Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/HMQEuniy1F4AE8_Er8RGiwPQYzU.roa
File: HMQEuniy1F4AE8_Er8RGiwPQYzU.roa (raw, json)
Hash identifier: 5/jozbuG2jFui0avoXkZGQOv0fBs3qQl3HVPWXma764=
Subject key identifier: 1C:C4:04:BA:78:B2:D4:5E:00:13:CF:C4:AF:C4:46:8B:03:D0:63:35
Certificate issuer: /CN=fe29bd8bb49a80996b460f5028ed52a8e057c0b1
Certificate serial: 018CCA2A188F7A814BBB4451D42379C7CC78
Authority key identifier: FE:29:BD:8B:B4:9A:80:99:6B:46:0F:50:28:ED:52:A8:E0:57:C0:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_im9i7SagJlrRg9QKO1SqOBXwLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/HMQEuniy1F4AE8_Er8RGiwPQYzU.roa
Signing time: Tue 02 Jan 2024 12:33:25 +0000
ROA not before: Tue 02 Jan 2024 12:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34554
IP address blocks: 185.196.128.0/22 maxlen: 22
80.75.112.0/20 maxlen: 20
2a01:6a8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/_im9i7SagJlrRg9QKO1SqOBXwLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/_im9i7SagJlrRg9QKO1SqOBXwLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_im9i7SagJlrRg9QKO1SqOBXwLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:18:8f:7a:81:4b:bb:44:51:d4:23:79:c7:cc:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe29bd8bb49a80996b460f5028ed52a8e057c0b1
Validity
Not Before: Jan 2 12:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1cc404ba78b2d45e0013cfc4afc4468b03d06335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e5:93:7c:3a:03:af:0c:e6:29:f6:b3:59:ef:
2c:8c:80:6d:96:4d:e0:7b:ea:a1:ef:ed:4f:65:2d:
00:09:20:98:4d:f4:89:61:83:c5:69:f5:c1:b6:1a:
ad:67:0a:e4:ec:f0:1e:9e:b8:e8:a2:0b:89:83:c6:
83:cf:8c:09:87:9f:97:39:72:6e:5e:1f:8a:a8:52:
43:9a:7d:48:f0:48:97:b1:9a:12:7c:6f:96:c0:ad:
60:e3:88:07:a8:f2:6b:c9:c4:b0:af:65:fe:ea:d4:
6d:e5:2d:9b:a8:fa:35:ab:85:9e:5e:34:30:70:1a:
4c:5e:ca:47:61:4f:25:be:a0:98:fd:58:15:06:d4:
d7:01:c3:10:ae:09:f6:92:fa:33:dc:ce:20:dd:0f:
ee:6b:16:13:0b:60:99:dc:35:50:6b:11:1a:40:df:
a2:bc:ce:6c:ce:c1:6b:c5:e9:55:55:c1:c0:1b:95:
94:e9:45:a7:36:f2:bb:9b:b7:6c:7f:26:5c:c4:41:
76:33:49:bf:51:c2:98:4c:9a:31:09:5b:12:26:29:
14:8d:4e:c4:7d:68:57:1e:fa:52:5d:c8:e2:9c:3e:
f0:83:69:79:b6:b5:06:9d:4b:e5:5d:ea:b5:c9:a8:
c1:11:34:3f:74:3b:c4:b2:34:d1:a6:e6:c4:74:9a:
d8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C4:04:BA:78:B2:D4:5E:00:13:CF:C4:AF:C4:46:8B:03:D0:63:35
X509v3 Authority Key Identifier:
keyid:FE:29:BD:8B:B4:9A:80:99:6B:46:0F:50:28:ED:52:A8:E0:57:C0:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_im9i7SagJlrRg9QKO1SqOBXwLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/HMQEuniy1F4AE8_Er8RGiwPQYzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6f4230-05e6-4c00-a4ab-06b8dfe498bd/1/_im9i7SagJlrRg9QKO1SqOBXwLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.112.0/20
185.196.128.0/22
IPv6:
2a01:6a8::/32
Signature Algorithm: sha256WithRSAEncryption
14:ce:e7:88:ce:6b:37:ff:2e:30:0d:7a:f8:2f:5b:e1:c0:7c:
d8:d8:7d:f7:f3:c1:77:41:06:5c:03:c4:4e:e8:76:91:e0:4c:
c7:5a:76:f4:f7:4e:39:6a:5a:44:9d:c4:39:2e:7b:6a:87:6a:
a2:fa:a0:45:15:18:a7:77:3a:40:43:5a:d1:d9:ac:85:b1:fe:
13:34:16:43:d7:cb:b0:38:4b:a0:06:67:4a:29:b9:a3:f4:cd:
88:a8:69:81:67:e2:2f:bc:bd:9a:4d:c3:6f:f3:60:ae:42:e3:
79:83:9c:c5:84:aa:2f:4e:f3:1f:8f:30:27:94:51:a2:2d:18:
d1:a7:43:0a:de:41:05:5d:3d:21:55:c6:0e:02:c2:67:28:85:
73:e7:3d:21:85:74:c4:88:3a:b5:cd:ce:fb:5d:50:f3:a6:dd:
4c:c6:06:db:30:a1:90:6e:8b:4c:eb:f0:e1:de:e3:71:39:aa:
86:54:de:7e:ad:bb:ea:8d:fa:de:24:dd:5b:19:08:d6:9b:62:
aa:49:49:c2:3d:ec:3b:bc:1d:b7:e3:58:04:ed:91:5e:cf:49:
29:34:8d:5c:d8:35:47:d8:8c:98:7c:9e:2c:bf:01:6d:62:2e:
2a:73:76:8e:3a:c7:7e:85:11:a4:99:77:21:89:bd:c4:f6:e0:
d8:b3:39:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:55:04 2024 by rpki-client on console-fra.rpki-client.org