Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/HmBy6mf73q3RxMobfDtm5703L5Y.roa
File: HmBy6mf73q3RxMobfDtm5703L5Y.roa (raw, json)
Hash identifier: WE7kyn66vKGPLt+MpmphDJIeHz601CTn3mDL5xRDU5c=
Subject key identifier: 1E:60:72:EA:67:FB:DE:AD:D1:C4:CA:1B:7C:3B:66:E7:BD:37:2F:96
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 0190301BEB528BCBF53BDCA831E4204AE714
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/HmBy6mf73q3RxMobfDtm5703L5Y.roa
Signing time: Wed 19 Jun 2024 10:47:34 +0000
ROA not before: Wed 19 Jun 2024 10:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47285
IP address blocks: 185.105.236.0/24 maxlen: 24
185.105.238.0/24 maxlen: 24
194.36.175.0/24 maxlen: 24
2a10:ab00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft
rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:1b:eb:52:8b:cb:f5:3b:dc:a8:31:e4:20:4a:e7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Jun 19 10:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e6072ea67fbdeadd1c4ca1b7c3b66e7bd372f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:dc:40:79:e4:6e:be:f5:3d:2d:48:0e:03:
e8:73:e3:10:f7:d2:26:fb:67:4a:9c:2e:da:e5:8a:
12:b5:a0:8d:09:96:1e:cb:99:00:21:01:a4:0b:72:
5f:03:67:67:a0:cb:d3:9c:bc:22:80:25:51:c5:38:
b9:af:8d:d1:fc:13:73:dd:45:ba:0f:21:1d:61:0f:
fc:58:9d:2b:b2:6b:00:e5:c1:78:fe:d1:bf:e4:70:
6c:85:6e:2b:ba:1a:c8:c7:de:83:d3:53:a9:81:5d:
03:15:eb:37:89:66:e5:36:ce:49:e1:a2:98:97:84:
68:4a:7d:a1:a4:d7:c6:da:da:91:cc:c1:15:44:91:
19:77:6e:a5:c8:92:a1:3d:89:5b:8d:09:15:23:8d:
d1:1e:58:80:53:0c:c3:dc:91:e9:b0:00:78:e5:0c:
61:a8:33:61:b4:8f:8d:ed:14:fb:6a:e6:50:d9:f0:
02:0b:f7:f4:12:ff:85:75:cf:04:c4:eb:10:f9:83:
83:e9:d1:72:2e:2b:ae:33:93:7b:86:b4:33:ac:0c:
f4:cc:b6:88:20:d9:a4:57:9b:b5:4f:80:5f:65:fd:
37:ff:f1:af:83:96:ba:cf:67:2b:cb:85:f1:5c:14:
12:ae:94:db:02:2a:7c:4e:9e:60:73:a9:49:de:0f:
53:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:60:72:EA:67:FB:DE:AD:D1:C4:CA:1B:7C:3B:66:E7:BD:37:2F:96
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/HmBy6mf73q3RxMobfDtm5703L5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.236.0/24
185.105.238.0/24
194.36.175.0/24
IPv6:
2a10:ab00::/29
Signature Algorithm: sha256WithRSAEncryption
78:24:f3:69:4a:e0:18:d5:7f:76:31:91:34:b6:1f:2a:c1:70:
79:bb:ab:9a:a6:64:97:9a:a4:34:3c:16:a8:06:38:c3:13:28:
0f:10:cc:5a:15:7d:23:e8:cb:b3:70:71:5a:58:18:ef:60:86:
fb:2d:67:2b:4e:05:35:c6:ec:2b:fa:8c:46:27:ce:47:98:07:
e9:90:b5:a7:11:79:a7:1b:51:f2:03:60:82:1b:65:18:b1:09:
5e:35:c7:dc:ad:2d:c0:b2:cc:10:49:59:1d:ab:9c:6c:e7:45:
45:89:ed:c5:34:0b:ae:12:92:b3:a4:90:72:26:ba:1f:1d:3e:
7c:a0:24:a6:f4:40:9f:17:a8:58:5d:aa:07:d5:14:04:43:62:
3c:5d:c6:51:0c:59:aa:47:00:00:97:7c:de:ea:e8:79:d3:22:
9e:76:86:fd:45:a8:e9:e8:69:a5:45:a6:c4:23:3d:4f:65:b5:
5e:2a:2f:dd:c3:ce:02:35:ac:2f:20:e7:c1:db:d8:f5:c3:76:
b2:ba:f7:9d:4e:8e:b4:41:f2:41:5d:c8:2e:f0:43:36:e4:14:
23:29:d3:4c:77:8f:f5:d4:56:ba:25:65:23:fd:97:38:4e:05:
f6:49:2d:44:15:f4:44:45:5b:88:ed:07:74:c3:d3:4a:e6:75:
22:4b:01:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:46:00 2024 by rpki-client on console-fra.rpki-client.org