Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/EL-6o3CIda4mEzaWFvfIePptda0.roa
File: EL-6o3CIda4mEzaWFvfIePptda0.roa (raw, json)
Hash identifier: kqKV+4qT50HIxQskWPr+8uOu+XBepHhEgvoYqoE3IOA=
Subject key identifier: 10:BF:BA:A3:70:88:75:AE:26:13:36:96:16:F7:C8:78:FA:6D:75:AD
Certificate issuer: /CN=b6e3a2a4908dd96821c80c64d15d1714143aaa94
Certificate serial: 018CC8DE5C803D7572592D760576996B0496
Authority key identifier: B6:E3:A2:A4:90:8D:D9:68:21:C8:0C:64:D1:5D:17:14:14:3A:AA:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tuOipJCN2WghyAxk0V0XFBQ6qpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/EL-6o3CIda4mEzaWFvfIePptda0.roa
Signing time: Tue 02 Jan 2024 06:31:05 +0000
ROA not before: Tue 02 Jan 2024 06:31:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34555
IP address blocks: 194.12.0.0/20 maxlen: 20
78.158.32.0/20 maxlen: 20
188.92.232.0/21 maxlen: 21
91.203.72.0/22 maxlen: 22
31.6.72.0/21 maxlen: 21
185.7.148.0/22 maxlen: 22
77.95.176.0/21 maxlen: 21
178.248.32.0/21 maxlen: 21
2a01:5e40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/tuOipJCN2WghyAxk0V0XFBQ6qpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/tuOipJCN2WghyAxk0V0XFBQ6qpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tuOipJCN2WghyAxk0V0XFBQ6qpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:5c:80:3d:75:72:59:2d:76:05:76:99:6b:04:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6e3a2a4908dd96821c80c64d15d1714143aaa94
Validity
Not Before: Jan 2 06:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10bfbaa3708875ae2613369616f7c878fa6d75ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:23:04:41:e2:98:74:b8:ce:26:01:1a:5c:1f:
f6:66:f9:3e:7a:f6:85:02:47:97:d3:48:16:7d:ec:
13:30:48:c1:86:e8:32:04:b8:cc:6e:06:b1:3c:6e:
21:fe:6b:c9:29:65:56:b6:5a:e2:eb:a8:63:24:39:
29:9d:6a:70:92:c7:b6:bd:15:87:ce:ca:62:88:80:
1b:38:9a:b3:a7:32:d6:f8:a9:de:d4:77:12:9a:ac:
b6:18:16:c3:b9:5f:40:71:09:cf:63:4d:bc:07:65:
59:36:b7:e7:27:9c:62:ae:c9:6e:ea:6d:fa:7c:21:
ff:6f:e7:56:8f:36:7a:88:c5:da:46:fa:3a:5a:96:
0e:f5:26:bf:cc:9a:72:29:7b:17:b8:e3:f3:53:c0:
82:5c:46:a7:bb:18:fb:75:5b:58:17:d7:b6:6e:fa:
27:08:12:29:bc:8c:4b:5d:c8:9a:4d:66:f9:a1:0a:
be:4e:b7:0e:0c:12:ca:33:c6:5a:21:77:d7:59:55:
ed:07:53:a0:50:cc:58:1c:04:40:29:d2:ed:c0:c9:
3a:da:96:08:d1:59:4a:a2:c3:7e:de:b5:c4:31:e0:
6b:43:95:01:bb:e2:17:80:68:57:6b:d4:07:20:a4:
81:0b:cd:46:08:94:cf:3b:90:f6:61:50:a3:4d:dd:
b2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BF:BA:A3:70:88:75:AE:26:13:36:96:16:F7:C8:78:FA:6D:75:AD
X509v3 Authority Key Identifier:
keyid:B6:E3:A2:A4:90:8D:D9:68:21:C8:0C:64:D1:5D:17:14:14:3A:AA:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tuOipJCN2WghyAxk0V0XFBQ6qpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/EL-6o3CIda4mEzaWFvfIePptda0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/b36f31-1ccd-4da3-9cf9-0edbdff9f8f2/1/tuOipJCN2WghyAxk0V0XFBQ6qpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.72.0/21
77.95.176.0/21
78.158.32.0/20
91.203.72.0/22
178.248.32.0/21
185.7.148.0/22
188.92.232.0/21
194.12.0.0/20
IPv6:
2a01:5e40::/32
Signature Algorithm: sha256WithRSAEncryption
20:37:d4:17:bf:9e:df:ba:64:02:11:b1:13:be:af:d6:38:69:
16:ab:fc:3b:88:82:b4:8c:96:e0:a7:9a:f3:64:22:22:01:4b:
e4:22:2c:56:1a:35:0c:3f:97:d7:14:da:01:f4:6f:41:91:69:
9b:f7:05:6d:42:b1:ed:5f:92:a5:cc:fc:fa:d1:89:bd:97:e0:
86:52:14:3b:b6:b9:8e:4c:3b:d2:0a:e5:81:c8:11:9c:5b:b2:
9c:44:7f:55:4f:0d:1c:75:1c:f2:70:59:64:a5:78:e7:6f:4e:
cc:55:46:f0:5f:ca:d6:aa:5c:46:9e:d1:5e:6e:1e:45:ae:ee:
4f:1c:3c:0a:5a:ff:b8:6f:2b:3f:cb:97:d4:89:b8:1a:23:42:
40:aa:cc:93:9d:cf:bd:97:12:6d:3c:ba:a0:59:ee:4d:a9:39:
b7:3c:6e:5c:2f:4f:1f:83:34:c8:f1:c3:1c:07:a2:f4:1c:f2:
4c:aa:71:96:2b:df:53:3d:0a:3d:8f:96:e0:fb:fd:3b:22:eb:
e1:91:fb:6a:d4:8a:08:6d:a3:8f:21:5f:1d:47:df:51:b5:e8:
b1:43:ad:78:b4:fd:43:8c:d2:6e:ef:e0:b7:6e:df:53:46:ef:
dc:b9:21:2c:ea:d5:88:ff:4a:ea:23:5c:db:3c:68:c9:5a:13:
b1:96:4f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:10:56 2024 by rpki-client on console-fra.rpki-client.org