Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/B5kHmJh3IfltEHENEE7oLDeop2c.roa
File: B5kHmJh3IfltEHENEE7oLDeop2c.roa (raw, json)
Hash identifier: 99D6f2tts6e3m0UlNdd/tMhgwuK9CasfZH7UPo95CxY=
Subject key identifier: 07:99:07:98:98:77:21:F9:6D:10:71:0D:10:4E:E8:2C:37:A8:A7:67
Certificate issuer: /CN=50264c3f09831ccd889712f4fab5c5b1be0cad56
Certificate serial: 018CC5DC03CA660DC3CFC40782FEAF89E82B
Authority key identifier: 50:26:4C:3F:09:83:1C:CD:88:97:12:F4:FA:B5:C5:B1:BE:0C:AD:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UCZMPwmDHM2IlxL0-rXFsb4MrVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/B5kHmJh3IfltEHENEE7oLDeop2c.roa
Signing time: Mon 01 Jan 2024 16:29:39 +0000
ROA not before: Mon 01 Jan 2024 16:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12813
IP address blocks: 212.11.226.0/24 maxlen: 24
212.11.225.0/24 maxlen: 24
212.11.224.0/24 maxlen: 24
212.11.224.0/19 maxlen: 19
212.11.227.0/24 maxlen: 24
212.11.235.0/24 maxlen: 24
212.11.240.0/24 maxlen: 24
212.11.242.0/24 maxlen: 24
212.11.241.0/24 maxlen: 24
212.11.245.0/24 maxlen: 24
212.11.244.0/24 maxlen: 24
2a00:1278::/32 maxlen: 32
2a00:1278:500::/40 maxlen: 40
2a00:1278:200::/40 maxlen: 40
2a00:1278:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/UCZMPwmDHM2IlxL0-rXFsb4MrVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/UCZMPwmDHM2IlxL0-rXFsb4MrVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UCZMPwmDHM2IlxL0-rXFsb4MrVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:03:ca:66:0d:c3:cf:c4:07:82:fe:af:89:e8:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50264c3f09831ccd889712f4fab5c5b1be0cad56
Validity
Not Before: Jan 1 16:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07990798987721f96d10710d104ee82c37a8a767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:83:4b:b1:6b:d7:c8:38:8d:a0:af:73:84:4d:
99:44:77:53:9b:81:1d:79:e8:2b:96:3a:de:08:24:
66:de:d2:30:03:e4:d5:87:42:fd:ed:cf:69:a5:3e:
23:92:8a:ae:db:8f:c5:19:af:4a:da:74:15:9e:0a:
4e:09:b6:95:35:ea:a2:69:bf:be:c3:38:cf:7b:ff:
db:0a:ab:61:97:b4:7d:32:ed:9c:ff:8d:20:2f:10:
5d:0a:bb:ab:2e:89:a4:3c:d5:f4:9d:9e:60:aa:d6:
38:8c:4e:19:9e:b9:85:5d:c5:c2:df:47:7a:2b:e8:
0a:7b:85:22:ea:51:c5:d9:c3:6e:f2:93:46:87:9f:
79:6c:89:e9:97:20:56:8c:6e:76:80:84:f4:71:2c:
fd:19:1f:5d:59:51:ce:40:68:ea:19:c4:93:de:62:
7b:7c:1c:58:6d:01:1e:36:f6:53:24:8d:dd:bd:85:
95:40:47:59:76:2d:b5:17:cc:f9:3f:ef:0a:93:85:
13:41:8a:de:19:b6:21:22:f1:60:06:b1:6e:1e:32:
6e:a5:69:5c:2c:9a:ca:68:53:a4:9c:d7:83:d7:2c:
d3:ee:9e:09:95:32:02:e6:30:61:fe:16:0f:54:21:
59:38:d9:36:ac:66:57:6f:db:1b:cb:05:d0:66:78:
9e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:99:07:98:98:77:21:F9:6D:10:71:0D:10:4E:E8:2C:37:A8:A7:67
X509v3 Authority Key Identifier:
keyid:50:26:4C:3F:09:83:1C:CD:88:97:12:F4:FA:B5:C5:B1:BE:0C:AD:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UCZMPwmDHM2IlxL0-rXFsb4MrVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/B5kHmJh3IfltEHENEE7oLDeop2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01835f-504f-45bd-a052-714f9626d021/1/UCZMPwmDHM2IlxL0-rXFsb4MrVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.11.224.0/19
IPv6:
2a00:1278::/32
Signature Algorithm: sha256WithRSAEncryption
19:92:c4:33:8e:de:d6:71:c6:53:85:96:d0:ca:52:43:82:02:
f0:38:30:8c:03:db:ff:fb:02:6c:95:47:fa:86:f8:83:80:e0:
57:da:da:e2:e4:3f:4b:00:b9:33:fd:56:39:51:ce:c1:d0:d7:
cf:55:02:0c:c8:fb:e1:c4:2b:01:10:56:2c:c8:4b:a6:e1:52:
b9:79:ae:ff:0d:20:ce:ec:f2:3c:79:f3:33:10:a4:f0:71:40:
1f:f0:bd:19:43:aa:4f:13:fa:14:be:f7:e5:f6:af:ce:4d:ec:
b3:dc:25:a5:80:97:7a:71:af:9a:23:cf:76:0c:56:4f:ab:86:
15:34:d3:e2:83:44:21:d0:aa:66:d8:ee:2c:6b:68:ef:57:d0:
a3:31:dc:f9:63:ed:18:11:68:27:aa:11:da:cf:ea:6e:a8:09:
96:5f:7b:4f:dd:29:e7:47:28:6d:c1:ef:47:99:99:38:a9:0d:
ab:71:f2:05:71:e6:c2:f0:d6:60:cf:96:80:31:3e:e0:7a:18:
6c:0d:71:8c:17:26:ca:f9:a8:63:cf:cb:8b:a3:3e:88:53:b6:
a4:09:e1:4e:ef:e1:21:9a:ed:05:42:e4:93:c8:4b:25:a4:a0:
27:ea:3d:6d:e3:37:9d:91:df:85:33:ca:74:63:d6:20:aa:b9:
1e:30:87:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:48:51 2024 by rpki-client on console-ams.rpki-client.org