Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/EZZiuUwPiRd9gnDDKAKEWAwLLrQ.roa
File: EZZiuUwPiRd9gnDDKAKEWAwLLrQ.roa (raw, json)
Hash identifier: vjl96ocvY0/a39Jw+KlmTn5YRNB9Hb+uyXHf/5f7EP0=
Subject key identifier: 11:96:62:B9:4C:0F:89:17:7D:82:70:C3:28:02:84:58:0C:0B:2E:B4
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018E769E3B1D758C672123220CB712D20B30
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/EZZiuUwPiRd9gnDDKAKEWAwLLrQ.roa
Signing time: Mon 25 Mar 2024 17:17:45 +0000
ROA not before: Mon 25 Mar 2024 17:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 45.90.144.0/24 maxlen: 24
83.143.118.0/24 maxlen: 24
193.221.193.0/24 maxlen: 24
193.221.194.0/24 maxlen: 24
212.107.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 14:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:9e:3b:1d:75:8c:67:21:23:22:0c:b7:12:d2:0b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Mar 25 17:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=119662b94c0f89177d8270c3280284580c0b2eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:41:24:e4:7b:34:d6:f1:01:3f:68:53:70:a0:
a3:b3:3e:f7:40:ff:3b:22:70:dc:f2:7a:c0:f1:4d:
17:f8:1a:4b:eb:27:8b:5a:c3:c3:b7:6f:69:ac:0e:
be:da:0c:64:5f:b0:98:31:1d:ea:d8:1c:11:2b:45:
97:f3:af:43:cf:4b:fd:7d:9a:0d:c8:e4:55:73:d7:
fa:87:3a:bd:c2:68:bb:44:5e:fd:21:c3:e4:44:33:
3d:51:75:e4:60:73:84:75:52:43:9d:3e:84:a8:d7:
ac:ce:6a:ec:6c:eb:58:e7:23:0a:ea:e8:f6:61:e3:
5c:a3:39:7f:28:78:3b:82:c5:82:2c:e5:1b:97:6c:
b4:00:83:13:ce:d4:4a:fb:14:f9:a8:98:34:5e:96:
28:43:c4:32:99:82:09:7c:8f:0e:86:1c:68:76:da:
e3:7e:44:78:34:2a:5d:60:13:d1:f8:76:4c:7c:f8:
8a:23:5c:a0:78:7c:83:d9:bb:ef:e9:46:86:05:96:
ca:54:cb:c4:9a:fb:bd:b7:f8:91:d6:5e:a6:3b:5c:
92:dd:16:25:27:9f:1a:a9:39:f7:86:d8:b3:fd:b5:
a1:9a:4e:92:b6:9a:ea:b1:3c:d4:2d:ea:ac:51:f5:
80:37:4f:95:7c:7f:da:73:7c:33:d4:56:31:82:3f:
7d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:96:62:B9:4C:0F:89:17:7D:82:70:C3:28:02:84:58:0C:0B:2E:B4
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/EZZiuUwPiRd9gnDDKAKEWAwLLrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.144.0/24
83.143.118.0/24
193.221.193.0-193.221.194.255
212.107.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:46:bd:bd:ef:c7:81:4f:72:e7:24:c6:d1:f9:2c:ab:a2:f4:
df:9f:b6:1a:5c:f8:a6:de:84:e0:ad:e1:ff:e8:22:1a:30:fa:
62:62:58:23:55:d2:a8:50:c3:5b:bf:b6:d3:ec:e3:04:a3:42:
85:1c:14:9b:3d:5b:3d:1d:f2:f1:1a:a7:0b:03:d1:3c:72:6b:
75:65:df:a7:9e:71:52:e5:ce:fb:0a:5a:93:79:91:d7:a8:9a:
80:bb:d3:97:c2:c7:f2:de:91:a2:1c:ec:a4:d6:5f:14:75:ee:
d8:23:6b:2d:1e:a3:a9:ad:44:23:68:f5:d5:4c:01:db:f3:2f:
a3:a7:a4:a3:50:9b:09:01:9f:1c:64:2a:fc:3a:7e:3f:0e:11:
a9:3a:4d:6e:88:5e:19:26:85:9d:92:de:90:6d:57:50:58:04:
6d:64:26:fc:69:b8:3c:e3:37:c1:7d:e0:0e:6f:b9:62:14:c4:
52:32:0f:73:3b:4c:ef:2c:55:e1:3d:f8:60:9f:0c:8d:5d:6f:
f8:ca:b8:ef:4b:74:53:51:11:08:4f:cd:07:1a:73:4d:a9:bb:
c4:87:8c:e2:c0:f2:f2:bd:67:21:ba:1e:f3:fa:1e:21:47:d9:
18:53:d1:7b:7b:f9:11:ff:20:26:2c:10:64:a5:a2:f2:00:7f:
b6:e1:b6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:45:16 2024 by rpki-client on console-ams.rpki-client.org