Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/sLKkxrWx3Gsg1QNW1nFohkkRCJ0.roa
File: sLKkxrWx3Gsg1QNW1nFohkkRCJ0.roa (raw, json)
Hash identifier: RZDr/DH89uogMLYohkV8dovcyLTkQRtwQukPOo0oZwo=
Subject key identifier: B0:B2:A4:C6:B5:B1:DC:6B:20:D5:03:56:D6:71:68:86:49:11:08:9D
Certificate issuer: /CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Certificate serial: 018CC8012C32046ACBCB1DE515952D91B10B
Authority key identifier: 8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/sLKkxrWx3Gsg1QNW1nFohkkRCJ0.roa
Signing time: Tue 02 Jan 2024 02:29:29 +0000
ROA not before: Tue 02 Jan 2024 02:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60039
IP address blocks: 185.60.236.0/24 maxlen: 24
185.98.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/jqzH87IYxJLYjb68nNy5otLTDtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/jqzH87IYxJLYjb68nNy5otLTDtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:2c:32:04:6a:cb:cb:1d:e5:15:95:2d:91:b1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eacc7f3b218c492d88dbebc9cdcb9a2d2d30ed1
Validity
Not Before: Jan 2 02:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0b2a4c6b5b1dc6b20d50356d67168864911089d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4f:85:12:af:20:f0:0e:c3:86:a4:9c:58:5d:
a7:ac:3b:5b:09:d5:31:c8:bc:1d:c9:f1:6d:f5:b2:
36:a5:60:45:9b:b1:4f:f1:67:79:83:c5:82:ba:10:
6a:cb:a7:2a:01:47:99:0b:88:c3:27:46:fd:5a:7f:
e2:3b:2e:c7:bb:ce:29:eb:32:e7:22:3a:aa:68:db:
bb:b5:49:de:ca:3b:37:5e:5f:2c:c4:f3:64:f3:b9:
1f:5d:08:05:85:46:0b:df:d4:37:33:f6:70:83:98:
15:7b:af:fa:74:46:8a:16:0d:95:f5:a1:6b:6a:2b:
a2:7d:a9:6d:a0:06:5a:a2:e7:ae:89:b5:20:0b:8c:
cd:2e:40:b6:59:7e:45:9d:a7:8e:27:66:3d:59:15:
95:6d:08:98:69:48:9e:13:a1:d3:65:3b:83:ae:21:
04:29:29:41:b6:40:c0:ef:72:e6:7d:6a:4e:ad:8d:
ed:88:7b:06:3d:10:58:b8:69:51:35:d3:30:02:1d:
18:c7:d4:69:ee:e0:e6:81:65:bc:81:d9:26:60:92:
19:48:c4:59:8c:09:94:a1:47:29:3e:c4:50:42:ab:
a6:05:fd:92:39:ae:89:75:ae:ee:a9:78:ca:88:d7:
32:d0:61:52:e5:8d:14:90:e0:05:e7:ed:0a:aa:0d:
1c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B2:A4:C6:B5:B1:DC:6B:20:D5:03:56:D6:71:68:86:49:11:08:9D
X509v3 Authority Key Identifier:
keyid:8E:AC:C7:F3:B2:18:C4:92:D8:8D:BE:BC:9C:DC:B9:A2:D2:D3:0E:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jqzH87IYxJLYjb68nNy5otLTDtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/sLKkxrWx3Gsg1QNW1nFohkkRCJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bd42ea-ebb6-4445-bd20-775da6aa3123/1/jqzH87IYxJLYjb68nNy5otLTDtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.236.0/24
185.98.104.0/24
Signature Algorithm: sha256WithRSAEncryption
54:58:52:81:51:a2:4d:9a:f3:3e:f1:10:56:5e:8c:67:a9:69:
26:50:d4:67:ff:bc:12:8d:49:b2:d5:e8:f4:e0:96:f0:e9:a0:
a9:ad:d4:ef:4e:a5:7e:25:17:cf:c7:f4:f1:b4:11:90:27:e4:
ea:13:c6:5d:05:f7:fe:07:5e:a2:f4:7a:21:a8:b3:2c:93:21:
11:0b:fc:35:ad:6f:dd:f2:2f:16:23:e8:53:34:c2:2e:a2:f8:
04:cd:ea:4e:ef:88:61:2e:c7:74:ed:24:f8:1a:2a:ab:87:09:
29:98:2c:8a:30:23:fc:57:ce:7e:03:f9:cd:ee:b0:43:9e:7a:
f4:2e:78:7a:d8:43:97:f6:cf:2b:5b:dd:2c:4f:f4:a1:df:38:
8c:92:e8:f6:5c:85:9a:10:32:96:fe:52:9a:ed:f9:da:a1:7c:
36:ae:5f:5a:ea:60:59:48:c3:28:23:d7:16:df:0d:9c:a4:0f:
2d:dc:03:1f:65:0a:95:47:49:f7:bd:30:82:9a:55:49:b8:16:
6c:0c:4b:19:f2:bc:c1:a8:38:8a:dc:59:1a:61:56:d6:54:c6:
91:6e:a4:c6:2d:af:bd:72:a3:95:bb:10:26:9a:34:7b:7e:71:
ad:17:e3:8a:13:05:f4:3d:30:08:2a:c0:de:e5:0f:ee:a2:e0:
df:26:d4:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:28:04 2024 by rpki-client on console-fra.rpki-client.org