Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/JcSlolzDnDAw14D_x3HZfugGijk.roa
File: JcSlolzDnDAw14D_x3HZfugGijk.roa (raw, json)
Hash identifier: Z6Cv53qA0QZFsYTSysrlYnk9rmHC3fW7tibJKN2kKvc=
Subject key identifier: 25:C4:A5:A2:5C:C3:9C:30:30:D7:80:FF:C7:71:D9:7E:E8:06:8A:39
Certificate issuer: /CN=66259dea3e9cae6e819588c5c913f02d4410398b
Certificate serial: 018CC94DC71617C3B082B8ADA988940E0986
Authority key identifier: 66:25:9D:EA:3E:9C:AE:6E:81:95:88:C5:C9:13:F0:2D:44:10:39:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZiWd6j6crm6BlYjFyRPwLUQQOYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/JcSlolzDnDAw14D_x3HZfugGijk.roa
Signing time: Tue 02 Jan 2024 08:32:46 +0000
ROA not before: Tue 02 Jan 2024 08:32:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41114
IP address blocks: 213.232.108.0/22 maxlen: 24
185.145.72.0/22 maxlen: 24
2a09:5180::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/ZiWd6j6crm6BlYjFyRPwLUQQOYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/ZiWd6j6crm6BlYjFyRPwLUQQOYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZiWd6j6crm6BlYjFyRPwLUQQOYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:c7:16:17:c3:b0:82:b8:ad:a9:88:94:0e:09:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66259dea3e9cae6e819588c5c913f02d4410398b
Validity
Not Before: Jan 2 08:32:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25c4a5a25cc39c3030d780ffc771d97ee8068a39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:07:cb:c7:4b:d5:d0:78:cc:f9:9c:9e:f3:d5:
4b:35:9b:b4:d9:58:b4:e6:d3:96:68:58:46:2c:81:
ba:f9:7d:4e:6a:43:01:cf:a3:ec:2f:09:25:89:68:
62:25:66:b0:e4:a3:b5:3e:83:36:50:bc:b7:de:5b:
9c:88:29:58:1a:ec:b6:a2:f5:81:42:c0:d9:14:cc:
cc:03:12:bc:65:9a:78:ab:04:08:b1:1d:34:5c:3b:
00:76:84:af:7e:ac:82:ea:4c:c9:04:49:a1:09:85:
cd:86:02:23:c4:fb:e0:14:2b:0c:3f:fe:2c:c7:02:
57:40:b6:10:03:6f:95:78:be:ff:09:8b:55:43:36:
9a:de:3c:9c:25:29:60:10:e8:3e:91:b9:17:40:f1:
e4:f5:ec:f8:c0:ce:8a:d3:a6:8e:74:0a:c6:75:9c:
9c:bd:8a:4b:09:64:3b:90:23:de:c3:b3:13:c7:78:
93:28:aa:23:7c:a5:ea:26:15:cc:70:da:5a:12:e8:
f9:b2:38:21:2d:24:ac:83:40:38:29:61:dc:a0:04:
d6:94:67:f0:71:da:e1:37:e0:55:7f:0f:93:6d:40:
bd:d0:14:8c:44:d5:d7:a9:1f:ad:2d:a9:f7:5b:55:
50:60:9a:1c:fb:73:20:ac:6c:1d:4e:41:2f:28:74:
9b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C4:A5:A2:5C:C3:9C:30:30:D7:80:FF:C7:71:D9:7E:E8:06:8A:39
X509v3 Authority Key Identifier:
keyid:66:25:9D:EA:3E:9C:AE:6E:81:95:88:C5:C9:13:F0:2D:44:10:39:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZiWd6j6crm6BlYjFyRPwLUQQOYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/JcSlolzDnDAw14D_x3HZfugGijk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/ZiWd6j6crm6BlYjFyRPwLUQQOYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.72.0/22
213.232.108.0/22
IPv6:
2a09:5180::/29
Signature Algorithm: sha256WithRSAEncryption
44:1a:b2:17:b5:85:90:2b:45:62:98:fa:fc:ca:3b:45:86:ca:
2f:69:9d:d8:a9:b1:12:4a:fa:34:ec:f2:71:eb:7e:c0:7a:2f:
42:ff:0e:7f:1e:bb:1d:9a:74:4b:59:54:b8:2d:29:09:44:7c:
cc:cc:f7:6b:90:61:d6:02:06:0d:ec:f3:a4:a0:b5:bb:d4:52:
00:d5:4c:53:cb:ae:61:77:02:46:07:e9:d0:4e:88:ec:dc:e9:
b4:67:3a:c6:58:ff:58:e1:14:03:a2:dd:7f:16:4a:1e:6e:81:
57:a6:9d:5f:b6:45:7b:18:50:a5:5e:d6:4d:03:ca:ce:ed:4d:
bb:b4:6c:28:bd:87:7d:6d:86:ff:43:13:09:da:7a:6c:ea:54:
1d:d6:e3:cd:7f:85:a3:02:9b:32:04:5b:62:42:fc:b1:ea:b5:
04:bf:1e:9c:4c:5e:7d:b5:ee:0e:4f:3f:b7:d1:68:6b:70:a3:
d5:4b:0a:e2:24:cd:cf:ef:60:0e:4d:d1:f4:1f:9d:99:f7:1c:
4c:f3:79:fd:bb:b1:fe:de:52:b2:0c:8f:c6:f9:c6:bd:b1:84:
c7:59:41:cf:25:c5:47:aa:0e:08:63:27:1c:a3:0d:0e:3c:f4:
fa:48:ed:63:7d:1c:a0:9d:2d:e6:57:a8:79:a9:b6:8a:58:9e:
59:0e:24:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:45:39 2024 by rpki-client on console-fra.rpki-client.org