Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/eR1CZUlc3AW_oqClqVlGwk4yRU8.roa
File: eR1CZUlc3AW_oqClqVlGwk4yRU8.roa (raw, json)
Hash identifier: 0M8SX0B+iVeJQlWdwNL080nD0otnRey3k1YVu0HjZoA=
Subject key identifier: 79:1D:42:65:49:5C:DC:05:BF:A2:A0:A5:A9:59:46:C2:4E:32:45:4F
Certificate issuer: /CN=571a74551127e90d73a2d3b295f1a6ff51519fdf
Certificate serial: 018CC9BC81D2FE1CB6C23C626FE7666E4DD1
Authority key identifier: 57:1A:74:55:11:27:E9:0D:73:A2:D3:B2:95:F1:A6:FF:51:51:9F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxp0VREn6Q1zotOylfGm_1FRn98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/eR1CZUlc3AW_oqClqVlGwk4yRU8.roa
Signing time: Tue 02 Jan 2024 10:33:43 +0000
ROA not before: Tue 02 Jan 2024 10:33:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202170
IP address blocks: 185.51.93.0/24 maxlen: 24
185.51.94.0/24 maxlen: 24
185.51.95.0/24 maxlen: 24
185.51.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/Vxp0VREn6Q1zotOylfGm_1FRn98.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/Vxp0VREn6Q1zotOylfGm_1FRn98.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vxp0VREn6Q1zotOylfGm_1FRn98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:81:d2:fe:1c:b6:c2:3c:62:6f:e7:66:6e:4d:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571a74551127e90d73a2d3b295f1a6ff51519fdf
Validity
Not Before: Jan 2 10:33:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=791d4265495cdc05bfa2a0a5a95946c24e32454f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4b:e1:03:d6:5e:a9:a5:e5:3e:d2:fa:5c:c6:
2b:bc:fa:7b:4d:7d:44:92:ef:28:14:dc:98:36:43:
af:95:cc:4d:78:a3:13:c0:b8:7e:15:3f:d5:ea:72:
6a:f2:e7:fe:e4:38:ef:42:8f:aa:87:e8:05:9a:99:
2c:be:dc:4a:19:6f:47:26:a0:45:44:a9:10:88:8b:
70:02:59:db:48:46:d4:66:5f:a2:3f:52:91:07:f4:
6c:28:46:2a:b9:bb:77:84:f8:9e:f7:ec:2c:72:d7:
bc:88:fd:ee:5c:c7:18:6d:7f:e8:76:25:9c:4b:4c:
51:5d:e4:e3:fd:80:de:8f:f3:81:6f:05:c3:bb:69:
0e:9a:cd:42:25:4c:e7:f5:87:68:51:42:b4:3c:d8:
74:d5:64:07:de:19:f2:06:af:d9:38:53:ca:b2:98:
74:c7:4e:2a:17:2e:2e:4d:d8:8e:7d:ac:1c:5d:27:
5a:88:74:d8:e2:2d:10:c6:4a:e1:05:07:28:f0:70:
5c:5c:25:43:f0:82:b4:e2:e8:ad:6e:91:c3:4f:02:
79:2a:20:43:86:f9:0b:cc:54:c3:97:aa:32:a3:f6:
03:b8:be:93:fc:60:d6:77:c8:4d:aa:e6:6f:3d:3a:
d1:07:d9:71:2c:45:d0:bc:ea:70:62:ef:99:05:a7:
df:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1D:42:65:49:5C:DC:05:BF:A2:A0:A5:A9:59:46:C2:4E:32:45:4F
X509v3 Authority Key Identifier:
keyid:57:1A:74:55:11:27:E9:0D:73:A2:D3:B2:95:F1:A6:FF:51:51:9F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxp0VREn6Q1zotOylfGm_1FRn98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/eR1CZUlc3AW_oqClqVlGwk4yRU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/dc1545-59ed-4b5e-bc3f-6eb0483236df/1/Vxp0VREn6Q1zotOylfGm_1FRn98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.92.0/22
Signature Algorithm: sha256WithRSAEncryption
78:f4:08:03:1c:f7:b5:8f:30:b8:7c:b6:9c:f0:62:9f:3f:e3:
b2:7c:df:6a:dd:1f:5f:7c:76:28:2b:01:3b:74:bb:fa:d2:75:
e4:0d:b5:90:87:a0:c9:cf:62:59:2f:c1:3e:62:38:10:59:6d:
83:d8:0a:27:2e:c3:a5:6a:d4:b7:a4:a2:9d:56:b5:0c:ea:40:
28:db:cc:35:b6:3c:99:a4:8d:56:ad:68:6f:e9:24:77:aa:e6:
b9:5b:0c:da:b6:23:b4:f2:97:a9:ac:0c:8e:ac:93:40:55:52:
00:f1:5d:14:d0:4d:5d:01:ae:de:ea:af:10:9d:c5:49:6c:f2:
cb:79:6d:10:b0:f0:9c:6a:4e:a7:45:33:30:dc:50:a3:0c:25:
39:e7:e1:1c:3e:9d:ad:f2:f8:b6:55:94:db:44:20:da:23:f9:
9c:77:8f:ac:a4:96:8b:c9:83:49:49:d1:41:f2:33:42:40:70:
e7:2f:25:dc:8c:48:c6:be:8b:a4:6d:3c:1f:0d:30:7d:7c:8e:
4b:19:f7:aa:36:0a:29:52:0a:1e:df:27:f7:f5:bd:5f:b3:68:
e7:6a:20:19:c4:c1:17:a7:3c:62:e1:cb:25:53:dd:4f:22:2e:
66:9b:be:b4:61:8d:3f:1d:41:05:b1:e6:2b:ce:ec:a8:4c:62:
8f:2c:1e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:49:39 2024 by rpki-client on console-fra.rpki-client.org