Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/LMMZjEog_tQosdiOx9qDUPZ7h2c.roa
File: LMMZjEog_tQosdiOx9qDUPZ7h2c.roa (raw, json)
Hash identifier: ejhewZ8y56OliUtcQtMRcOocpkTmo7inlBUwDmC0qfM=
Subject key identifier: 2C:C3:19:8C:4A:20:FE:D4:28:B1:D8:8E:C7:DA:83:50:F6:7B:87:67
Certificate issuer: /CN=11c971ff0d25f2034c05ab2958a86f732bc67734
Certificate serial: 01942444D37F0A237190D1F34E1A51D153F2
Authority key identifier: 11:C9:71:FF:0D:25:F2:03:4C:05:AB:29:58:A8:6F:73:2B:C6:77:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eclx_w0l8gNMBaspWKhvcyvGdzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/LMMZjEog_tQosdiOx9qDUPZ7h2c.roa
Signing time: Wed 01 Jan 2025 23:47:57 +0000
ROA not before: Wed 01 Jan 2025 23:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202040
IP address blocks: 185.54.76.0/22 maxlen: 22
193.141.27.0/24 maxlen: 24
2a04:d140::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/Eclx_w0l8gNMBaspWKhvcyvGdzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/Eclx_w0l8gNMBaspWKhvcyvGdzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Eclx_w0l8gNMBaspWKhvcyvGdzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Feb 2025 05:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:d3:7f:0a:23:71:90:d1:f3:4e:1a:51:d1:53:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11c971ff0d25f2034c05ab2958a86f732bc67734
Validity
Not Before: Jan 1 23:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cc3198c4a20fed428b1d88ec7da8350f67b8767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:92:85:45:b3:08:73:0e:9c:61:6c:35:3c:36:
be:e0:51:92:ae:9e:2c:23:91:e7:3e:38:2f:e1:f8:
c6:4f:8e:cf:99:46:1a:7e:f7:82:1e:8f:4b:fa:61:
b0:23:be:e6:0a:dc:cd:8f:2a:cb:c9:08:c8:83:0a:
44:cc:bd:ec:80:1a:f0:fa:52:ac:54:93:7e:b2:2d:
d9:cb:c1:ed:b9:76:aa:62:37:40:01:90:aa:96:d7:
fa:e9:34:42:0d:23:f7:e9:ac:79:b7:d5:f1:a5:f6:
61:b9:0a:82:9a:bb:b9:39:44:a1:69:23:cf:d3:2c:
63:a1:af:31:82:32:0e:66:39:ff:18:5b:02:99:3d:
55:92:fa:4c:1e:99:e1:24:c9:68:b1:ae:2b:57:83:
d6:4f:eb:3d:cb:03:81:cf:3d:bb:49:ac:73:a4:5f:
b9:68:65:c6:55:f4:82:33:6e:5a:81:cb:65:47:c0:
c5:7d:19:f5:ad:cd:73:ac:2e:de:72:50:14:a7:18:
4e:35:be:84:6e:bb:4c:a7:c3:e6:b2:0f:a5:2d:8c:
f9:c1:28:84:ad:85:d6:8f:cc:f2:b0:c7:20:d6:91:
45:89:14:50:8c:fc:9d:4d:57:63:c5:df:01:6a:a8:
79:3c:21:47:bf:2b:2c:98:b5:c6:d4:6a:fd:20:12:
5b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C3:19:8C:4A:20:FE:D4:28:B1:D8:8E:C7:DA:83:50:F6:7B:87:67
X509v3 Authority Key Identifier:
keyid:11:C9:71:FF:0D:25:F2:03:4C:05:AB:29:58:A8:6F:73:2B:C6:77:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eclx_w0l8gNMBaspWKhvcyvGdzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/LMMZjEog_tQosdiOx9qDUPZ7h2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a19d02-002a-4cb7-afbb-ef2d7a23f609/1/Eclx_w0l8gNMBaspWKhvcyvGdzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.76.0/22
193.141.27.0/24
IPv6:
2a04:d140::/29
Signature Algorithm: sha256WithRSAEncryption
b3:0f:9b:fb:ad:0b:fb:7a:4d:fa:a6:3c:6c:26:f0:1a:51:53:
a1:95:fc:eb:16:d0:66:96:e8:ff:82:08:e3:5e:a6:49:e7:27:
0d:4c:41:f4:1c:01:04:01:25:c5:74:7a:81:0c:0d:e7:ed:e6:
2f:a0:b6:f0:a2:38:8c:44:37:12:8b:b2:16:71:53:86:d5:f1:
a4:17:d3:56:81:ad:4a:df:b7:cb:aa:45:fc:1e:00:d8:04:60:
cc:0c:07:15:42:6f:81:42:57:54:f0:68:c8:4f:fa:ac:ef:1a:
17:61:0c:b2:eb:01:b2:78:bc:14:5d:67:fa:49:d9:e6:ef:0f:
49:e7:a0:ce:50:9d:b5:b0:b9:34:16:fd:9b:ed:3a:73:7b:0c:
74:06:3c:1a:82:57:30:ba:c8:cd:19:7b:c9:b4:20:9c:10:e8:
7f:a6:22:63:95:56:bc:16:46:dd:9f:82:f3:66:d4:73:da:47:
d3:bc:5a:ca:b8:77:a2:de:04:97:54:ef:c6:8b:87:0b:a5:13:
9e:4c:f3:eb:cf:aa:33:2c:c0:34:27:43:86:7a:f9:52:ee:11:
cd:80:9b:54:21:15:ca:69:11:d4:0b:56:db:04:41:da:67:59:
05:ad:a5:19:7c:53:33:04:d6:aa:69:49:bd:ad:4a:24:d7:84:
da:40:e6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:04:16 2025 by rpki-client