Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/gXk4sj1XIJBcFzof82UMBUJmjXA.roa
File: gXk4sj1XIJBcFzof82UMBUJmjXA.roa (raw, json)
Hash identifier: Ma8xuQfXbGgYl6chwQoOnVbuZuC2UmdnK8F9bm0c9K8=
Subject key identifier: 81:79:38:B2:3D:57:20:90:5C:17:3A:1F:F3:65:0C:05:42:66:8D:70
Certificate issuer: /CN=114c56d595de33cb8751739dbdd9b45edb2eff0c
Certificate serial: 018CC425483C093144356D652B69E49693DC
Authority key identifier: 11:4C:56:D5:95:DE:33:CB:87:51:73:9D:BD:D9:B4:5E:DB:2E:FF:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/gXk4sj1XIJBcFzof82UMBUJmjXA.roa
Signing time: Mon 01 Jan 2024 08:30:26 +0000
ROA not before: Mon 01 Jan 2024 08:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60274
IP address blocks: 185.233.67.0/24 maxlen: 24
193.203.252.0/24 maxlen: 24
2a10:df80::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:48:3c:09:31:44:35:6d:65:2b:69:e4:96:93:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=114c56d595de33cb8751739dbdd9b45edb2eff0c
Validity
Not Before: Jan 1 08:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=817938b23d5720905c173a1ff3650c0542668d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fb:c1:86:73:02:e7:54:3f:a4:4c:a3:37:23:
87:ec:69:a9:44:5c:d8:8d:88:76:db:81:82:eb:83:
fb:a7:82:ec:be:f9:40:f1:2d:67:c5:e7:9f:9c:ff:
10:6d:b6:0d:c9:f5:c4:84:22:78:2e:8d:a8:2d:90:
f4:ed:b0:de:b8:6f:d0:89:41:c6:51:8b:32:03:4f:
52:b7:1c:0a:22:de:6d:87:a4:51:ef:ee:e1:63:49:
95:1e:89:58:f0:5a:35:cb:67:00:5c:ae:37:24:04:
e6:12:19:0f:ad:86:6a:2f:ca:68:52:c0:3f:1d:a3:
7b:12:b3:1b:9e:ca:cb:7e:bb:08:65:52:9e:10:0d:
9e:97:98:33:cf:0b:76:1f:97:2b:d5:f2:3f:64:e4:
ab:2b:74:fa:c2:90:26:df:a7:5e:74:9c:f2:e5:fc:
75:e0:e7:fd:35:e9:61:69:03:67:04:45:c7:f5:4f:
d7:51:b4:42:03:c5:4d:28:e7:02:2b:87:d2:2c:f9:
cc:d7:69:0d:09:eb:d3:9b:25:b3:80:fe:4f:47:11:
84:24:f6:74:dd:5d:10:b4:ed:f7:70:f1:ed:b8:98:
90:32:45:eb:ba:2f:24:e3:0a:c4:a3:91:9d:d1:7c:
c4:69:19:a4:fd:4d:68:9d:70:93:88:1d:25:38:56:
c7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:79:38:B2:3D:57:20:90:5C:17:3A:1F:F3:65:0C:05:42:66:8D:70
X509v3 Authority Key Identifier:
keyid:11:4C:56:D5:95:DE:33:CB:87:51:73:9D:BD:D9:B4:5E:DB:2E:FF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/gXk4sj1XIJBcFzof82UMBUJmjXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.67.0/24
193.203.252.0/24
IPv6:
2a10:df80::/29
Signature Algorithm: sha256WithRSAEncryption
6c:a2:45:ab:e0:f6:a5:c9:00:bc:ff:fa:e4:ce:ae:14:8a:5f:
d3:bf:39:5e:fa:2f:1e:35:29:ea:67:cd:53:13:09:f8:91:3c:
11:a3:fe:9b:66:61:c9:f5:fe:7a:0d:ff:7e:dc:6c:c9:3a:27:
ed:50:dc:16:22:7b:8b:df:61:66:33:7b:cf:06:15:e2:b5:ad:
68:6c:c0:b2:4f:25:62:a3:c1:6c:5e:94:be:7a:73:04:c3:45:
95:34:72:fb:5e:2a:70:6e:26:9c:5d:1b:79:0d:16:ae:f9:8b:
1e:c5:1b:77:95:f2:73:d2:95:d5:bf:29:ff:9d:b3:79:2f:32:
07:05:0d:64:ca:fd:37:12:46:e1:76:23:a6:cf:6d:23:1f:93:
ce:fc:c1:b9:ff:fc:44:3f:0b:54:76:10:f4:0d:7a:7e:84:3a:
3e:bf:28:1b:b2:bb:12:ad:f8:0e:64:09:48:96:f4:24:b4:dc:
04:e1:f9:5c:7d:fe:dd:47:f1:31:62:ae:f4:4b:a8:80:49:b9:
9c:a4:f7:70:2f:41:82:8c:e5:9d:24:7b:00:ae:07:47:77:be:
4d:7c:de:f9:c5:b6:ef:f5:4f:16:0e:9b:02:8d:81:88:61:90:
d0:20:3a:06:22:89:4d:e1:4f:b3:b5:6f:27:c5:d2:f9:e8:84:
c7:4c:92:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 13:59:58 2024 by rpki-client on console-fra.rpki-client.org