Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/4toPOX1OEUGdtE_kM-UB48fhE7U.roa
File: 4toPOX1OEUGdtE_kM-UB48fhE7U.roa (raw, json)
Hash identifier: tr7akRSA7iZ6+ntuIRw9ltthDbTkPTraOvorVI6aJuI=
Subject key identifier: E2:DA:0F:39:7D:4E:11:41:9D:B4:4F:E4:33:E5:01:E3:C7:E1:13:B5
Certificate issuer: /CN=e8477159d65b22568098b95952487300771b3ce5
Certificate serial: 018CC8DEE7FAAF5793E475C207939A4A9D65
Authority key identifier: E8:47:71:59:D6:5B:22:56:80:98:B9:59:52:48:73:00:77:1B:3C:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6EdxWdZbIlaAmLlZUkhzAHcbPOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/4toPOX1OEUGdtE_kM-UB48fhE7U.roa
Signing time: Tue 02 Jan 2024 06:31:40 +0000
ROA not before: Tue 02 Jan 2024 06:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208171
IP address blocks: 185.224.30.0/24 maxlen: 24
2a12:8d40:1024::/48 maxlen: 48
2a12:8d40:2022::/48 maxlen: 48
2a12:8d40:4096::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/6EdxWdZbIlaAmLlZUkhzAHcbPOU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/6EdxWdZbIlaAmLlZUkhzAHcbPOU.mft
rsync://rpki.ripe.net/repository/DEFAULT/6EdxWdZbIlaAmLlZUkhzAHcbPOU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:e7:fa:af:57:93:e4:75:c2:07:93:9a:4a:9d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8477159d65b22568098b95952487300771b3ce5
Validity
Not Before: Jan 2 06:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2da0f397d4e11419db44fe433e501e3c7e113b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:a4:a8:b5:91:d1:9d:e7:29:dc:a0:63:f5:
19:15:90:c0:9d:6a:db:f7:91:b2:ef:a3:f6:80:58:
04:5c:fd:79:20:96:31:4b:d3:40:e7:d6:09:14:fb:
d3:52:4f:14:6b:8c:45:d5:b6:74:a2:f6:13:61:e0:
9c:00:64:64:ff:44:12:e3:e8:cd:da:f6:3a:aa:99:
cb:71:d1:0b:09:df:85:92:1d:7b:6f:8c:fc:66:f3:
34:35:2b:62:27:5f:78:58:c7:57:22:f2:82:5a:79:
95:47:b8:b6:c5:13:8c:db:a4:2e:a9:6e:59:0c:3d:
24:5e:a2:e6:41:5f:30:8a:66:52:f3:f4:bd:72:3c:
ed:a2:60:80:b0:61:3a:aa:14:d3:cc:ed:ed:ff:96:
fb:ef:90:0b:5e:a8:57:8d:a1:00:d8:0d:36:96:86:
a1:da:c6:e2:84:f3:0c:44:4f:67:79:95:0f:d6:ae:
ad:aa:ab:0b:97:c2:ad:87:ca:49:ba:64:f3:00:2f:
b8:43:fa:de:81:e5:01:5c:6c:4c:bb:d4:aa:72:b3:
95:ae:a6:d6:09:bf:03:45:a8:93:59:8d:55:a5:5c:
30:a4:00:b6:f7:28:9a:0e:8b:82:7a:99:48:85:aa:
9b:45:24:39:a0:83:18:fe:82:fd:86:35:b0:d4:7c:
1d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DA:0F:39:7D:4E:11:41:9D:B4:4F:E4:33:E5:01:E3:C7:E1:13:B5
X509v3 Authority Key Identifier:
keyid:E8:47:71:59:D6:5B:22:56:80:98:B9:59:52:48:73:00:77:1B:3C:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6EdxWdZbIlaAmLlZUkhzAHcbPOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/4toPOX1OEUGdtE_kM-UB48fhE7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/eb0792-843a-46b6-b0da-f468b8c4651a/1/6EdxWdZbIlaAmLlZUkhzAHcbPOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.30.0/24
IPv6:
2a12:8d40:1024::/48
2a12:8d40:2022::/48
2a12:8d40:4096::/48
Signature Algorithm: sha256WithRSAEncryption
a9:cc:e6:db:cb:50:a9:f9:31:2f:5c:dc:d7:6d:16:e0:d6:a1:
4b:c9:e7:e3:53:13:15:d4:a1:89:b6:9e:8d:a3:9c:f2:8d:93:
45:a5:24:87:94:67:97:15:10:ef:d8:b6:15:af:ce:e2:c6:67:
9d:d2:06:9c:b8:9b:ed:b7:ed:b5:96:e8:8d:81:73:82:6c:7f:
0f:21:7e:88:48:3a:70:15:7c:78:3f:5c:05:e2:b5:d2:92:36:
09:f7:98:0b:96:0c:0d:f3:57:03:0b:6d:ae:5c:3c:6c:b4:03:
2c:27:e1:a9:3f:d1:94:19:7d:d2:1a:d0:d9:97:1e:01:4c:25:
72:ca:be:17:d6:19:ea:dd:bd:37:1a:bf:d2:9e:0d:2e:90:7b:
b8:a8:d6:36:a8:32:da:87:e7:27:09:fd:35:b0:3d:9c:d9:20:
d9:be:4e:26:83:29:ac:09:b5:4c:5d:f1:5e:df:df:4c:b0:16:
3b:7e:b3:0e:ca:1e:ec:8e:5c:a1:b6:fc:b0:d6:a8:47:98:bd:
fe:df:f1:d5:da:1d:9c:b6:12:d3:eb:53:80:c7:4a:61:39:a3:
aa:b2:10:b2:2b:bd:dc:2f:c5:a5:6e:d4:71:43:9b:a4:f3:40:
73:84:ee:c6:1c:71:ae:03:d7:ca:27:f1:18:94:bd:d0:84:2a:
db:fe:ba:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 17:32:28 2024 by rpki-client on console-fra.rpki-client.org