Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/GInx4-Q5UHml9WjZq0iTTgFrsek.roa
File: GInx4-Q5UHml9WjZq0iTTgFrsek.roa (raw, json)
Hash identifier: 2CxAijRMnPGAF2AHISjE4BzVZPvPqkdX+udUN3OGaM4=
Subject key identifier: 18:89:F1:E3:E4:39:50:79:A5:F5:68:D9:AB:48:93:4E:01:6B:B1:E9
Certificate issuer: /CN=e2bd9276a6f78dac1002c3783a18d45ec14b5d43
Certificate serial: 018CC8DFA711B4F68A645BA18890229D472E
Authority key identifier: E2:BD:92:76:A6:F7:8D:AC:10:02:C3:78:3A:18:D4:5E:C1:4B:5D:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4r2Sdqb3jawQAsN4OhjUXsFLXUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/GInx4-Q5UHml9WjZq0iTTgFrsek.roa
Signing time: Tue 02 Jan 2024 06:32:29 +0000
ROA not before: Tue 02 Jan 2024 06:32:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6758
IP address blocks: 185.250.4.0/22 maxlen: 24
88.209.64.0/18 maxlen: 24
80.94.96.0/20 maxlen: 24
195.78.0.0/19 maxlen: 24
87.254.224.0/19 maxlen: 24
82.113.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/4r2Sdqb3jawQAsN4OhjUXsFLXUM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/4r2Sdqb3jawQAsN4OhjUXsFLXUM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4r2Sdqb3jawQAsN4OhjUXsFLXUM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:a7:11:b4:f6:8a:64:5b:a1:88:90:22:9d:47:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bd9276a6f78dac1002c3783a18d45ec14b5d43
Validity
Not Before: Jan 2 06:32:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1889f1e3e4395079a5f568d9ab48934e016bb1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ba:e0:45:fd:a6:0c:c5:8b:e8:7d:62:8b:bc:
92:85:25:82:d4:d1:78:71:ef:13:da:e9:9e:33:55:
33:2b:29:3d:79:10:32:f9:1f:cc:f4:2d:a3:4a:08:
3d:36:02:5d:da:40:8e:ff:35:54:5f:40:b7:dc:e6:
88:bb:8c:39:1d:6d:44:2f:57:2a:52:e8:78:fa:8d:
b1:58:0a:36:fe:a4:c7:fe:8d:9f:a2:7d:fb:a9:27:
94:35:0c:5a:11:fb:60:75:6a:08:dd:c9:08:b3:92:
57:2d:eb:47:0b:f1:67:e7:f3:b5:bf:d8:69:90:e5:
29:cc:68:ee:3f:88:82:55:3a:b3:74:d9:37:4f:d7:
7e:7e:9e:1b:1e:57:59:dd:20:15:33:f3:0f:17:95:
45:8e:01:ea:c4:43:91:6d:25:f5:1a:93:f7:55:4a:
27:18:26:96:7a:9b:19:f7:d7:c2:2a:4e:d7:7b:01:
a0:be:9b:2f:ee:65:e1:68:34:40:3a:5b:a4:4f:97:
39:a7:18:4f:6a:2b:11:c1:b4:32:bd:56:34:53:c0:
6b:ef:1b:c0:02:17:a8:39:f6:1c:21:0d:4f:1a:ac:
f1:73:ce:78:5a:5c:ef:46:86:7a:48:08:ca:7c:ba:
9f:34:f7:d7:2d:86:4b:cd:05:9f:3b:01:3d:a6:32:
19:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:89:F1:E3:E4:39:50:79:A5:F5:68:D9:AB:48:93:4E:01:6B:B1:E9
X509v3 Authority Key Identifier:
keyid:E2:BD:92:76:A6:F7:8D:AC:10:02:C3:78:3A:18:D4:5E:C1:4B:5D:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4r2Sdqb3jawQAsN4OhjUXsFLXUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/GInx4-Q5UHml9WjZq0iTTgFrsek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a5881a-98e8-4e45-bcb8-71eecf898d42/1/4r2Sdqb3jawQAsN4OhjUXsFLXUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.94.96.0/20
82.113.0.0/19
87.254.224.0/19
88.209.64.0/18
185.250.4.0/22
195.78.0.0/19
Signature Algorithm: sha256WithRSAEncryption
54:ea:d1:c3:a1:34:92:a9:a0:8e:63:c4:f7:8e:f1:e0:7e:a9:
5a:ff:ea:66:85:74:50:38:2e:a8:ee:90:fe:7b:ea:65:a2:93:
45:aa:36:a9:66:14:a4:16:8f:8f:15:96:de:1b:9d:84:8b:8d:
cd:d7:6a:f6:7a:d3:d5:b3:0f:84:65:6f:7f:02:ae:bf:06:13:
5c:16:3d:ed:1a:de:ed:10:66:04:dd:b1:ba:84:69:79:3b:4c:
46:65:4c:73:f7:aa:2f:d0:f1:f9:33:f1:b8:ad:7b:6f:08:81:
90:fb:a0:a0:e0:59:c6:36:f8:ff:71:e8:d9:5c:1c:d5:a5:7f:
07:15:23:73:ad:a1:da:8e:be:a9:df:3c:4f:5b:99:e6:00:ad:
ff:d5:13:c7:3a:d2:a8:27:0b:c9:7a:1b:31:d1:dc:90:72:89:
88:e8:52:99:b9:f3:8c:93:2a:c8:ea:de:f6:9b:7b:b1:16:fc:
32:f9:78:d6:b8:53:52:d5:5b:f4:03:de:28:18:a6:0f:14:56:
28:6b:ff:95:27:8c:25:74:52:3b:e3:ae:73:ae:a0:7a:83:02:
71:a8:a0:34:09:1d:1c:65:d8:cb:3c:10:7a:5c:4a:c0:47:a5:
6b:69:ba:a2:0b:89:77:4c:40:f1:1d:62:46:90:a3:a8:6f:d9:
69:ed:f8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:36:00 2024 by rpki-client on console-ams.rpki-client.org