Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/eZiZcQlLbQjOa9p0JVwCKge3rUo.roa
File: eZiZcQlLbQjOa9p0JVwCKge3rUo.roa (raw, json)
Hash identifier: DOvrmwHbM3kWlHzFgokw69JbeuoMGmY0fQhZydXUU6Y=
Subject key identifier: 79:98:99:71:09:4B:6D:08:CE:6B:DA:74:25:5C:02:2A:07:B7:AD:4A
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018CC424906BED9979129AD7DBB348914BF8
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/eZiZcQlLbQjOa9p0JVwCKge3rUo.roa
Signing time: Mon 01 Jan 2024 08:29:39 +0000
ROA not before: Mon 01 Jan 2024 08:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52116
IP address blocks: 178.254.170.0/24 maxlen: 24
178.254.180.0/24 maxlen: 24
178.254.181.0/24 maxlen: 24
89.23.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:90:6b:ed:99:79:12:9a:d7:db:b3:48:91:4b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 1 08:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79989971094b6d08ce6bda74255c022a07b7ad4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ce:86:38:1a:65:0e:a4:39:f3:a4:cc:c3:61:
d2:95:f2:c6:5e:09:23:50:19:0e:d2:2b:c2:8d:d8:
5e:9c:ea:ac:9a:2b:09:cd:0a:d2:c5:95:89:1d:d9:
6c:73:ee:fe:86:1a:3a:4b:fe:af:93:43:f3:5e:34:
f3:5e:f7:1d:3f:f8:88:15:1f:c5:93:e0:f6:26:ee:
74:0d:37:e4:be:70:4c:02:ca:83:7a:fe:5b:0f:03:
bf:2e:ab:f6:1a:b6:8a:f9:fb:fd:cc:bc:bc:9f:a1:
90:e7:55:7e:4b:18:65:21:a2:fc:d5:3d:58:2f:b2:
7c:38:7d:59:21:a0:5d:93:6e:66:7c:89:81:c2:3a:
64:9c:e3:4b:e9:5c:06:e1:b9:1c:a8:30:a8:1f:4e:
9d:5f:e6:76:e1:90:ca:7d:31:ff:52:a2:78:15:d3:
1f:0b:a4:08:4a:24:76:d8:94:33:51:69:db:82:06:
ae:c0:16:f1:a7:52:47:24:51:1b:f7:69:fb:58:cf:
4b:22:27:d5:d4:7e:ac:94:52:cb:19:52:2b:0a:19:
72:95:8a:cb:b4:1c:d5:58:9f:8c:b4:08:af:c3:e5:
f6:2b:f2:6a:66:f8:1e:d5:ff:06:98:5c:38:96:c8:
6d:f9:aa:2d:fa:42:ec:87:af:ce:e5:5a:43:f6:fb:
e8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:98:99:71:09:4B:6D:08:CE:6B:DA:74:25:5C:02:2A:07:B7:AD:4A
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/eZiZcQlLbQjOa9p0JVwCKge3rUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.71.0/24
178.254.170.0/24
178.254.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:4b:c3:19:25:7f:9d:01:8a:88:ce:b9:3b:81:5e:97:bb:1d:
4f:5c:13:57:91:ec:6e:f1:16:ee:62:d7:6e:ca:a7:9a:3a:af:
b7:f8:07:1d:d0:09:42:95:06:51:fa:d9:14:3a:fc:d9:f9:ae:
70:e4:b3:ef:54:9a:5d:bf:61:30:4a:07:30:8e:de:fe:1c:44:
aa:e3:4d:79:c2:62:61:c5:79:78:a8:90:fc:92:87:da:ee:a0:
76:49:41:cb:30:6d:9a:15:64:e4:e6:2b:38:51:5e:98:bc:2e:
cf:eb:c9:b8:10:05:19:5f:66:42:97:df:c2:9d:a7:0f:26:e4:
56:f3:da:4d:6c:38:20:67:35:c1:63:77:bd:8d:e7:c9:f1:39:
4f:f8:ae:8d:14:eb:c8:15:93:50:4a:38:c5:bc:f1:18:88:08:
45:8a:9d:be:ac:bb:c4:61:2a:3c:54:34:8e:a7:54:80:10:8a:
e5:b5:4d:08:dd:83:48:42:7c:32:3e:86:33:98:39:ed:b1:0e:
3a:1f:12:8b:28:0b:7d:01:55:61:8b:48:db:f8:47:64:5d:4f:
71:e0:73:0a:fa:99:8c:07:b7:19:fe:02:f5:84:a7:e3:78:7d:
13:fc:33:c4:21:b7:98:a7:53:e2:91:a2:a9:49:a1:b4:ae:f6:
98:16:46:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:25:43 2024 by rpki-client on console-ams.rpki-client.org