Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/sEEIC7HV62qyNIhaoYUyqnmdryg.roa
File: sEEIC7HV62qyNIhaoYUyqnmdryg.roa (raw, json)
Hash identifier: /RZYiFKO2EVEhbFvh8pSgMLYe7xKWMiClY6tCRMSjeg=
Subject key identifier: B0:41:08:0B:B1:D5:EB:6A:B2:34:88:5A:A1:85:32:AA:79:9D:AF:28
Certificate issuer: /CN=479762e88d8f67fad4aa059a1b8b46fa4cc7a893
Certificate serial: 018CC64B4806F272209AD9C4EBA60938D1F8
Authority key identifier: 47:97:62:E8:8D:8F:67:FA:D4:AA:05:9A:1B:8B:46:FA:4C:C7:A8:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R5di6I2PZ_rUqgWaG4tG-kzHqJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/sEEIC7HV62qyNIhaoYUyqnmdryg.roa
Signing time: Mon 01 Jan 2024 18:31:11 +0000
ROA not before: Mon 01 Jan 2024 18:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212907
IP address blocks: 185.187.84.0/24 maxlen: 24
185.187.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/R5di6I2PZ_rUqgWaG4tG-kzHqJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/R5di6I2PZ_rUqgWaG4tG-kzHqJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/R5di6I2PZ_rUqgWaG4tG-kzHqJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:48:06:f2:72:20:9a:d9:c4:eb:a6:09:38:d1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=479762e88d8f67fad4aa059a1b8b46fa4cc7a893
Validity
Not Before: Jan 1 18:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b041080bb1d5eb6ab234885aa18532aa799daf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:37:31:1d:f9:82:76:36:5a:f5:93:53:e5:08:
88:35:0e:a3:b6:fd:cc:58:1f:b5:db:fd:49:d8:c8:
dd:88:d7:fd:19:4e:22:04:59:5d:d1:24:c5:a2:69:
a8:ee:66:af:a6:0d:98:19:a3:87:98:60:d6:c6:04:
ef:3b:d2:27:ea:bc:4b:23:b5:fc:c4:7f:7b:be:3a:
e7:d6:69:42:84:5a:96:bc:48:90:a8:80:28:bc:07:
27:a8:00:46:51:3d:ea:bc:6b:90:c8:90:ed:a9:c6:
de:58:4d:9d:01:ef:b1:a3:9b:f7:d0:89:11:94:81:
f9:9e:2e:f8:39:04:98:e5:14:a7:6d:67:99:2f:10:
9b:b0:6b:3c:8d:44:73:25:20:b8:96:b0:c8:c5:7f:
86:5a:6b:7c:75:b7:e3:0a:fc:45:a2:93:2b:ad:7e:
05:34:59:f0:9f:40:15:7c:6c:34:30:28:35:63:d4:
49:e2:d7:48:7f:5d:e8:e1:13:1b:e4:5d:d1:4f:0b:
4c:24:68:75:4f:e4:90:26:57:44:97:32:e5:eb:fd:
2e:1c:dd:79:4b:9d:9a:fc:f6:4a:57:4e:9c:6e:e4:
e9:e1:42:1f:f5:b2:9b:f7:bb:85:6e:b1:9d:91:51:
61:21:c6:2c:8d:c2:0c:09:6c:ac:23:9e:b3:70:ad:
90:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:41:08:0B:B1:D5:EB:6A:B2:34:88:5A:A1:85:32:AA:79:9D:AF:28
X509v3 Authority Key Identifier:
keyid:47:97:62:E8:8D:8F:67:FA:D4:AA:05:9A:1B:8B:46:FA:4C:C7:A8:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R5di6I2PZ_rUqgWaG4tG-kzHqJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/sEEIC7HV62qyNIhaoYUyqnmdryg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/R5di6I2PZ_rUqgWaG4tG-kzHqJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.84.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:bf:8b:20:5a:ec:22:f7:a9:34:3c:e8:d9:93:e6:35:5d:cb:
8b:3b:a3:94:97:5f:e9:3a:db:81:e2:67:44:50:5f:30:fd:e8:
3e:56:8a:ce:51:e5:0c:51:29:28:74:f5:4a:c8:85:62:45:ca:
7d:3a:c5:40:9d:2b:f2:92:ef:d3:a8:f2:ed:23:39:0d:b9:4c:
0a:2a:f4:f6:8b:3d:e7:95:bf:ab:33:de:86:d0:f5:c9:63:ad:
9d:8e:36:bc:c5:57:d7:2f:2d:74:be:fc:b8:9a:1f:00:4f:20:
04:c7:3c:9f:5f:44:68:66:16:bb:1b:af:75:9c:0f:67:76:6f:
99:d6:5e:0a:b2:53:9a:d6:8d:b0:b2:b8:52:99:4a:d0:4e:c9:
29:d3:64:fa:d2:77:c7:e6:3c:59:f1:2c:d5:6a:c3:44:06:2c:
9a:55:33:83:5e:5e:e3:be:a3:81:ef:22:45:ef:c0:7f:a9:62:
f6:19:a1:4d:79:1f:0f:8d:f9:5a:61:4b:1e:89:5c:6b:d0:30:
0c:c8:fb:ba:2d:06:fa:cc:b0:2d:96:4b:1a:65:6f:5d:73:8e:
b9:96:f1:cd:b1:d6:4f:de:92:92:a4:1d:5a:00:5a:31:c9:0a:
44:ae:99:09:c6:ca:39:81:b5:2c:29:16:71:82:cf:c7:4d:75:
38:da:62:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:59:02 2024 by rpki-client on console-fra.rpki-client.org