Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/E75uCUosMLgx3LN4pD6Cch6rlDM.roa
File: E75uCUosMLgx3LN4pD6Cch6rlDM.roa (raw, json)
Hash identifier: NT3jH19vQOWSxIWZMgFgQsj4qRgaQMHInAyRLSS2H/E=
Subject key identifier: 13:BE:6E:09:4A:2C:30:B8:31:DC:B3:78:A4:3E:82:72:1E:AB:94:33
Certificate issuer: /CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Certificate serial: 018F95B47BFACEE533A04C6ACA4CAA777038
Authority key identifier: CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/E75uCUosMLgx3LN4pD6Cch6rlDM.roa
Signing time: Mon 20 May 2024 11:13:04 +0000
ROA not before: Mon 20 May 2024 11:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201843
IP address blocks: 2.58.224.0/22 maxlen: 22
2.58.224.0/24 maxlen: 24
2.58.225.0/24 maxlen: 24
2.58.226.0/24 maxlen: 24
2.58.227.0/24 maxlen: 24
185.61.204.0/24 maxlen: 24
185.61.205.0/24 maxlen: 24
185.61.206.0/23 maxlen: 23
185.133.96.0/22 maxlen: 22
185.133.96.0/24 maxlen: 24
185.133.97.0/24 maxlen: 24
185.133.98.0/24 maxlen: 24
185.133.99.0/24 maxlen: 24
185.191.64.0/24 maxlen: 24
185.191.65.0/24 maxlen: 24
185.191.66.0/24 maxlen: 24
185.191.67.0/24 maxlen: 24
185.238.48.0/22 maxlen: 22
185.238.48.0/23 maxlen: 23
185.238.48.0/24 maxlen: 24
185.238.49.0/24 maxlen: 24
185.238.50.0/24 maxlen: 24
185.238.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 14:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:b4:7b:fa:ce:e5:33:a0:4c:6a:ca:4c:aa:77:70:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Validity
Not Before: May 20 11:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13be6e094a2c30b831dcb378a43e82721eab9433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a3:cf:a5:4d:61:dc:0f:71:1e:77:c8:06:fd:
83:38:40:82:e3:b4:dd:81:51:30:07:ea:0d:c1:38:
76:ae:44:e1:d9:c4:d6:46:7d:76:ea:7c:96:5c:ef:
5a:bb:60:76:86:55:76:13:a8:ea:58:85:5d:e6:13:
72:41:22:23:d1:4b:9e:33:44:56:3b:26:56:69:80:
42:8b:3a:36:4e:fd:82:4c:e6:82:62:b1:3a:25:62:
d5:a9:1a:e3:c4:d0:ac:03:da:98:06:7e:cc:4e:c8:
90:45:4d:7c:a8:90:4c:0a:fd:d3:0c:da:f1:82:88:
d9:6b:d2:b5:27:93:bc:c2:b5:4f:c5:1d:f4:cb:b5:
a5:4f:c9:e2:f9:35:8d:f6:94:9a:6e:e8:fc:d7:07:
1d:d5:9d:32:a3:62:ae:37:77:56:bb:b5:90:96:92:
8f:9a:7c:62:60:69:c8:0a:ef:c1:ef:e6:c1:27:4d:
f1:08:97:cf:ab:c2:50:03:9a:0f:d5:00:6b:d2:11:
b2:b8:55:90:1c:92:8e:6c:c8:a9:29:02:ac:e3:36:
bc:b7:e5:ce:c9:78:9e:cb:c0:e1:35:79:df:b8:95:
a9:83:65:45:6d:3c:48:16:7c:fb:00:95:8c:34:78:
31:e2:83:65:72:50:f0:8f:ff:dc:ed:05:e6:15:cf:
03:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BE:6E:09:4A:2C:30:B8:31:DC:B3:78:A4:3E:82:72:1E:AB:94:33
X509v3 Authority Key Identifier:
keyid:CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/E75uCUosMLgx3LN4pD6Cch6rlDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.224.0/22
185.61.204.0/22
185.133.96.0/22
185.191.64.0/22
185.238.48.0/22
Signature Algorithm: sha256WithRSAEncryption
69:80:7d:0b:2f:c4:e8:76:b8:15:73:be:2b:ec:8c:9a:6d:bf:
c6:06:50:f5:d5:18:ec:5e:31:93:a2:32:40:cf:3b:ce:c1:c1:
57:3a:52:d5:d4:14:61:c9:43:47:c6:e1:b6:a0:52:cf:d8:52:
7e:0c:29:58:fb:67:e9:0c:a1:eb:01:e4:c8:16:55:bb:34:23:
50:f3:0d:62:5c:8f:f6:56:1b:61:58:df:1a:ac:c2:8a:80:98:
d7:da:d6:25:86:53:e5:d3:01:b9:d9:5b:16:88:67:37:d3:91:
91:ec:dd:10:a0:2a:f0:b5:0d:ec:af:2b:34:35:bb:8a:33:f2:
56:29:1a:1e:73:44:94:48:40:c4:f2:66:a6:0a:3c:ba:e7:69:
b4:3e:69:68:23:ba:c5:a2:20:23:c8:9b:ee:08:d1:95:ef:49:
c0:f7:e0:2e:4c:0f:01:eb:43:d4:36:f7:96:86:18:02:26:99:
90:9c:5b:1e:78:9f:fb:22:ab:70:c2:1a:e1:5b:ae:60:7a:a1:
47:8b:3b:65:16:96:55:d7:1d:47:f0:b6:0d:e4:cb:f3:2c:3e:
57:1c:55:8c:f1:15:f6:98:90:e5:63:14:b9:4e:87:85:de:db:
bd:ed:7a:17:e3:71:4c:1d:19:bc:6f:54:f0:c4:d2:97:ec:4e:
af:23:69:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:25:29 2024 by rpki-client on console-ams.rpki-client.org