Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8Tjj7eoX9Nk-nOpRWxJUPflLnZc.roa
File: 8Tjj7eoX9Nk-nOpRWxJUPflLnZc.roa (raw, json)
Hash identifier: 4VjCxvmQ3wypUySBCh8qmGT82bJ40u7gyGG9j3ZKjUA=
Subject key identifier: F1:38:E3:ED:EA:17:F4:D9:3E:9C:EA:51:5B:12:54:3D:F9:4B:9D:97
Certificate issuer: /CN=eb554c44046c36439a919738942f31fa756b6911
Certificate serial: 018ECC60E86ECA8E496DCD70CD7C8518E76B
Authority key identifier: EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8Tjj7eoX9Nk-nOpRWxJUPflLnZc.roa
Signing time: Thu 11 Apr 2024 08:58:06 +0000
ROA not before: Thu 11 Apr 2024 08:58:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15682
IP address blocks: 212.74.228.0/22 maxlen: 22
212.74.229.0/24 maxlen: 24
212.74.231.0/24 maxlen: 24
212.74.232.0/24 maxlen: 24
212.74.233.0/24 maxlen: 24
212.74.234.0/24 maxlen: 24
212.74.235.0/24 maxlen: 24
212.74.237.0/24 maxlen: 24
212.74.240.0/21 maxlen: 21
212.74.252.0/22 maxlen: 22
212.74.253.0/24 maxlen: 24
212.74.254.0/24 maxlen: 24
2a01:5f40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cc:60:e8:6e:ca:8e:49:6d:cd:70:cd:7c:85:18:e7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb554c44046c36439a919738942f31fa756b6911
Validity
Not Before: Apr 11 08:58:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f138e3edea17f4d93e9cea515b12543df94b9d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2a:44:d9:6f:f6:6f:76:c6:51:9e:22:d9:a2:
83:14:83:e3:c7:fe:56:a2:6d:1c:64:bb:52:39:0e:
9a:93:d8:00:31:f8:2c:1e:02:bc:2e:8f:17:25:18:
a7:dd:3d:cb:fe:5d:b0:31:0b:4f:1a:8f:89:44:58:
1e:3a:28:c0:35:d9:8e:0d:04:0f:12:93:12:87:0e:
46:6a:21:13:30:ab:11:c1:29:e1:06:84:97:0e:3b:
28:7a:cb:14:64:96:89:7c:13:a4:e3:b0:f1:09:43:
81:ec:54:4f:ff:48:64:eb:1b:fe:df:b7:74:4f:62:
f6:11:de:77:25:cc:f8:90:08:a4:d7:da:08:69:e6:
a3:db:06:d3:7f:db:59:b8:ad:6f:59:c2:87:98:1f:
25:f3:3e:3d:b3:5d:85:b3:50:e7:0d:26:ea:c5:6d:
e5:52:4b:64:b6:21:e6:a7:a9:71:18:53:48:8c:76:
51:8d:51:ae:68:d7:86:e4:50:df:f4:e5:8d:c0:78:
05:11:31:52:47:64:cb:40:50:76:04:92:3a:e9:9e:
29:39:8a:66:4e:53:18:b7:98:8f:b5:e9:b1:28:01:
b5:48:f8:c4:20:4a:28:26:37:30:26:05:cf:01:fa:
ff:91:ff:3f:c8:2a:6f:9e:57:55:35:be:1b:1d:0c:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:38:E3:ED:EA:17:F4:D9:3E:9C:EA:51:5B:12:54:3D:F9:4B:9D:97
X509v3 Authority Key Identifier:
keyid:EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/8Tjj7eoX9Nk-nOpRWxJUPflLnZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.74.228.0-212.74.235.255
212.74.237.0/24
212.74.240.0/21
212.74.252.0/22
IPv6:
2a01:5f40::/32
Signature Algorithm: sha256WithRSAEncryption
5c:0b:d0:00:ed:8d:c4:69:0c:bd:b2:94:2e:95:e0:b9:1e:ba:
21:48:57:2e:64:af:78:cf:22:a4:89:69:53:08:fd:ff:a0:1b:
09:07:79:7b:5c:0d:4c:f2:4e:13:2a:d7:be:7b:1e:31:da:9d:
3d:d7:9b:23:3e:ad:1b:3d:a4:c3:52:fe:6b:8f:fe:26:03:32:
c5:ad:4e:7b:57:c8:bd:9e:fc:4e:bf:ab:cb:f7:21:90:80:a7:
5a:ba:00:f1:59:6a:4b:01:d2:00:b1:a7:10:75:48:dd:56:0a:
b4:31:7d:fb:43:ae:26:5a:6c:63:25:c4:c9:79:ed:42:7b:80:
d7:e6:ef:0a:d4:65:05:b1:fc:9a:ad:9f:76:da:90:56:81:80:
8a:81:b5:79:bb:e6:35:b6:bb:e6:47:dc:b9:1f:5c:03:06:b6:
49:d6:26:7c:a8:33:2b:1e:c6:5d:74:9d:59:a6:e9:44:c3:1e:
c5:7b:7d:00:cd:fd:bb:20:f8:ed:5a:b4:e6:8a:40:23:f2:17:
75:57:22:ff:a3:51:a5:85:81:59:e8:3c:12:a0:f4:c6:8e:0a:
1f:ab:87:3b:b9:79:25:63:7c:15:a0:09:d2:e4:51:a8:7f:6e:
06:4e:6a:9f:06:86:cf:5e:e4:85:22:f2:72:6d:63:41:ff:22:
c8:9e:e4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 20:18:22 2024 by rpki-client on console-ams.rpki-client.org