Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EwlSAVk15-oY4N_eigFkO4prUYk.roa
File: EwlSAVk15-oY4N_eigFkO4prUYk.roa (raw, json)
Hash identifier: 5Inf0fIAeJ4xd6jVRHWuWGTnTNlpLBzqXEp1g1WZDKk=
Subject key identifier: 13:09:52:01:59:35:E7:EA:18:E0:DF:DE:8A:01:64:3B:8A:6B:51:89
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018CC79450FC9A708438677B52A84C66C64F
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EwlSAVk15-oY4N_eigFkO4prUYk.roa
Signing time: Tue 02 Jan 2024 00:30:35 +0000
ROA not before: Tue 02 Jan 2024 00:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43754
IP address blocks: 2.188.80.0/24 maxlen: 24
2.188.81.0/24 maxlen: 24
2.188.80.0/21 maxlen: 21
2.188.80.0/20 maxlen: 20
2.188.88.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:50:fc:9a:70:84:38:67:7b:52:a8:4c:66:c6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 00:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=130952015935e7ea18e0dfde8a01643b8a6b5189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d6:2b:f3:78:db:51:35:57:da:84:a1:7d:e2:
2d:a0:a9:0f:4a:0f:ad:4a:28:6a:74:4c:0c:9a:55:
59:f8:d3:f6:a1:af:4d:1c:dd:0b:67:ac:d5:df:78:
60:69:27:c1:5e:2b:3f:b6:ce:ea:81:32:fa:dd:4e:
56:98:f9:15:db:80:67:71:d7:b2:59:d0:a8:c4:ce:
6d:20:18:2b:33:d1:76:df:ca:41:77:b5:20:14:3c:
cf:4b:d6:c5:ba:80:45:cc:24:42:cb:04:f5:6f:ff:
06:c8:71:0a:ff:5a:17:f3:ab:e0:59:d5:e4:e9:50:
63:25:78:75:b1:69:c2:97:6c:97:76:b5:09:9e:7c:
fe:c0:f4:34:31:a6:43:10:e8:66:af:b1:ff:8d:08:
c9:e3:56:16:d2:0b:d5:a8:6a:15:b2:2c:37:8c:49:
6a:10:a7:ef:23:04:d5:99:16:8a:ab:ef:a2:fe:cc:
28:81:46:e1:a6:1e:db:3d:b7:55:3c:70:1e:07:68:
1c:8e:a4:82:2d:b0:e9:76:fd:38:f9:5f:11:e9:e0:
8e:bf:d0:f8:4c:72:c6:2a:fe:6f:ad:f3:56:f8:17:
d7:35:c4:d0:ed:30:4a:d9:5a:75:d5:3c:d5:33:9c:
cf:d6:08:19:cd:66:f0:18:50:34:ca:35:65:64:90:
56:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:09:52:01:59:35:E7:EA:18:E0:DF:DE:8A:01:64:3B:8A:6B:51:89
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/EwlSAVk15-oY4N_eigFkO4prUYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.80.0/20
Signature Algorithm: sha256WithRSAEncryption
49:15:44:9f:57:85:37:d2:57:7a:5e:b1:7f:cf:4e:b6:47:48:
b6:ef:8f:b1:af:15:a4:49:66:4a:97:0e:73:ca:54:68:5c:40:
7e:c1:00:ba:08:c9:25:44:95:90:35:7c:48:97:0a:7a:14:c9:
5c:42:b4:26:8f:b8:2c:57:af:30:26:dd:e3:65:4a:56:a5:b1:
06:c6:37:67:96:69:35:05:b5:5e:4c:55:54:5f:da:bb:ad:c4:
67:e8:fb:56:19:2e:e4:17:f7:4e:71:d0:d4:4c:b0:ac:eb:a6:
b7:98:a9:c5:c4:89:61:05:b4:f5:3c:73:0d:61:d4:2d:31:ca:
b1:16:d0:57:dc:34:58:42:8a:1e:0e:90:e9:2d:e3:a1:7c:45:
c5:c5:1c:59:0e:4c:7f:52:fc:d4:8a:71:17:4e:fd:b8:ae:33:
06:e7:9e:d4:89:72:ca:58:2a:3e:23:19:68:af:11:09:b3:05:
0a:a3:6d:a8:14:15:34:b3:5e:f0:bc:c8:38:58:e3:83:49:24:
22:e5:ff:30:08:7c:56:03:f7:46:05:d0:c8:af:41:46:d4:e7:
d1:3a:d7:16:14:19:1a:44:a2:59:43:21:66:ca:56:2f:e3:b0:
6c:3c:60:d6:5d:79:c1:23:b6:0a:f1:7f:43:6f:ce:00:31:d9:
46:3a:4c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 07:52:40 2024 by rpki-client on console-ams.rpki-client.org