Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/E4w6BBck7PoMdg7QpegnA0SylUw.roa
File: E4w6BBck7PoMdg7QpegnA0SylUw.roa (raw, json)
Hash identifier: ZKnV+1bm3g2iMVYY5ZOHfo2zonJylqunZ4o7Cyv19to=
Subject key identifier: 13:8C:3A:04:17:24:EC:FA:0C:76:0E:D0:A5:E8:27:03:44:B2:95:4C
Certificate issuer: /CN=78e7ba8c08853be554c594ded156a6983eba1055
Certificate serial: 018CC86F2DFED71B78BC28CBFD28F5D1218E
Authority key identifier: 78:E7:BA:8C:08:85:3B:E5:54:C5:94:DE:D1:56:A6:98:3E:BA:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eOe6jAiFO-VUxZTe0VammD66EFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/E4w6BBck7PoMdg7QpegnA0SylUw.roa
Signing time: Tue 02 Jan 2024 04:29:38 +0000
ROA not before: Tue 02 Jan 2024 04:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48479
IP address blocks: 151.252.111.0/24 maxlen: 24
151.252.110.0/24 maxlen: 24
151.252.109.0/24 maxlen: 24
151.252.108.0/24 maxlen: 24
151.252.107.0/24 maxlen: 24
151.252.106.0/24 maxlen: 24
185.52.31.0/24 maxlen: 24
185.52.30.0/24 maxlen: 24
185.52.29.0/24 maxlen: 24
185.52.28.0/24 maxlen: 24
151.252.104.0/21 maxlen: 21
151.252.105.0/24 maxlen: 24
151.252.104.0/24 maxlen: 24
46.18.202.0/24 maxlen: 24
46.18.200.0/24 maxlen: 24
46.18.200.0/21 maxlen: 21
46.18.203.0/24 maxlen: 24
46.18.201.0/24 maxlen: 24
46.18.206.0/24 maxlen: 24
46.18.205.0/24 maxlen: 24
46.18.204.0/23 maxlen: 23
46.18.204.0/24 maxlen: 24
46.18.207.0/24 maxlen: 24
185.52.77.0/24 maxlen: 24
185.52.76.0/24 maxlen: 24
185.52.78.0/24 maxlen: 24
185.52.79.0/24 maxlen: 24
2a03:aa80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/eOe6jAiFO-VUxZTe0VammD66EFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/eOe6jAiFO-VUxZTe0VammD66EFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/eOe6jAiFO-VUxZTe0VammD66EFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 May 2024 07:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:2d:fe:d7:1b:78:bc:28:cb:fd:28:f5:d1:21:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78e7ba8c08853be554c594ded156a6983eba1055
Validity
Not Before: Jan 2 04:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=138c3a041724ecfa0c760ed0a5e8270344b2954c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4a:2c:31:ff:d7:35:3c:0f:7a:d0:45:c2:2e:
b4:96:be:8c:fd:ff:90:c4:a8:07:18:2a:8a:b0:6d:
88:ad:44:51:24:79:e7:f1:cd:fe:52:c2:27:69:38:
ec:31:83:17:21:91:92:d6:43:74:77:78:fb:1e:26:
ba:cf:24:ee:c9:32:b3:cb:81:32:af:04:f5:94:9f:
5e:a0:3a:6a:a2:63:1c:c1:41:4d:9e:97:3d:3a:ed:
6b:82:35:af:d3:f0:b9:6f:a7:d2:3a:d3:d1:80:69:
d2:95:2e:0c:4a:25:41:c7:92:70:11:00:1d:de:a8:
03:66:6d:e2:71:dd:4a:ee:df:93:2d:33:8e:61:64:
4f:63:86:d0:02:c2:5e:8b:58:3e:59:a7:47:ae:5f:
18:b4:6d:f5:75:39:04:29:f9:d1:38:00:ca:b6:09:
90:1c:e6:19:45:9f:7d:b0:be:07:fa:33:f4:9e:ec:
fc:7b:44:ea:85:a4:e3:3f:ee:e4:0f:d7:7a:a0:5e:
dc:c4:be:33:5e:5b:ba:32:79:99:25:41:7a:8d:a8:
8b:69:46:9e:7c:40:e1:9a:ae:94:1f:f5:e3:8f:a0:
32:df:84:f7:04:ff:85:c0:9f:83:7d:46:c1:30:88:
43:cf:93:50:98:0e:6e:09:3d:37:ff:63:63:6f:21:
d5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8C:3A:04:17:24:EC:FA:0C:76:0E:D0:A5:E8:27:03:44:B2:95:4C
X509v3 Authority Key Identifier:
keyid:78:E7:BA:8C:08:85:3B:E5:54:C5:94:DE:D1:56:A6:98:3E:BA:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eOe6jAiFO-VUxZTe0VammD66EFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/E4w6BBck7PoMdg7QpegnA0SylUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/eOe6jAiFO-VUxZTe0VammD66EFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.200.0/21
151.252.104.0/21
185.52.28.0/22
185.52.76.0/22
IPv6:
2a03:aa80::/32
Signature Algorithm: sha256WithRSAEncryption
75:6e:ce:d2:ea:d4:21:69:d9:6e:74:68:00:f1:aa:27:4d:68:
db:1a:d4:b5:6f:ae:0c:48:ec:01:2d:6d:59:4c:81:60:7f:df:
3b:2d:15:42:60:3b:ca:c8:8b:d1:95:28:3f:22:74:c0:2d:f9:
14:79:96:03:fa:f8:dd:b7:3f:79:67:6e:2c:cf:a7:8e:bd:e0:
05:ab:f6:5b:82:a3:cb:35:3c:3c:8a:1e:b9:42:0e:55:85:56:
58:d6:17:77:cb:f8:11:02:d3:18:14:39:ac:69:1c:27:44:fd:
36:87:3c:84:78:8f:3a:72:86:dc:eb:b7:66:a3:b1:4d:dc:1d:
91:5e:aa:54:75:6f:3b:c0:02:ab:f3:f4:60:06:25:16:90:99:
46:d4:98:89:25:4f:71:67:41:1a:f0:a5:d4:31:11:24:77:b0:
0b:bb:6f:ca:35:e5:f5:46:1d:c4:bd:ed:1e:a4:29:71:4e:52:
59:60:45:c6:0d:91:42:fb:49:67:10:b5:b5:53:34:b9:2f:ef:
71:19:0f:f7:bc:00:4d:1d:f2:0a:e3:a3:63:08:60:21:3f:8d:
7c:88:ee:61:15:63:36:fd:96:c1:6c:47:5f:cf:44:c0:24:4c:
61:72:01:2f:f0:92:3a:d2:c6:14:a8:d8:b4:28:61:f8:1b:7f:
ec:16:98:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 09:29:31 2024 by rpki-client on console-fra.rpki-client.org