01:ca:d6:10:
57:df:e9:cf:e8:98:0a:f2:18:35:d5:6f:b3:91:f2:37:04:3f:
df:2a:58:41:49:8e:cb:e7:bb:6a:a3:57:da:a3:7c:ac:60:51:
a0:7e:83:ec:d0:16:4a:b1:9c:67:0a:7f:3d:cd:b6:97:29:d5:
42:80:a8:3b:09:d3:b4:db:c3:b3:de:8d:b6:6e:b7:6e:39:6a:
ac:9f:0b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 15:42:24 2024 by rpki-client on console-fra.rpki-client.org