Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eo-dKoLN1fmeFFo2YW3ZQHKb3LY.roa
File: eo-dKoLN1fmeFFo2YW3ZQHKb3LY.roa (raw, json)
Hash identifier: i0QIe2249S0ZAYuCu99T7Imt31dlP47osrYj/h+65uw=
Subject key identifier: 7A:8F:9D:2A:82:CD:D5:F9:9E:14:5A:36:61:6D:D9:40:72:9B:DC:B6
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018D41CC1C4221EE6D25A5857194C25EF3BE
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eo-dKoLN1fmeFFo2YW3ZQHKb3LY.roa
Signing time: Thu 25 Jan 2024 18:05:11 +0000
ROA not before: Thu 25 Jan 2024 18:05:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21502
IP address blocks: 77.128.0.0/13 maxlen: 24
77.136.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
77.144.0.0/12 maxlen: 24
77.192.0.0/12 maxlen: 24
78.112.0.0/12 maxlen: 24
79.80.0.0/12 maxlen: 24
81.64.0.0/14 maxlen: 24
81.185.0.0/16 maxlen: 24
84.4.0.0/14 maxlen: 24
85.168.0.0/14 maxlen: 24
87.231.0.0/16 maxlen: 24
88.140.0.0/16 maxlen: 24
88.141.0.0/16 maxlen: 24
89.2.0.0/15 maxlen: 24
89.156.0.0/14 maxlen: 24
89.157.88.0/21 maxlen: 21
89.157.96.0/19 maxlen: 19
92.88.0.0/13 maxlen: 24
93.0.0.0/11 maxlen: 24
109.0.0.0/11 maxlen: 24
195.132.0.0/16 maxlen: 24
213.223.0.0/16 maxlen: 24
213.245.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:41:cc:1c:42:21:ee:6d:25:a5:85:71:94:c2:5e:f3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 25 18:05:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a8f9d2a82cdd5f99e145a36616dd940729bdcb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:93:82:14:de:05:45:d0:21:e5:7d:85:83:96:
f4:c4:eb:2c:bf:5a:f7:57:f2:7d:c5:7b:0f:6f:38:
bf:6c:aa:ea:20:40:4c:9d:14:54:d7:8e:41:8d:65:
c1:da:67:db:61:d0:fd:57:5e:d8:8f:c9:1b:09:9b:
3b:5e:40:27:d2:a5:e2:b6:42:c3:9f:90:9a:95:07:
04:62:49:7c:24:75:c3:25:f4:06:f6:10:57:40:80:
b9:d2:00:d2:a6:e9:81:f0:db:b1:ed:35:b1:55:81:
92:a7:e0:ee:06:e7:0a:2d:0c:76:96:1f:2b:04:de:
f7:85:ea:26:b7:0b:c4:45:97:35:76:dc:44:5a:0a:
8b:23:96:0f:4d:d4:40:5e:48:8e:b8:51:0f:e3:c7:
17:dc:12:43:44:44:37:80:ed:57:4e:8c:6c:d5:ee:
bb:cf:c8:43:83:e9:d0:ed:fe:ee:25:b6:85:ab:57:
62:df:92:d9:11:3d:43:87:98:93:64:cd:75:68:e3:
ce:66:6f:89:84:5c:23:91:ce:9c:ec:d0:52:b7:a4:
10:1a:c9:85:91:e0:f4:b3:08:60:a7:ed:3f:d4:ce:
d3:e5:4c:26:eb:c1:3f:36:47:07:93:c5:5c:ad:3d:
6d:45:cc:91:f3:36:71:02:31:b6:5d:f1:4b:34:40:
7d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8F:9D:2A:82:CD:D5:F9:9E:14:5A:36:61:6D:D9:40:72:9B:DC:B6
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/eo-dKoLN1fmeFFo2YW3ZQHKb3LY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.128.0.0-77.136.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
79.80.0.0/12
81.64.0.0/14
81.185.0.0/16
84.4.0.0/14
85.168.0.0/14
87.231.0.0/16
88.140.0.0/15
89.2.0.0/15
89.156.0.0/14
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
195.132.0.0/16
213.223.0.0/16
213.245.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:39:5a:3f:20:f9:eb:6d:70:5d:a6:79:7f:55:ba:f0:d0:f8:
ee:43:ca:de:e7:89:ea:5f:be:9c:d2:b1:c4:95:6b:66:8c:cf:
c4:24:82:c5:66:79:f3:36:15:51:ab:d5:d6:2d:6d:7c:a5:bb:
b3:3c:30:2b:6c:58:af:15:80:e8:a5:05:73:4f:02:c7:bd:c4:
01:ce:18:93:57:41:ab:a2:3b:82:f6:f0:71:24:b3:0f:39:19:
b6:30:e8:57:d2:60:79:1b:ad:3b:8e:a2:e0:46:3f:25:0a:48:
4c:5e:6d:8d:ab:7c:03:31:ce:55:93:30:4f:8b:7e:88:38:e7:
00:b2:ab:b8:b8:35:82:5b:51:41:93:94:7c:0b:5e:9a:f6:ca:
ef:55:90:4a:0c:73:e2:e0:ca:54:75:97:47:c9:81:f5:07:0c:
d0:13:45:97:ce:a0:18:6b:a9:c7:da:e8:17:8d:3e:31:5d:f5:
a5:7f:b0:0c:d1:ab:8a:0f:ca:05:f0:47:7b:c5:a5:aa:b6:0a:
86:84:5e:7b:48:7c:c6:ff:98:c7:73:09:ad:5a:e7:1d:e0:ed:
54:4d:b2:3f:0d:97:f2:6f:76:6d:58:4e:59:2d:12:6e:ba:41:
5b:0a:43:e9:82:e5:01:25:39:d3:c8:92:2f:91:2f:79:e1:fa:
8e:03:4c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:11:41 2024 by rpki-client on console-fra.rpki-client.org