Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/EbpiAjDaV9MWzlr-slSc0QHcVcM.roa
File: EbpiAjDaV9MWzlr-slSc0QHcVcM.roa (raw, json)
Hash identifier: Y6r8FDivqHIAzFBPVdJG1rqdld+PqVeb6Vq747wHp+Q=
Subject key identifier: 11:BA:62:02:30:DA:57:D3:16:CE:5A:FE:B2:54:9C:D1:01:DC:55:C3
Certificate issuer: /CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Certificate serial: 019111241BE1BE95E166A59E7584AF9206CA
Authority key identifier: 06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/EbpiAjDaV9MWzlr-slSc0QHcVcM.roa
Signing time: Fri 02 Aug 2024 03:31:04 +0000
ROA not before: Fri 02 Aug 2024 03:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214834
IP address blocks: 195.66.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:11:24:1b:e1:be:95:e1:66:a5:9e:75:84:af:92:06:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Validity
Not Before: Aug 2 03:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11ba620230da57d316ce5afeb2549cd101dc55c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:36:76:e0:05:0b:60:c4:47:51:cd:bb:c6:48:
cf:d1:e4:8b:f1:6c:63:08:bf:7c:c1:54:45:c8:16:
df:fa:eb:e7:45:3c:b4:45:c8:71:81:4c:55:ce:6c:
33:38:53:56:fd:df:30:62:30:d8:2a:12:d9:fb:b1:
c6:e9:b4:d4:87:3d:ee:2b:3d:52:e2:fb:6d:38:1b:
a9:1f:b1:78:33:ef:ae:3d:24:c5:64:be:b0:0e:3a:
53:fb:ff:2c:5c:da:78:4a:8c:8c:6d:79:1d:c9:74:
10:ac:38:ed:8f:19:29:f2:0e:de:15:b3:ba:96:0c:
d5:13:62:e4:2e:fa:f4:8b:05:a9:25:b7:92:af:d8:
ca:9b:95:5a:4b:93:d6:e0:c3:5e:af:c5:68:62:86:
a8:1c:8f:ba:3c:aa:82:d0:7c:97:85:26:e2:34:84:
61:cd:e0:1c:b5:e1:ba:f3:29:6b:5f:5c:a5:18:03:
8d:28:7e:b1:84:16:29:fd:4b:fc:6a:15:89:fe:c6:
86:f4:ab:58:a3:74:0c:c4:21:ea:63:11:e5:06:0d:
68:45:1c:9f:ef:c9:8e:e4:a0:82:b4:84:14:fe:82:
69:e7:5b:77:0f:85:2d:85:3a:13:04:a3:5b:df:a4:
bb:4c:e3:50:04:fc:28:28:d5:3e:8e:d1:7e:0e:6e:
0f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BA:62:02:30:DA:57:D3:16:CE:5A:FE:B2:54:9C:D1:01:DC:55:C3
X509v3 Authority Key Identifier:
keyid:06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/EbpiAjDaV9MWzlr-slSc0QHcVcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:35:c1:ad:e5:ca:a9:55:ca:b7:0d:52:0a:3e:60:ed:5e:40:
f2:18:08:57:5b:4d:ab:5f:e5:25:5f:7e:1a:09:99:64:ea:d2:
10:3f:89:21:e6:84:a9:e0:93:3e:82:c3:46:c5:a7:8e:ae:1a:
7d:3e:4a:5c:1f:11:a7:db:a9:ef:ef:39:6b:73:74:e5:0c:8d:
34:4e:7c:7f:4f:80:1c:bd:2e:ad:67:5a:6a:de:fc:bf:f2:8b:
69:c9:db:24:a6:12:c0:94:dc:05:95:c6:69:01:cf:22:ae:34:
75:b2:6e:ef:6a:bf:0d:9c:68:40:0b:c6:57:53:51:18:1a:2f:
a7:e1:50:d0:f2:8e:4b:bc:bb:97:fc:94:30:a2:d1:b7:b7:ac:
a1:0c:b2:3c:de:94:e1:cb:9b:e3:4a:6c:80:dc:6c:10:2b:b6:
5f:41:8e:0a:26:b8:64:c6:6b:b2:f5:2f:92:09:22:f7:1f:ce:
a9:ad:34:1b:0d:af:c6:84:f5:42:f8:ff:31:ad:62:62:a8:e0:
d6:85:83:a3:04:ec:8f:71:d7:0f:e7:36:b0:d9:f1:d9:16:1d:
92:f2:aa:66:93:65:4d:2d:16:11:a4:2b:b7:df:cc:82:82:9d:
98:7c:ae:ee:39:22:9b:b8:e4:35:3a:1a:46:96:7c:f6:0c:f9:
33:bb:f7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:02:43 2024 by rpki-client on console-fra.rpki-client.org