Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/EumgNzgHxe52a1sBHuWdq_xCzCY.roa
File: EumgNzgHxe52a1sBHuWdq_xCzCY.roa (raw, json)
Hash identifier: JZ4BkV4sx4Naw6NPosudFe39yfQUrv5JJA/S/OFxKJ0=
Subject key identifier: 12:E9:A0:37:38:07:C5:EE:76:6B:5B:01:1E:E5:9D:AB:FC:42:CC:26
Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial: 0192D87A2773439E9ED0CB44D29336037AF7
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/EumgNzgHxe52a1sBHuWdq_xCzCY.roa
Signing time: Tue 29 Oct 2024 13:32:16 +0000
ROA not before: Tue 29 Oct 2024 13:32:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39396
IP address blocks: 85.187.216.0/23 maxlen: 24
185.138.176.0/22 maxlen: 23
185.138.176.0/23 maxlen: 23
185.138.178.0/23 maxlen: 23
185.218.64.0/22 maxlen: 23
185.251.39.0/24 maxlen: 24
2a10:bac0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:7a:27:73:43:9e:9e:d0:cb:44:d2:93:36:03:7a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Validity
Not Before: Oct 29 13:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12e9a0373807c5ee766b5b011ee59dabfc42cc26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:bc:7b:a6:e8:c7:c3:ea:ba:fa:da:d6:97:
e9:5f:4f:b4:c6:8a:ad:3e:8d:15:0f:84:bc:39:b9:
88:33:4e:95:1e:73:bd:92:e2:82:a6:20:01:c7:6e:
ae:8a:59:4c:f5:81:5c:59:21:72:9d:48:bc:30:27:
bb:7b:76:8d:f8:50:61:48:5b:c1:f0:fe:3c:86:b3:
b7:d8:55:a4:e6:ea:a7:a1:f9:0b:96:f9:b0:3f:24:
10:d4:d9:94:08:a7:c5:02:3a:b9:7b:82:c6:c3:4b:
72:a8:80:60:67:86:01:8f:cd:9d:dc:b2:3d:76:f4:
d5:9a:aa:b4:8a:29:fb:1f:5a:4c:45:a6:34:6c:3e:
b0:f5:7e:40:53:6b:17:f6:16:7c:e6:ef:d5:6f:f9:
9f:b2:3e:85:63:6d:39:14:67:4a:9f:b8:e6:c9:28:
dc:65:7f:c2:9f:41:60:1b:a0:9b:5e:14:57:58:31:
2f:93:3b:e4:7a:22:84:b3:88:7c:71:7f:ab:73:e8:
07:ab:0a:ec:4f:09:e6:3e:ae:08:72:6f:f4:ff:9a:
65:31:99:5c:38:b5:d1:57:94:b1:d4:ee:5e:93:2a:
23:5f:34:27:53:64:65:f4:95:33:11:49:76:43:c2:
2a:b7:3d:04:fe:d5:d0:57:06:13:83:36:c7:f5:7c:
85:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E9:A0:37:38:07:C5:EE:76:6B:5B:01:1E:E5:9D:AB:FC:42:CC:26
X509v3 Authority Key Identifier:
keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/EumgNzgHxe52a1sBHuWdq_xCzCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.216.0/23
185.138.176.0/22
185.218.64.0/22
185.251.39.0/24
IPv6:
2a10:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
87:4b:4f:b8:62:4b:9b:42:68:93:e3:32:bd:e1:89:6a:b5:d8:
7f:c1:78:39:4b:b7:46:9d:10:4b:77:3c:17:8b:bc:d7:d6:c4:
e5:1c:e0:07:84:c7:46:53:8f:a8:01:c5:f3:df:96:99:d2:5c:
88:ca:ae:ff:15:ae:08:9b:29:f2:4a:28:6f:0f:a1:bc:ba:e9:
0d:e2:65:49:df:e8:60:7c:16:36:4f:d8:7d:fe:55:24:06:86:
08:59:d0:f0:af:56:57:f0:e1:af:2d:27:0e:f7:67:4a:56:bb:
fa:08:65:83:86:59:10:df:13:36:96:5f:04:00:81:c8:66:67:
cf:3b:d7:91:63:2a:ec:8b:ce:ab:4b:33:6e:75:95:63:93:6f:
6a:1c:d8:68:e1:08:38:47:26:ab:4c:44:ab:fd:64:a1:b5:43:
7e:ac:d2:ce:65:3b:4b:f6:f6:0e:02:6a:ac:47:5f:c2:46:a8:
c9:40:74:ce:0c:f2:24:41:a5:b7:35:3f:b4:14:6f:fa:49:36:
b4:62:49:5a:62:0a:93:01:74:41:28:1b:bf:9d:3e:2a:fc:a6:
b2:ae:cf:ba:36:f5:05:04:c0:3c:0d:6b:2e:62:48:4a:10:9e:
e3:05:2f:8b:ad:5c:34:8f:9b:af:39:a5:a9:1d:33:d3:1c:14:
ce:01:88:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 15:37:05 2024 by rpki-client on console-fra.rpki-client.org