Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/EccYyFM3g3eE-aewTsPIIWXkrV0.roa
File: EccYyFM3g3eE-aewTsPIIWXkrV0.roa (raw, json)
Hash identifier: XayC0aCgybE0DyhNAvv/YASN0oTNkRw9SwrZH7vWjig=
Subject key identifier: 11:C7:18:C8:53:37:83:77:84:F9:A7:B0:4E:C3:C8:21:65:E4:AD:5D
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 018EE131BE056D6687302A5B77E1FDC31244
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/EccYyFM3g3eE-aewTsPIIWXkrV0.roa
Signing time: Mon 15 Apr 2024 09:58:37 +0000
ROA not before: Mon 15 Apr 2024 09:58:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 78.136.248.0/23 maxlen: 24
78.136.250.0/23 maxlen: 24
78.136.252.0/23 maxlen: 24
78.136.254.0/24 maxlen: 24
88.204.46.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 15:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:31:be:05:6d:66:87:30:2a:5b:77:e1:fd:c3:12:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Apr 15 09:58:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11c718c85337837784f9a7b04ec3c82165e4ad5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:09:1f:0b:0d:63:f0:09:e4:6c:cf:16:ba:
24:b0:6a:a3:b5:c4:80:ac:e3:9a:29:b4:ed:56:56:
c1:e7:73:a6:99:cf:d5:f1:87:00:b5:bd:33:bc:9e:
d4:49:87:e9:12:04:07:82:9a:2e:af:6a:14:2c:7d:
33:c5:05:2e:05:85:98:b6:1b:12:02:70:1f:08:7b:
e4:4a:2d:3f:52:a2:09:f6:d6:32:03:5e:94:48:fc:
3c:c5:9a:3c:23:37:1a:c3:74:21:32:6a:b4:12:67:
11:3e:0e:ee:97:b1:40:0e:47:59:22:93:e9:90:78:
03:9d:f0:27:de:93:88:46:21:3b:90:39:11:81:f7:
17:09:39:47:34:f8:bd:ff:87:bc:8e:38:02:f3:b1:
cf:28:ce:dc:96:42:b6:b3:a3:36:88:ed:d3:81:5a:
1a:e0:4f:ca:be:d3:52:88:8a:8b:58:02:16:5a:eb:
9b:96:f9:b9:bb:e5:f0:de:48:5c:95:be:d0:e6:dd:
8f:67:10:07:2a:cc:54:b9:ee:84:8a:59:d9:02:75:
69:f6:81:8d:ca:f8:f8:4e:90:e9:ad:74:8e:68:7e:
91:bb:ef:91:b0:00:60:44:97:29:8a:67:0e:c9:c2:
5f:60:2e:6b:0a:f2:42:8d:ad:b3:2c:d0:5e:77:cd:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C7:18:C8:53:37:83:77:84:F9:A7:B0:4E:C3:C8:21:65:E4:AD:5D
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/EccYyFM3g3eE-aewTsPIIWXkrV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.248.0-78.136.254.255
88.204.46.0/23
Signature Algorithm: sha256WithRSAEncryption
15:ca:72:e2:de:7a:d5:00:28:b2:e6:ac:e6:8a:ef:ff:5c:f9:
9e:21:06:5d:e0:c2:9c:90:d6:3d:a2:50:41:fa:1a:2c:0c:dc:
e0:6f:14:f6:ab:62:13:52:a5:66:92:a0:b9:11:3d:88:f4:a4:
d6:16:5a:b6:da:4d:c8:36:7b:97:f9:bc:86:4a:df:49:e1:ce:
64:f4:3e:6c:22:55:36:c6:8c:c5:1b:22:3f:2d:87:f2:3c:89:
b5:49:f8:56:cd:f6:99:c2:dd:e3:93:cb:39:ba:49:c4:d8:30:
ca:6e:4e:7e:8c:bd:cd:8b:f9:6d:84:51:1a:9f:7c:41:df:18:
fd:36:53:e6:86:66:ae:71:28:36:d8:fa:7b:02:c5:b6:36:7c:
7e:80:26:2f:6f:43:31:6f:08:3a:7a:95:b5:2b:9b:18:8d:06:
69:30:f2:0d:9a:53:dc:2b:5f:69:4f:6c:db:4c:b8:93:a8:79:
e7:4f:f0:4c:57:88:0b:22:09:56:cd:90:fc:db:92:32:73:73:
e4:c1:de:d7:ab:47:13:18:e4:9a:31:eb:ea:21:1c:66:1d:d2:
ae:bb:4d:c8:07:4d:fb:56:23:ad:16:58:5e:3d:36:af:44:85:
c4:1c:fc:9c:73:b4:71:8c:dd:8f:80:56:91:1f:84:8f:a6:93:
bd:00:c6:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 5 19:39:15 2024 by rpki-client on console-ams.rpki-client.org