Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/Je1cV_fZfkG1Om6vtOMH1o6qMfk.roa
File: Je1cV_fZfkG1Om6vtOMH1o6qMfk.roa (raw, json)
Hash identifier: dVQZpO122HALT2DWGeq1k7OZCrZzOYPGr7inJTx4r/I=
Subject key identifier: 25:ED:5C:57:F7:D9:7E:41:B5:3A:6E:AF:B4:E3:07:D6:8E:AA:31:F9
Certificate issuer: /CN=23a7b593c804a683f0c8fa3eda9335af92a89044
Certificate serial: 018FDF52FA01A782E72E027C4CB7300CBF78
Authority key identifier: 23:A7:B5:93:C8:04:A6:83:F0:C8:FA:3E:DA:93:35:AF:92:A8:90:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6e1k8gEpoPwyPo-2pM1r5KokEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/Je1cV_fZfkG1Om6vtOMH1o6qMfk.roa
Signing time: Mon 03 Jun 2024 18:18:27 +0000
ROA not before: Mon 03 Jun 2024 18:18:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47164
IP address blocks: 185.174.180.0/22 maxlen: 24
185.174.180.0/24 maxlen: 24
185.174.181.0/24 maxlen: 24
185.174.182.0/24 maxlen: 24
185.174.183.0/24 maxlen: 24
185.227.104.0/22 maxlen: 24
185.227.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/I6e1k8gEpoPwyPo-2pM1r5KokEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/I6e1k8gEpoPwyPo-2pM1r5KokEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6e1k8gEpoPwyPo-2pM1r5KokEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:df:52:fa:01:a7:82:e7:2e:02:7c:4c:b7:30:0c:bf:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a7b593c804a683f0c8fa3eda9335af92a89044
Validity
Not Before: Jun 3 18:18:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25ed5c57f7d97e41b53a6eafb4e307d68eaa31f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:eb:55:6c:c1:17:0f:1d:5e:18:c4:bd:2f:
b5:c4:9e:d4:08:51:17:44:8e:a6:04:79:47:a1:26:
c3:ac:12:f7:0f:0e:af:3a:87:5d:0e:50:ed:3b:6d:
1e:c4:47:60:e0:cd:f2:fd:ba:6b:04:51:d7:66:11:
7f:6c:d4:37:35:62:42:82:8a:d7:02:82:47:32:21:
df:10:e4:10:2c:0d:ff:a9:ec:5c:c2:e3:b4:2e:6e:
3e:42:c3:ba:55:f8:29:b7:ee:c6:78:fb:4e:4e:02:
93:d0:6a:3b:ba:35:db:74:7e:16:4f:bf:06:11:b0:
ed:85:7f:ba:51:a4:c7:f5:3d:f0:fc:17:a1:f6:9a:
9a:17:24:5f:94:2e:50:ff:9d:99:44:e4:b4:fb:e6:
36:3b:37:a8:10:a1:68:05:f6:b8:44:8b:08:b5:bb:
2e:6e:dd:51:fc:1f:1c:85:a2:57:60:6c:f6:0b:54:
f6:0c:fc:39:b8:c8:0d:4e:bb:68:3b:e4:54:aa:a1:
0a:00:44:67:3a:0b:ca:91:3f:47:50:f9:06:71:16:
0b:c3:e1:52:80:b5:97:29:ff:89:20:59:39:3a:b6:
e8:67:e2:d6:39:4c:10:e8:c9:35:83:11:25:7b:9c:
14:1f:45:61:f0:c3:2d:4f:9d:c2:6d:bd:ed:a1:1f:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:ED:5C:57:F7:D9:7E:41:B5:3A:6E:AF:B4:E3:07:D6:8E:AA:31:F9
X509v3 Authority Key Identifier:
keyid:23:A7:B5:93:C8:04:A6:83:F0:C8:FA:3E:DA:93:35:AF:92:A8:90:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6e1k8gEpoPwyPo-2pM1r5KokEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/Je1cV_fZfkG1Om6vtOMH1o6qMfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/ddf559-433b-408f-a5b2-3fb5adde6040/1/I6e1k8gEpoPwyPo-2pM1r5KokEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.180.0/22
185.227.104.0/22
Signature Algorithm: sha256WithRSAEncryption
78:f0:64:a1:d4:67:d6:d0:39:59:5d:ea:b8:8a:cf:53:fa:30:
3f:b0:ff:cb:ea:f4:1f:b1:06:b3:8d:a1:de:d1:a2:e9:82:88:
cd:b7:78:f9:07:b8:35:50:90:7a:1c:c9:06:0b:98:57:6a:54:
6b:d0:6c:c5:5f:15:14:a4:d6:3a:ff:90:fc:4b:fc:a4:fa:73:
bd:8b:88:e6:4c:59:fa:ed:ca:ab:da:dc:21:bf:ff:73:c3:9e:
19:58:9a:8c:3c:0d:12:43:46:5d:41:0e:1c:57:77:44:65:8a:
47:a2:d0:c8:92:bd:55:46:8b:01:83:97:30:f9:01:ca:59:e2:
88:39:a3:9a:3a:64:81:c4:c4:b6:e9:5b:1e:e2:9d:6a:b8:8e:
a8:fe:e4:9d:48:a1:25:e3:db:5a:2a:65:82:94:f4:b2:c6:c0:
94:81:af:82:2e:d8:91:35:a9:31:88:05:22:76:b7:8e:96:d2:
2a:87:82:9a:e4:06:42:d2:e7:d6:d8:d7:c9:77:99:ad:d5:76:
fe:be:9f:aa:a6:d2:31:f3:62:f7:75:ed:83:f9:8a:1f:a4:34:
a3:a2:94:9d:5f:67:64:27:6b:cf:13:24:9d:e3:4f:e4:62:e4:
1f:06:a8:84:56:fd:d1:b1:1e:34:07:6a:90:94:cd:1d:7d:de:
4d:4f:26:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 09:07:54 2024 by rpki-client on console-ams.rpki-client.org