Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/EvW8E73It9YLucFNsKfconOOmCs.roa
File: EvW8E73It9YLucFNsKfconOOmCs.roa (raw, json)
Hash identifier: q08Dab9FUDIN6tn7ugCA6QKwjbI5ns1EGXnci6pIcq8=
Subject key identifier: 12:F5:BC:13:BD:C8:B7:D6:0B:B9:C1:4D:B0:A7:DC:A2:73:8E:98:2B
Certificate issuer: /CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Certificate serial: 018CC2DB5A4A1C66A09CD21C8F2575B9ED4A
Authority key identifier: 5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/EvW8E73It9YLucFNsKfconOOmCs.roa
Signing time: Mon 01 Jan 2024 02:30:04 +0000
ROA not before: Mon 01 Jan 2024 02:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29037
IP address blocks: 217.17.16.0/20 maxlen: 24
192.54.68.0/22 maxlen: 24
192.54.67.0/24 maxlen: 24
93.119.240.0/20 maxlen: 24
82.115.96.0/19 maxlen: 24
212.7.160.0/19 maxlen: 24
77.236.112.0/21 maxlen: 24
185.39.108.0/22 maxlen: 24
79.171.176.0/21 maxlen: 24
178.248.216.0/21 maxlen: 24
5.57.192.0/21 maxlen: 24
185.5.168.0/22 maxlen: 24
77.236.104.0/21 maxlen: 24
2a01:5580::/32 maxlen: 48
2a02:1628::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:5a:4a:1c:66:a0:9c:d2:1c:8f:25:75:b9:ed:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Validity
Not Before: Jan 1 02:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12f5bc13bdc8b7d60bb9c14db0a7dca2738e982b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ea:10:3c:41:4f:d5:7c:b8:dc:09:06:28:6e:
57:a4:27:f3:56:72:de:a7:69:b7:cb:53:0b:43:87:
bc:76:a3:6c:6d:a4:ab:2d:0b:8f:6c:f7:70:89:86:
dd:20:b0:a1:e1:76:cc:06:54:d9:6c:b2:32:d4:e0:
63:68:be:0a:05:d8:ff:0b:5b:c2:2d:b5:a7:32:52:
78:7c:ae:d9:fa:98:39:01:b5:70:a7:d9:f3:27:1c:
e4:16:b1:2d:4d:e5:ec:28:ac:d2:bb:9e:a1:c3:e7:
3d:3e:43:0d:77:a8:1d:e1:58:b4:9b:49:36:79:23:
23:96:1d:6c:37:2c:43:cc:a7:30:9a:31:db:51:86:
4d:d4:b7:f7:54:51:da:4e:6e:28:a1:79:a0:7a:3a:
b4:9a:46:a9:cd:13:bc:d4:61:9f:c4:aa:46:fe:7a:
99:ab:4b:eb:b7:c6:6e:7b:e4:fa:c2:10:ef:20:1e:
71:25:bc:52:36:ee:22:c6:84:5e:aa:62:9f:80:ac:
fd:2b:20:88:72:79:38:7f:f6:d3:10:0a:4f:97:5a:
b5:7a:62:35:9c:a2:97:01:19:75:7b:0c:7d:11:38:
1f:f0:f2:73:da:44:7a:31:18:fa:2a:a7:1e:ca:40:
bd:37:f7:38:85:49:48:48:7a:26:db:58:5e:1c:36:
40:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F5:BC:13:BD:C8:B7:D6:0B:B9:C1:4D:B0:A7:DC:A2:73:8E:98:2B
X509v3 Authority Key Identifier:
keyid:5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/EvW8E73It9YLucFNsKfconOOmCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.192.0/21
77.236.104.0-77.236.119.255
79.171.176.0/21
82.115.96.0/19
93.119.240.0/20
178.248.216.0/21
185.5.168.0/22
185.39.108.0/22
192.54.67.0-192.54.71.255
212.7.160.0/19
217.17.16.0/20
IPv6:
2a01:5580::/32
2a02:1628::/32
Signature Algorithm: sha256WithRSAEncryption
62:39:8b:99:7e:20:34:68:a7:ef:56:e0:39:b3:39:52:79:d9:
ac:e9:c9:fa:23:fb:45:e2:91:db:81:c0:c8:e3:5b:38:dc:fb:
54:d9:8b:fd:ff:2a:05:ad:c1:bc:b5:9f:1a:c7:da:a9:2b:d7:
9a:8f:8f:4b:2f:a9:3f:c7:d4:ea:b7:89:52:04:35:6d:d2:cf:
97:8f:35:1a:fe:ee:b8:1a:51:23:45:fd:46:d1:fe:6a:88:cc:
64:cc:7a:0f:13:29:6c:38:cb:55:e5:ff:22:e1:76:7c:86:ab:
c7:cf:55:14:dc:95:5b:56:3e:a0:f0:a6:6b:60:a4:d9:ee:98:
8a:db:92:d0:73:60:c8:7d:d2:e9:fb:e8:13:22:24:bc:cf:46:
b9:55:34:e9:46:7f:db:73:97:79:aa:4a:36:d7:c4:80:32:df:
88:e7:e3:df:77:c1:91:11:51:5a:b6:dc:76:c8:8d:15:7d:9b:
83:32:d0:ec:92:a5:78:5f:93:68:f0:31:2f:fd:c1:af:73:e1:
f0:81:f1:e5:a4:a5:cd:80:9a:77:6e:cc:4e:1d:c7:37:fd:a7:
7d:4b:6d:c4:f3:6b:00:e8:87:24:5d:23:76:23:7b:9e:a0:d1:
20:48:0f:fa:27:ae:23:28:d3:a6:d0:31:08:6b:58:e8:e4:9e:
3b:3a:41:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:56:54 2024 by rpki-client on console-ams.rpki-client.org