Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/E_bSdfXNNwpmIVYDLvt9lBGxswY.roa
File: E_bSdfXNNwpmIVYDLvt9lBGxswY.roa (raw, json)
Hash identifier: MIjCg3n3Z9sdZAO27N3TPvwQ05VTp1FXZS8hFzk4zJU=
Subject key identifier: 13:F6:D2:75:F5:CD:37:0A:66:21:56:03:2E:FB:7D:94:11:B1:B3:06
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 018CC3B74582D8E1084DB2AC2CFCB100394C
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/E_bSdfXNNwpmIVYDLvt9lBGxswY.roa
Signing time: Mon 01 Jan 2024 06:30:17 +0000
ROA not before: Mon 01 Jan 2024 06:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43782
IP address blocks: 109.74.208.0/20 maxlen: 32
185.43.84.0/23 maxlen: 32
164.177.176.0/21 maxlen: 32
79.132.96.0/19 maxlen: 32
2a00:1138::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.mft
rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:45:82:d8:e1:08:4d:b2:ac:2c:fc:b1:00:39:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 06:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13f6d275f5cd370a662156032efb7d9411b1b306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a4:ba:3d:b1:8b:d9:19:a5:fa:58:5d:a4:dd:
df:84:2e:b2:c8:84:ed:39:af:79:3f:50:03:ad:62:
ea:aa:f0:0f:7e:15:d9:d9:c5:b0:3b:bb:bc:47:cf:
7c:d9:40:88:8a:2b:65:70:4e:60:1b:43:53:cf:ad:
db:50:a8:33:ea:8c:8a:26:01:9f:f2:35:15:00:15:
1f:b9:1a:e8:06:68:c3:47:cb:8e:fa:1b:ee:5e:d3:
93:ed:cc:cb:a5:99:62:5a:60:21:ca:d1:23:11:af:
ca:6a:bb:9d:ef:ea:97:01:12:00:6a:60:ce:51:fa:
51:b4:0a:40:40:17:f8:da:0d:53:c8:b6:9d:35:e7:
ca:25:f3:44:dd:d9:b7:b9:b1:13:0a:9d:96:22:3c:
86:40:02:6e:97:fd:92:41:ac:71:15:31:31:22:0f:
76:9d:31:1e:50:94:2b:3a:aa:97:e3:53:5f:c2:93:
cd:1c:1c:fa:e9:c9:27:74:3c:8a:fa:f2:bb:f6:e6:
39:ac:58:76:93:57:ca:f9:ab:a1:0c:ff:7d:ee:0c:
d6:f1:69:15:b4:fd:ae:23:ef:d1:13:7f:f3:99:96:
c9:94:af:ad:b5:39:7d:81:24:8e:00:35:0d:1a:02:
3f:d9:bc:82:27:cb:7d:b9:13:61:b3:db:23:c3:c9:
35:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F6:D2:75:F5:CD:37:0A:66:21:56:03:2E:FB:7D:94:11:B1:B3:06
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/E_bSdfXNNwpmIVYDLvt9lBGxswY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.96.0/19
109.74.208.0/20
164.177.176.0/21
185.43.84.0/23
IPv6:
2a00:1138::/32
Signature Algorithm: sha256WithRSAEncryption
50:21:4e:8e:53:b6:84:02:84:88:b6:f7:7d:67:1e:b3:2b:42:
d9:4e:41:82:8e:32:ef:0a:a0:f1:ce:2c:1f:3f:da:db:d5:72:
40:cf:a7:b2:c3:a5:6a:5d:ad:d6:89:36:ee:87:fc:4d:68:10:
f1:c0:c9:1f:dc:d6:96:8a:71:52:f4:9f:f6:2e:5a:fc:6f:f0:
51:b1:c9:fc:2b:f9:86:db:d1:87:12:72:d3:93:3c:b2:de:4d:
b9:36:f5:97:67:39:fe:67:84:8d:3f:8a:43:06:14:7f:9e:63:
18:9a:74:da:aa:81:6e:83:f7:b2:0d:9f:f9:72:7e:43:7f:89:
2e:f8:7d:65:94:0a:54:f1:e1:59:51:8b:e5:c7:89:8e:40:d6:
d3:b0:d0:b8:89:75:67:5e:2a:80:a4:6a:30:e2:43:a6:f1:e6:
ae:de:d1:bc:f5:1c:e3:e9:00:36:a2:e5:c5:58:3a:8e:32:13:
b1:1c:6e:20:f7:a1:22:2b:82:73:e1:c3:0a:c9:8a:3b:fc:d4:
4b:6e:6e:09:f5:b4:78:cb:51:1e:91:c3:e6:74:87:66:4c:37:
ee:12:ac:6a:18:74:0b:9c:1b:cc:3b:7c:04:97:c5:a0:f7:f6:
8f:2c:c6:32:a8:f7:3d:3e:30:3e:23:a5:97:59:c1:64:c3:b8:
00:98:31:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 13:50:08 2024 by rpki-client on console-fra.rpki-client.org