Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/juae4r4xSVHK5HC9HCKETU4BkV0.roa
File: juae4r4xSVHK5HC9HCKETU4BkV0.roa (raw, json)
Hash identifier: B5uRNip7AKhn5MBOLWaXtw8Bq1yHZSaGeYGjN9sBRSM=
Subject key identifier: 8E:E6:9E:E2:BE:31:49:51:CA:E4:70:BD:1C:22:84:4D:4E:01:91:5D
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 018E76F275D8C81BAD896FEA452A5BCFCB6F
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/juae4r4xSVHK5HC9HCKETU4BkV0.roa
Signing time: Mon 25 Mar 2024 18:49:45 +0000
ROA not before: Mon 25 Mar 2024 18:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208405
IP address blocks: 213.139.212.0/23 maxlen: 23
213.139.214.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:f2:75:d8:c8:1b:ad:89:6f:ea:45:2a:5b:cf:cb:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Mar 25 18:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ee69ee2be314951cae470bd1c22844d4e01915d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a5:a8:fb:a2:e7:05:b5:9f:53:b8:5f:25:fc:
53:f1:b5:6b:1a:95:b3:03:a0:91:3c:3c:8f:bc:13:
73:07:02:1d:92:ca:5d:8d:38:1b:aa:25:e7:73:71:
38:c3:90:09:79:13:67:26:8e:b9:02:36:99:be:a7:
c3:f1:6e:3d:c2:f4:90:a7:12:da:d9:46:ae:d9:fa:
2c:17:33:62:1f:c1:ab:9e:53:f4:cd:ef:b6:0e:f3:
74:76:0e:dc:28:8a:c7:b1:05:7d:00:e5:c7:56:63:
5d:84:cd:a0:b4:23:34:eb:a7:8f:af:b6:4a:f3:b1:
a0:f5:f1:8b:69:e7:66:f1:b2:3c:78:00:a5:d7:61:
c2:29:31:9f:c2:df:38:81:9f:ca:aa:f0:fe:8f:20:
89:dc:0a:26:87:5c:87:f7:1d:24:56:f9:6b:3c:66:
28:5e:41:67:29:b6:98:aa:72:e5:14:8c:bd:33:2a:
da:55:21:a8:7f:4b:97:cc:81:2a:f0:07:37:98:62:
cd:2a:de:f7:10:27:16:dd:af:30:ee:0b:51:a4:1c:
04:23:91:48:85:c4:cb:de:11:91:10:1c:80:3f:7c:
9a:a3:26:2f:01:42:84:0f:fd:ca:9c:c3:de:7b:f8:
28:76:74:12:92:35:13:fc:d0:ac:4f:ce:30:d0:4d:
6e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E6:9E:E2:BE:31:49:51:CA:E4:70:BD:1C:22:84:4D:4E:01:91:5D
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/juae4r4xSVHK5HC9HCKETU4BkV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.212.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:51:2e:6b:36:03:fe:0a:e6:cc:7f:8a:dc:b3:82:10:1c:4e:
65:fe:8c:ae:a4:04:09:f9:6e:a2:8a:62:db:c6:fd:c5:90:d3:
e4:f5:ac:bd:d3:ee:3f:f4:19:0d:8c:2b:54:4a:e8:4f:11:8b:
e3:ee:eb:25:a6:ff:4a:77:02:11:dc:8f:47:d1:b1:ef:2b:6a:
21:35:12:24:23:e1:b7:1e:cf:3c:42:72:fb:db:0a:94:94:d7:
3b:c5:a4:42:a1:9f:a7:f7:6e:38:54:cd:44:ff:be:a3:b4:dc:
b0:0a:c4:48:31:bc:0a:1a:2f:f6:0f:e8:ef:fb:85:47:5b:10:
6c:ef:cc:8c:18:22:42:96:69:5d:c0:98:98:b9:51:1f:82:52:
a2:52:ca:ed:d3:1a:e2:d0:e2:42:0b:09:a2:b7:3e:b8:e6:11:
e4:c3:e0:28:1b:f6:0b:75:f4:6d:40:1a:21:c7:cf:d0:89:14:
8c:3e:17:d5:3a:fb:ed:6a:f9:1c:fb:48:83:07:50:90:e3:66:
d7:56:15:90:77:ed:5c:7e:2d:9f:76:9c:4d:0f:5b:85:3c:26:
37:99:02:ed:22:a5:56:06:0e:b5:56:1e:94:aa:a1:2d:5f:90:
49:e7:39:ab:c7:22:6a:ba:5a:8e:1c:44:68:bd:86:50:71:a4:
c7:1d:57:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:49:14 2024 by rpki-client on console-fra.rpki-client.org