Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/eLPbDtBw8HcOOGXEaIqaHLR5dlc.roa
File: eLPbDtBw8HcOOGXEaIqaHLR5dlc.roa (raw, json)
Hash identifier: 3haxOYY3uSnUJcSk/QT+YEe/lOswN1eZSvzS7jb6Ppw=
Subject key identifier: 78:B3:DB:0E:D0:70:F0:77:0E:38:65:C4:68:8A:9A:1C:B4:79:76:57
Certificate issuer: /CN=a040f968fa52e6cb2fe657109700fa074c190b85
Certificate serial: 018D5F79C95035FA717A4E5B1EB0A78928AD
Authority key identifier: A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/eLPbDtBw8HcOOGXEaIqaHLR5dlc.roa
Signing time: Wed 31 Jan 2024 12:23:53 +0000
ROA not before: Wed 31 Jan 2024 12:23:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62352
IP address blocks: 86.105.199.0/24 maxlen: 24
93.117.174.0/24 maxlen: 24
109.205.142.0/23 maxlen: 23
109.205.142.0/24 maxlen: 24
109.205.143.0/24 maxlen: 24
176.126.173.0/24 maxlen: 24
185.39.40.0/22 maxlen: 22
185.39.40.0/24 maxlen: 24
185.39.41.0/24 maxlen: 24
185.39.42.0/24 maxlen: 24
185.39.43.0/24 maxlen: 24
188.241.65.0/24 maxlen: 24
213.236.28.0/24 maxlen: 24
213.236.30.0/23 maxlen: 23
213.236.30.0/24 maxlen: 24
213.236.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 09:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:79:c9:50:35:fa:71:7a:4e:5b:1e:b0:a7:89:28:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a040f968fa52e6cb2fe657109700fa074c190b85
Validity
Not Before: Jan 31 12:23:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78b3db0ed070f0770e3865c4688a9a1cb4797657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c2:2e:87:f4:51:4c:dc:3f:86:d8:ff:3d:f1:
eb:7f:4c:19:9d:8b:ef:d0:7d:07:a5:a4:c7:01:79:
24:10:a9:80:3c:34:b3:ec:52:53:45:b5:34:7a:df:
5e:ea:64:d6:b2:16:01:98:89:f8:71:54:70:70:44:
66:37:07:56:ea:cb:d5:38:d2:00:32:ac:ef:26:06:
fd:d3:89:eb:ab:67:0f:bf:48:b9:bb:1e:39:12:4e:
b0:23:da:4c:23:6d:af:b3:f6:9a:8c:3c:88:98:bc:
05:d8:d7:4b:46:7f:48:53:79:30:15:38:24:46:8c:
b3:b9:f9:38:f4:e7:49:40:c2:a7:96:bd:9a:15:d5:
a0:ae:c9:60:d0:3e:95:b9:fa:d9:46:fc:e9:29:4b:
a7:41:e5:6a:9c:7f:04:3b:c1:d1:5c:9e:ae:0f:3e:
95:74:f0:6d:91:b0:34:76:c7:52:f7:17:db:3e:ba:
9a:90:08:95:ed:75:84:19:42:66:7c:3a:2f:4b:b3:
a6:83:bd:bd:0c:b3:ce:aa:67:d3:69:5c:f3:65:01:
3a:26:f1:65:d9:9a:3b:e6:a2:c1:b1:6f:21:5e:d9:
e0:34:b0:11:87:9e:24:88:26:29:9f:bd:f7:6c:e3:
32:a3:96:52:c6:07:c0:82:56:9b:7b:fc:90:18:24:
66:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B3:DB:0E:D0:70:F0:77:0E:38:65:C4:68:8A:9A:1C:B4:79:76:57
X509v3 Authority Key Identifier:
keyid:A0:40:F9:68:FA:52:E6:CB:2F:E6:57:10:97:00:FA:07:4C:19:0B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oED5aPpS5ssv5lcQlwD6B0wZC4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/eLPbDtBw8HcOOGXEaIqaHLR5dlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/895502-4e14-4963-a305-3b6b0a5555ef/1/oED5aPpS5ssv5lcQlwD6B0wZC4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.199.0/24
93.117.174.0/24
109.205.142.0/23
176.126.173.0/24
185.39.40.0/22
188.241.65.0/24
213.236.28.0/24
213.236.30.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:a2:df:8e:f5:a3:b4:69:cd:56:b1:b9:bc:7d:66:7c:98:be:
9c:22:d7:2e:3b:ca:d5:f4:74:27:f9:39:7a:7f:29:ab:a6:57:
5e:c0:1f:54:8e:10:92:ca:ab:6a:6a:e4:c6:c4:af:67:32:cb:
0e:41:11:b0:37:5e:10:20:e9:96:41:3d:c6:ed:3d:51:aa:64:
10:83:44:5d:5d:97:33:c0:ec:cc:80:5a:de:26:01:5d:bd:ed:
e3:86:22:99:35:30:d3:c4:af:91:58:ac:2f:e5:2e:2d:fa:d7:
cc:b8:f7:14:2f:3b:0c:49:bf:1a:e2:ba:ab:8c:3a:be:5b:46:
68:fc:49:b4:be:8e:9a:70:44:e2:67:25:4f:a5:f3:ff:f7:80:
1a:40:06:50:fc:73:a1:6d:c7:f5:bb:14:7a:57:40:eb:3d:f6:
93:36:1f:3a:42:9f:cf:da:d6:8b:5b:8b:5b:96:e4:a7:56:23:
bc:a8:7b:0d:b0:e8:14:1c:ea:0b:e9:39:61:4c:b4:04:62:b3:
a2:eb:4b:d3:ff:46:c5:b5:fa:af:05:ff:17:e0:b8:74:b1:bc:
b6:5a:2a:b6:7c:80:3a:2b:97:0a:fc:c4:32:06:66:54:04:4b:
09:5e:53:b4:5d:06:e7:82:db:cf:52:5c:f3:f1:96:95:11:9c:
b2:ae:6e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 15:53:20 2024 by rpki-client on console-fra.rpki-client.org