Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/lg7lS3nELfta_8nW_7OGR50XS1Q.roa
File: lg7lS3nELfta_8nW_7OGR50XS1Q.roa (raw, json)
Hash identifier: ajQ7FD2iV6TuC7MtoURIqEZ9ZdJ1u+nHVk/RsKOBZec=
Subject key identifier: 96:0E:E5:4B:79:C4:2D:FB:5A:FF:C9:D6:FF:B3:86:47:9D:17:4B:54
Certificate issuer: /CN=12e108b46c25d932b6506c3ef0a87e8b8212ea18
Certificate serial: 018CCA2AE659945A2634B63795E53AC7112F
Authority key identifier: 12:E1:08:B4:6C:25:D9:32:B6:50:6C:3E:F0:A8:7E:8B:82:12:EA:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuEItGwl2TK2UGw-8Kh-i4IS6hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/lg7lS3nELfta_8nW_7OGR50XS1Q.roa
Signing time: Tue 02 Jan 2024 12:34:18 +0000
ROA not before: Tue 02 Jan 2024 12:34:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34624
IP address blocks: 185.246.2.0/23 maxlen: 23
185.246.0.0/23 maxlen: 23
185.246.0.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/EuEItGwl2TK2UGw-8Kh-i4IS6hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/EuEItGwl2TK2UGw-8Kh-i4IS6hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/EuEItGwl2TK2UGw-8Kh-i4IS6hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:e6:59:94:5a:26:34:b6:37:95:e5:3a:c7:11:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e108b46c25d932b6506c3ef0a87e8b8212ea18
Validity
Not Before: Jan 2 12:34:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=960ee54b79c42dfb5affc9d6ffb386479d174b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:84:0b:f6:54:ed:83:2d:c9:cc:9d:a4:d5:
24:b6:85:1d:6c:5e:12:a6:82:ad:2b:2b:7d:3f:5e:
dc:36:7c:fe:0a:ab:4e:4e:ef:ac:9b:4c:fc:f9:d2:
d9:36:cb:31:3b:83:79:af:82:1f:52:e0:49:59:50:
56:2b:c7:0c:78:0e:62:48:c3:02:e4:9d:45:5c:11:
5e:39:ff:3a:66:77:66:a6:c8:4c:bc:1e:39:79:a9:
46:6d:00:51:3c:fe:37:55:94:b6:6d:88:b2:38:59:
36:26:e7:99:f0:53:63:55:1f:17:c5:4e:72:9c:4a:
d4:e3:fd:58:48:b2:88:c8:5c:f0:fd:31:1b:27:9a:
5c:bc:48:cf:a1:05:d3:ae:13:a1:e1:d5:04:d6:15:
b9:7b:c8:b4:bd:4e:d1:50:e3:18:c4:b8:9c:10:31:
f0:3b:eb:43:34:d8:1a:38:5f:47:ec:30:7a:48:d8:
85:49:2d:6a:03:32:3b:ce:4b:73:09:f5:35:fd:76:
e7:e2:19:e3:a7:56:25:02:80:c3:bf:3b:13:88:63:
64:a4:ea:21:f5:08:20:d2:51:60:6b:71:b6:ca:4f:
d0:7d:10:bc:17:18:02:38:28:37:0f:9f:5c:f8:00:
6b:b3:f1:04:e5:51:0a:46:e5:37:48:7d:44:65:b6:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0E:E5:4B:79:C4:2D:FB:5A:FF:C9:D6:FF:B3:86:47:9D:17:4B:54
X509v3 Authority Key Identifier:
keyid:12:E1:08:B4:6C:25:D9:32:B6:50:6C:3E:F0:A8:7E:8B:82:12:EA:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuEItGwl2TK2UGw-8Kh-i4IS6hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/lg7lS3nELfta_8nW_7OGR50XS1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/74f9e0-1f4c-4720-8e69-ea4a6dc163c9/1/EuEItGwl2TK2UGw-8Kh-i4IS6hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.0.0/22
Signature Algorithm: sha256WithRSAEncryption
85:99:1a:cb:84:03:e0:e6:1f:95:11:8f:7f:19:cf:c8:bd:3c:
f4:73:f8:ed:8b:e1:29:c2:1e:13:65:9d:a2:48:af:60:01:e6:
9b:ae:a8:e4:78:89:b7:77:5a:67:26:a5:3b:9e:eb:ad:08:6f:
0a:47:12:d3:83:d5:6d:d7:32:f3:08:7c:de:e8:44:b9:05:f4:
0e:6f:25:fb:b5:f9:9e:8c:12:e0:d6:e4:4d:7d:9d:af:19:9d:
34:cb:29:31:08:00:af:7d:c8:f4:66:18:50:5e:63:fc:cf:00:
aa:27:4a:10:0c:7b:11:d5:ec:15:72:7f:32:d6:ab:b0:9f:80:
ac:64:d8:fa:cc:90:04:be:d9:7f:da:59:14:ee:09:e1:16:aa:
ee:69:e2:20:c3:cb:59:74:23:1e:dd:ff:e0:63:1d:cf:a8:19:
d6:0c:a7:7c:9c:ce:af:99:ab:cd:60:70:42:1b:cf:1d:0d:5c:
73:09:db:54:2a:c0:74:cd:c9:1a:6c:c7:86:c6:89:31:8a:b8:
0e:a7:ff:fb:a5:cd:a8:d4:6d:9e:24:93:80:b8:b3:11:9c:fc:
40:21:7b:38:cb:8a:49:22:77:ef:08:94:d6:01:4e:55:5a:d8:
8e:84:bb:98:a8:47:67:b0:d1:78:eb:6c:90:df:ea:60:a1:b3:
6d:7a:49:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 06:11:29 2024 by rpki-client on console-fra.rpki-client.org