Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/zv_u4rK8S7z9ezHT1YqeuyJmE3I.roa
File: zv_u4rK8S7z9ezHT1YqeuyJmE3I.roa (raw, json)
Hash identifier: e22QODu1LJ0PiYuJXANQ1x/EM+ISr8z7ckloq6rU1NA=
Subject key identifier: CE:FF:EE:E2:B2:BC:4B:BC:FD:7B:31:D3:D5:8A:9E:BB:22:66:13:72
Certificate issuer: /CN=ef678469574acc03d782e63281ff44faaab3f847
Certificate serial: 018CCA29138465E83B55B9012AF4C507C39C
Authority key identifier: EF:67:84:69:57:4A:CC:03:D7:82:E6:32:81:FF:44:FA:AA:B3:F8:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/72eEaVdKzAPXguYygf9E-qqz-Ec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/zv_u4rK8S7z9ezHT1YqeuyJmE3I.roa
Signing time: Tue 02 Jan 2024 12:32:18 +0000
ROA not before: Tue 02 Jan 2024 12:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207440
IP address blocks: 185.251.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/72eEaVdKzAPXguYygf9E-qqz-Ec.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/72eEaVdKzAPXguYygf9E-qqz-Ec.mft
rsync://rpki.ripe.net/repository/DEFAULT/72eEaVdKzAPXguYygf9E-qqz-Ec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:13:84:65:e8:3b:55:b9:01:2a:f4:c5:07:c3:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef678469574acc03d782e63281ff44faaab3f847
Validity
Not Before: Jan 2 12:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ceffeee2b2bc4bbcfd7b31d3d58a9ebb22661372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:2a:90:91:c9:00:08:2c:29:8c:11:68:1b:
0c:73:f0:95:8d:23:8b:37:86:23:2e:c9:ed:af:5d:
61:14:9a:17:ef:7f:90:4d:ba:11:6e:4b:eb:09:70:
8f:6e:c4:0e:6e:bb:ae:6a:aa:8f:4f:42:3a:bf:cc:
6b:b6:b0:2c:16:93:e0:bc:f2:f4:1d:22:b3:8e:32:
6e:f4:b2:f4:9c:ca:b9:9b:b8:bb:76:34:e7:36:61:
83:3b:04:0b:52:da:12:40:6e:61:69:56:0e:0b:00:
5a:ca:89:5a:f5:8e:fc:9c:cb:f2:6c:c3:a2:05:fa:
33:90:24:21:39:1b:1a:43:1a:33:fc:f4:98:2a:4d:
19:e8:60:9a:e6:fa:d9:66:6e:71:7d:69:bf:fe:05:
c9:f5:d8:e1:d2:41:21:e2:db:75:7e:50:3a:a3:af:
b4:e1:e2:46:30:ed:00:49:79:9d:3a:70:78:a6:00:
24:e9:8a:ad:80:d8:bc:5f:19:6a:f3:cb:90:02:6a:
ed:2f:ce:c8:b9:ba:16:f7:6a:1b:75:86:54:88:f0:
32:7c:bf:7c:d9:04:b9:eb:48:d4:25:55:d2:5b:40:
ec:b3:8d:4b:b7:2e:20:33:82:2a:c2:5a:9f:da:7d:
5f:91:19:0b:1d:9a:33:1d:ba:52:a4:79:c0:13:ea:
9b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FF:EE:E2:B2:BC:4B:BC:FD:7B:31:D3:D5:8A:9E:BB:22:66:13:72
X509v3 Authority Key Identifier:
keyid:EF:67:84:69:57:4A:CC:03:D7:82:E6:32:81:FF:44:FA:AA:B3:F8:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/72eEaVdKzAPXguYygf9E-qqz-Ec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/zv_u4rK8S7z9ezHT1YqeuyJmE3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/b4673b-210b-4e5a-876a-dc059e69b1d0/1/72eEaVdKzAPXguYygf9E-qqz-Ec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.36.0/24
Signature Algorithm: sha256WithRSAEncryption
49:04:bd:5b:02:75:e5:02:c3:29:6e:16:4b:9e:35:92:3c:6a:
79:44:20:ef:5e:4e:3e:53:f3:04:8a:5a:0c:0a:92:bc:a8:93:
d2:08:d5:4e:f7:17:86:39:67:f5:60:89:2f:4b:3f:d7:12:6e:
5f:46:68:6d:2e:71:5c:ec:54:c7:8c:88:49:00:c0:d4:e0:46:
2a:33:70:71:4d:1b:5b:ac:74:60:e2:b7:ca:f5:5d:94:89:96:
bc:93:42:4c:3a:d3:58:ef:a4:7a:aa:e0:3d:07:59:52:0b:35:
f7:2b:21:59:b4:d3:22:5f:38:4b:2f:6a:b6:9b:48:58:95:a5:
43:79:4d:74:12:86:4e:4b:85:5d:fe:82:4c:20:8c:e5:2e:a4:
c8:8c:b7:2f:d1:bb:b3:c3:43:2a:81:2b:85:0f:e3:53:c3:bd:
1c:10:ea:5d:d5:0a:ee:56:c7:00:04:ce:59:5c:72:ec:6e:01:
11:db:39:c7:0c:98:d8:b1:e2:97:27:50:45:0a:ad:41:68:fe:
8d:d5:f7:93:2d:10:fd:2d:17:6e:e0:c3:8d:9c:2a:2c:f5:cf:
dd:39:f0:b1:c4:d0:df:fd:18:34:5e:98:61:83:92:18:68:55:
7f:8f:96:48:10:b1:d2:92:22:18:75:ee:5c:f3:47:d6:72:f8:
2e:5b:1b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:27:29 2024 by rpki-client on console-fra.rpki-client.org