Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/EdL-aJNOJbQIHciZWNMPAaZ1IbE.roa
File: EdL-aJNOJbQIHciZWNMPAaZ1IbE.roa (raw, json)
Hash identifier: W7OIEjLI7q1SFKnVrT16qLEYxoocxuofjXNKsU/sdBI=
Subject key identifier: 11:D2:FE:68:93:4E:25:B4:08:1D:C8:99:58:D3:0F:01:A6:75:21:B1
Certificate issuer: /CN=e2e8f56bc1f5010291681bc2d8c02f9acbf714a0
Certificate serial: 018CCA9924398F0C601DEDAF71A205496F38
Authority key identifier: E2:E8:F5:6B:C1:F5:01:02:91:68:1B:C2:D8:C0:2F:9A:CB:F7:14:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4uj1a8H1AQKRaBvC2MAvmsv3FKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/EdL-aJNOJbQIHciZWNMPAaZ1IbE.roa
Signing time: Tue 02 Jan 2024 14:34:43 +0000
ROA not before: Tue 02 Jan 2024 14:34:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12618
IP address blocks: 89.191.144.0/20 maxlen: 23
46.239.144.0/20 maxlen: 20
94.141.128.0/19 maxlen: 19
46.238.248.0/21 maxlen: 21
212.122.216.0/22 maxlen: 22
212.122.220.0/22 maxlen: 22
46.238.192.0/19 maxlen: 19
46.239.160.0/19 maxlen: 19
46.238.224.0/22 maxlen: 22
46.238.232.0/24 maxlen: 24
46.238.228.0/22 maxlen: 22
46.238.239.0/24 maxlen: 24
46.238.234.0/23 maxlen: 23
2001:90e::/32 maxlen: 32
2001:90c::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/4uj1a8H1AQKRaBvC2MAvmsv3FKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/4uj1a8H1AQKRaBvC2MAvmsv3FKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4uj1a8H1AQKRaBvC2MAvmsv3FKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:24:39:8f:0c:60:1d:ed:af:71:a2:05:49:6f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2e8f56bc1f5010291681bc2d8c02f9acbf714a0
Validity
Not Before: Jan 2 14:34:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11d2fe68934e25b4081dc89958d30f01a67521b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:8c:13:a2:59:6a:bc:fd:7d:ea:3b:ec:b9:
8c:7a:b2:89:18:93:dc:1b:83:8d:25:e7:fe:7c:20:
0a:c4:3e:91:0e:89:71:43:18:b4:42:25:15:f7:2f:
fc:94:ae:5a:9f:cd:1e:f4:ba:d3:41:dd:5d:ec:07:
c5:c3:83:74:b1:16:be:78:bf:ab:03:9c:36:1e:cd:
5a:eb:1b:bd:59:8b:c2:32:5d:16:4f:f7:54:bd:a9:
1b:1c:9b:42:f2:a6:e6:d0:f9:0b:99:59:1b:49:24:
26:fe:52:cb:5a:ff:24:30:0b:72:f1:af:b1:85:ed:
90:74:8e:d3:d8:fd:17:08:fd:4e:9f:72:d4:cd:9f:
dc:16:02:1d:24:0b:84:a8:69:6f:81:0b:92:04:e5:
fd:41:9e:ee:d7:cd:4f:00:6d:ab:8f:c7:19:c8:1d:
78:6b:d9:57:0d:3d:ba:25:fa:92:01:82:dc:fb:4b:
e8:49:e0:b1:b3:e6:07:ef:78:b3:ed:2d:ab:66:12:
3f:9e:dd:4e:f0:0d:91:2b:b4:81:b2:38:43:97:62:
df:3b:a1:5f:93:bb:07:7d:ac:72:f3:dc:c5:7e:d1:
4d:a0:b7:ea:c3:b9:f5:18:e0:31:12:24:58:9f:f2:
0a:d1:0d:91:69:98:4a:ea:fc:8a:3e:02:0e:1a:fe:
76:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D2:FE:68:93:4E:25:B4:08:1D:C8:99:58:D3:0F:01:A6:75:21:B1
X509v3 Authority Key Identifier:
keyid:E2:E8:F5:6B:C1:F5:01:02:91:68:1B:C2:D8:C0:2F:9A:CB:F7:14:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4uj1a8H1AQKRaBvC2MAvmsv3FKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/EdL-aJNOJbQIHciZWNMPAaZ1IbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/4uj1a8H1AQKRaBvC2MAvmsv3FKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.238.192.0-46.238.232.255
46.238.234.0/23
46.238.239.0/24
46.238.248.0/21
46.239.144.0-46.239.191.255
89.191.144.0/20
94.141.128.0/19
212.122.216.0/21
IPv6:
2001:90c::-2001:90e:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9e:28:f6:70:b8:1f:e3:15:c6:bd:c8:88:be:3b:a6:52:dc:34:
3d:41:50:b5:60:f2:59:d4:45:aa:42:3f:00:2d:11:b9:2c:26:
b1:40:ae:e2:b1:30:ae:0b:9b:79:35:78:56:08:a6:df:6d:bb:
e4:84:7d:2a:05:53:42:97:c9:a2:69:1b:e5:6a:23:ce:3b:a5:
ae:c4:8f:10:b5:e3:92:24:9f:ec:04:91:49:96:d4:bd:2b:d6:
16:5e:63:d9:92:ae:32:8c:80:2d:ab:5c:00:c1:cd:60:e0:14:
1e:84:40:bd:b9:02:24:ab:f2:a2:2b:51:6e:31:31:97:76:da:
ad:5a:2b:60:1f:6b:70:08:c8:d9:4a:2c:44:78:05:17:95:1a:
43:fc:29:7e:4c:9c:ea:a0:da:f7:a6:bb:ed:f5:35:97:ba:a8:
4e:34:63:b3:6c:83:4b:cd:70:1a:e6:88:d1:b9:0a:41:00:67:
41:bf:4b:54:67:5a:74:79:8f:89:d0:38:10:94:29:b8:66:f0:
10:e7:c6:b8:4d:74:d6:88:1e:0c:3b:9d:37:82:a4:df:c2:06:
89:59:6b:82:a6:d0:05:75:dc:76:2f:16:1f:c5:46:df:c2:79:
19:17:08:f6:a1:58:45:e8:d7:73:35:2d:15:7b:34:59:aa:9f:
68:bf:5c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 06:41:01 2024 by rpki-client on console-fra.rpki-client.org