Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/EoKTuzMfXMdLbdYlE5peoqq_aBY.roa
File: EoKTuzMfXMdLbdYlE5peoqq_aBY.roa (raw, json)
Hash identifier: 2WR2HoTy2dtqG5vdTvpfMnWWPz7mUQteY+6iD3sCamo=
Subject key identifier: 12:82:93:BB:33:1F:5C:C7:4B:6D:D6:25:13:9A:5E:A2:AA:BF:68:16
Certificate issuer: /CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d
Certificate serial: 0190329CCA5F3E15A3FD7D9FF01463213146
Authority key identifier: C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/EoKTuzMfXMdLbdYlE5peoqq_aBY.roa
Signing time: Wed 19 Jun 2024 22:27:34 +0000
ROA not before: Wed 19 Jun 2024 22:27:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59645
IP address blocks: 193.104.168.0/24 maxlen: 24
195.191.196.0/23 maxlen: 24
2a06:d1c0::/29 maxlen: 29
2a06:d1c0:a761::/48 maxlen: 48
2a06:d1c0:deac::/48 maxlen: 48
2a06:d1c0:dead::/48 maxlen: 48
2a06:d1c0:deae::/48 maxlen: 48
2a06:d1c0:f761::/48 maxlen: 48
2a06:d1c1::/32 maxlen: 48
2a06:d1c1:a::/48 maxlen: 48
2a06:d1c1:e::/48 maxlen: 48
2a06:d1c1:30::/44 maxlen: 48
2a06:d1c2::/36 maxlen: 48
2a06:d1c7::/48 maxlen: 48
2a06:d1c7:a::/48 maxlen: 48
2a06:d1c7:b::/48 maxlen: 48
2a06:d1c7:d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.mft
rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:32:9c:ca:5f:3e:15:a3:fd:7d:9f:f0:14:63:21:31:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d
Validity
Not Before: Jun 19 22:27:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=128293bb331f5cc74b6dd625139a5ea2aabf6816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b9:5c:6d:f0:8e:56:11:6b:87:98:2b:7c:8a:
94:4a:dd:b2:d7:9f:b7:28:2c:02:7e:16:41:1c:fa:
d5:7c:e7:9e:98:20:4b:a2:88:14:2c:a1:e0:f6:3f:
f5:3d:d5:ef:13:ff:ce:ce:c4:39:14:61:bc:d9:20:
07:0d:0b:8b:9e:44:ba:d4:b7:01:9f:02:1f:25:bc:
c3:07:ed:9f:0d:46:ac:ac:75:28:b4:95:d3:1b:2b:
a8:de:5d:35:19:c0:35:6c:69:bc:c7:8e:5f:80:86:
41:67:bb:a4:b1:3b:ae:10:35:0f:0d:f3:43:ba:76:
49:e7:99:b9:cc:de:a8:17:a3:f9:4e:b7:9a:00:36:
a8:19:9b:02:c0:4e:c7:32:0e:c6:46:80:89:3b:4d:
b3:dd:28:3c:a5:d0:b7:2a:7e:af:3d:7f:22:1b:37:
d4:22:bf:9f:dd:9c:b6:ff:83:28:03:e0:54:5f:6c:
39:db:79:ae:ab:aa:8c:87:be:32:24:07:ec:12:87:
41:0a:24:5f:07:68:e3:27:08:3c:bd:75:48:4d:2e:
bc:e3:86:65:f2:ca:19:86:f5:58:40:b2:69:29:e9:
db:16:b6:b0:37:cd:13:5e:22:9c:ce:f5:20:1e:e2:
ba:b9:87:45:ae:e1:f2:20:a9:1f:57:ff:65:5b:3c:
6f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:82:93:BB:33:1F:5C:C7:4B:6D:D6:25:13:9A:5E:A2:AA:BF:68:16
X509v3 Authority Key Identifier:
keyid:C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/EoKTuzMfXMdLbdYlE5peoqq_aBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.168.0/24
195.191.196.0/23
IPv6:
2a06:d1c0::/29
Signature Algorithm: sha256WithRSAEncryption
1f:ea:29:19:c9:6e:22:dc:9d:16:ff:26:8e:a7:37:ce:43:81:
b9:b0:7e:d7:f8:f0:ad:d4:04:05:96:81:57:e5:43:0b:04:c4:
6a:48:e4:79:fc:01:62:87:57:5f:35:df:56:70:27:f9:70:eb:
4f:ad:01:b2:f2:ce:ee:cd:06:b1:39:96:da:93:d5:ff:06:ac:
63:2e:43:92:30:22:69:c5:98:46:d6:55:13:b5:ed:46:81:c8:
38:40:ab:b7:64:f6:6c:46:c1:3a:1e:ec:6b:32:24:3a:40:76:
f8:a2:e9:b2:3f:2f:e7:af:36:5d:d8:97:27:05:51:25:a3:ef:
e8:bc:12:44:2b:c0:01:32:25:a5:c9:d6:57:f0:67:74:fd:f3:
1f:68:85:0a:89:7d:b5:5b:46:62:36:45:68:b7:2e:39:ae:cb:
6b:cc:02:13:02:b6:9f:de:d8:26:5e:7a:40:6f:be:19:56:2c:
6a:d0:88:af:ac:5c:36:d1:4f:3f:d5:cd:e5:98:39:ae:3b:d1:
59:bb:e5:de:62:5e:84:c3:4c:ab:f5:5d:f5:a0:42:df:f9:12:
ed:cb:64:ab:c1:ba:85:c1:fd:94:de:e5:69:6e:ba:d1:10:27:
af:64:71:6d:2a:3d:af:36:78:89:2f:e6:6c:35:14:3b:7d:16:
d5:37:ee:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 15:59:49 2024 by rpki-client on console-fra.rpki-client.org