Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/EV5KG6K1U-F-jSFmzhCqsZ-y5Cc.roa
File: EV5KG6K1U-F-jSFmzhCqsZ-y5Cc.roa (raw, json)
Hash identifier: NLs+cLzJSNhG9CW1u168QxxuaZvp4vO4vAEPzuLPWBI=
Subject key identifier: 11:5E:4A:1B:A2:B5:53:E1:7E:8D:21:66:CE:10:AA:B1:9F:B2:E4:27
Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Certificate serial: 018E55D1045AB68D546DC89400031154F08B
Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/EV5KG6K1U-F-jSFmzhCqsZ-y5Cc.roa
Signing time: Tue 19 Mar 2024 08:25:45 +0000
ROA not before: Tue 19 Mar 2024 08:25:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34587
IP address blocks: 5.226.176.0/21 maxlen: 24
81.94.208.0/20 maxlen: 24
81.94.213.0/24 maxlen: 24
81.94.214.0/24 maxlen: 24
178.237.160.0/23 maxlen: 24
178.237.163.0/24 maxlen: 24
178.237.164.0/24 maxlen: 24
178.237.165.0/24 maxlen: 24
178.237.170.0/24 maxlen: 24
178.237.173.0/24 maxlen: 24
178.237.174.0/24 maxlen: 24
178.237.175.0/24 maxlen: 24
2a03:a860:10::/44 maxlen: 48
2a03:a860:a00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:d1:04:5a:b6:8d:54:6d:c8:94:00:03:11:54:f0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Validity
Not Before: Mar 19 08:25:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=115e4a1ba2b553e17e8d2166ce10aab19fb2e427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e0:91:38:13:81:18:67:61:e5:a2:03:28:c2:
2f:6b:15:df:1a:bd:14:ca:00:db:9e:15:17:a6:ca:
28:a3:69:3c:7e:bb:92:c6:f5:08:66:5e:af:09:23:
3a:d3:e8:f3:73:e5:db:4f:fa:f7:be:de:1a:cc:05:
1e:d6:0e:8e:e9:dd:d8:39:e0:e6:2d:a4:8f:6b:ef:
05:57:4c:6a:86:9b:3a:e4:a5:8f:03:02:b9:ed:ce:
76:74:52:27:de:65:4d:b9:ec:89:e2:a1:ff:9b:5e:
b5:85:85:2b:fb:f9:2c:f4:10:19:2b:15:fe:bc:7a:
a2:ed:bf:dd:7b:28:41:d1:ac:66:1d:41:7b:40:08:
89:29:eb:af:5b:0d:1a:2d:b6:de:ba:29:b5:6e:4c:
d7:f8:6c:63:3c:52:3c:47:2e:48:cb:23:ae:05:a0:
a1:a9:72:91:1a:59:20:40:67:99:c2:bb:00:d1:5d:
84:3a:74:1d:5e:f7:2f:61:45:9d:bf:4c:67:85:25:
87:b4:05:80:5c:cb:c1:df:d7:f7:d4:c3:c6:82:2a:
3e:be:f3:26:02:be:63:bf:f2:67:a1:15:db:0e:29:
5e:0d:11:0a:47:e4:de:14:47:61:dd:b6:46:b4:69:
ee:bd:95:37:64:63:18:27:52:d2:72:c1:51:52:84:
f8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5E:4A:1B:A2:B5:53:E1:7E:8D:21:66:CE:10:AA:B1:9F:B2:E4:27
X509v3 Authority Key Identifier:
keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/EV5KG6K1U-F-jSFmzhCqsZ-y5Cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.176.0/21
81.94.208.0/20
178.237.160.0/23
178.237.163.0-178.237.165.255
178.237.170.0/24
178.237.173.0-178.237.175.255
IPv6:
2a03:a860:10::/44
2a03:a860:a00::/40
Signature Algorithm: sha256WithRSAEncryption
64:29:37:e8:2a:3a:9a:94:6b:e0:0f:8a:09:a6:2a:00:c3:c5:
3d:04:d1:5c:98:ad:5e:7e:ac:42:f8:65:60:a3:aa:5b:6b:fb:
7f:c0:af:c8:28:cd:aa:95:9c:69:30:1e:08:8c:8c:0f:21:1e:
de:76:9f:55:55:61:7c:05:55:57:8b:b2:fa:61:72:c4:d1:a4:
b6:99:75:cb:8b:de:41:ca:65:21:9b:5a:3b:a7:66:68:63:ff:
8c:16:94:d4:3a:b8:59:7f:23:90:1c:af:45:d1:1d:d8:9e:5d:
44:c7:a2:cb:75:18:6d:b3:36:f9:8b:07:61:21:66:fb:69:76:
0a:78:79:ae:df:78:b8:2f:d5:83:25:90:c6:84:ac:99:79:37:
e3:32:18:cb:1a:c9:5e:8d:c4:24:20:87:af:b8:52:7c:a9:8a:
68:80:25:35:8c:95:65:09:f1:db:40:15:bf:06:45:25:4a:d1:
8d:f6:6a:47:5e:1a:89:7f:c3:3f:60:f9:f1:73:61:d6:09:a7:
96:83:80:9f:db:32:6a:9e:38:48:49:c5:95:17:b4:9a:1c:2b:
61:dc:cb:27:38:24:ca:4d:da:31:77:07:8b:87:56:96:fc:d7:
92:51:95:09:fb:a8:05:d3:b5:ee:7a:58:93:71:10:08:fb:32:
3d:26:2d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 00:13:02 2024 by rpki-client on console-fra.rpki-client.org