Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/EsNde2nZ0dUcA8Xoq5-tHg_EXc8.roa
File: EsNde2nZ0dUcA8Xoq5-tHg_EXc8.roa (raw, json)
Hash identifier: EuB6IqBcAAWKbULQ1dsjzb0/Ucv72mc0J9mJsdHmCGA=
Subject key identifier: 12:C3:5D:7B:69:D9:D1:D5:1C:03:C5:E8:AB:9F:AD:1E:0F:C4:5D:CF
Certificate issuer: /CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Certificate serial: 01947F105D701793F939EBD3AA784A1E0445
Authority key identifier: 4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/EsNde2nZ0dUcA8Xoq5-tHg_EXc8.roa
Signing time: Sun 19 Jan 2025 14:56:06 +0000
ROA not before: Sun 19 Jan 2025 14:56:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206873
IP address blocks: 185.173.176.0/24 maxlen: 24
185.173.177.0/24 maxlen: 24
185.173.178.0/24 maxlen: 24
185.173.179.0/24 maxlen: 24
194.150.215.0/24 maxlen: 24
194.150.234.0/24 maxlen: 24
194.150.235.0/24 maxlen: 24
2a0b:6900::/48 maxlen: 48
2a0b:6900:1::/48 maxlen: 48
2a0b:6900:2::/48 maxlen: 48
2a0b:6900:3::/48 maxlen: 48
2a0b:6900:4::/48 maxlen: 48
2a0b:6900:5::/48 maxlen: 48
2a0b:6900:7::/48 maxlen: 48
2a0b:6900:8::/48 maxlen: 48
2a0b:6900:9::/48 maxlen: 48
2a0b:6900:10::/48 maxlen: 48
2a0b:6900:11::/48 maxlen: 48
2a0b:6900:daf::/48 maxlen: 48
2a0b:6900:185d::/48 maxlen: 48
2a0b:6901:1::/48 maxlen: 48
2a0b:6901:2::/48 maxlen: 48
2a0b:6901:3::/48 maxlen: 48
2a0b:6901:4::/48 maxlen: 48
2a0b:6901:5::/48 maxlen: 48
2a0b:6901:6::/48 maxlen: 48
2a0b:6901:7::/48 maxlen: 48
2a0b:6901:8::/48 maxlen: 48
2a0b:6901:9::/48 maxlen: 48
2a0b:6901:10::/48 maxlen: 48
2a0b:6903::/48 maxlen: 48
2a0b:6903:fdb::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7f:10:5d:70:17:93:f9:39:eb:d3:aa:78:4a:1e:04:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Validity
Not Before: Jan 19 14:56:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12c35d7b69d9d1d51c03c5e8ab9fad1e0fc45dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e6:cf:95:06:8f:59:18:b2:9b:82:66:79:fc:
dc:bb:44:9d:74:49:3f:4a:6e:f7:09:36:27:81:a6:
d1:7b:b5:ce:31:09:8c:6c:87:77:86:0c:44:12:df:
df:ab:11:1d:94:eb:02:8f:6b:82:4f:9d:20:e6:6e:
a8:f9:ae:1f:2a:24:02:f7:f9:3d:f3:84:c9:5a:c9:
cd:e0:33:14:08:e8:fb:1c:4f:43:15:ef:99:6b:95:
3d:8f:ae:de:78:8a:2c:56:e3:3d:bc:f8:6e:ea:6b:
34:30:30:94:a6:40:a6:a0:c0:48:1a:e1:95:a2:de:
ec:9c:36:1b:d6:73:8c:48:31:90:7f:05:49:96:bc:
8c:6d:44:27:06:7b:7f:f7:3a:87:43:99:0c:d2:f9:
61:17:56:bf:01:b2:f2:76:6f:73:b4:0a:fe:89:45:
3b:84:af:88:26:3d:7c:a5:3b:ad:0d:d0:cf:df:02:
3f:b9:b8:d8:63:54:e6:74:91:9b:bc:d8:88:4a:53:
7f:69:a1:3d:b4:de:f9:d6:11:e9:f6:cf:df:4d:4e:
f5:bd:64:ca:bc:a4:4b:d6:5e:61:73:3f:46:19:70:
3c:b2:b6:8a:73:b5:09:63:ce:69:b1:ff:0e:f1:a0:
61:9b:f3:26:19:35:71:bb:67:a9:f0:2c:96:6b:9a:
4b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C3:5D:7B:69:D9:D1:D5:1C:03:C5:E8:AB:9F:AD:1E:0F:C4:5D:CF
X509v3 Authority Key Identifier:
keyid:4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/EsNde2nZ0dUcA8Xoq5-tHg_EXc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.176.0/22
194.150.215.0/24
194.150.234.0/23
IPv6:
2a0b:6900::-2a0b:6900:5:ffff:ffff:ffff:ffff:ffff
2a0b:6900:7::-2a0b:6900:9:ffff:ffff:ffff:ffff:ffff
2a0b:6900:10::/47
2a0b:6900:daf::/48
2a0b:6900:185d::/48
2a0b:6901:1::-2a0b:6901:9:ffff:ffff:ffff:ffff:ffff
2a0b:6901:10::/48
2a0b:6903::/48
2a0b:6903:fdb::/48
Signature Algorithm: sha256WithRSAEncryption
0f:1d:44:75:a4:25:ce:33:c2:65:74:1f:91:f4:91:ea:78:c6:
d2:59:cc:64:5b:95:37:1b:82:93:5f:4e:63:8a:b6:7d:3d:4a:
9c:ed:e4:9b:80:91:ff:23:2a:3d:70:15:bf:5b:aa:58:95:db:
f3:f0:4f:b8:41:7f:76:eb:47:97:13:76:df:a7:39:42:16:d0:
17:67:da:f9:8f:b0:65:af:93:6b:f0:88:1e:e4:56:84:a6:c2:
ee:04:2a:c1:3f:30:0f:79:87:e6:7e:10:77:f7:e9:41:60:bf:
21:96:10:a2:59:f2:f4:0f:ef:07:e2:84:70:9c:9b:e7:31:2f:
c8:4c:4c:ef:86:ad:37:59:41:0a:56:5c:04:c2:ab:a0:60:75:
1e:cc:16:c7:76:31:65:f6:c6:f1:77:83:51:e1:af:89:bf:bf:
4b:d4:0a:03:b5:a7:4a:2f:45:1d:eb:6f:ac:ff:86:9d:93:17:
ee:cb:ef:ff:31:be:c2:41:d3:4e:54:de:77:b4:98:2a:13:69:
0c:7f:0e:34:5f:f0:2d:cf:32:1a:6f:60:6c:fe:29:20:15:f5:
96:64:70:d4:78:00:f8:a2:cf:f5:70:16:5c:5d:f5:4b:c9:6f:
f4:db:e1:61:f1:30:7d:f0:53:62:5e:2e:8c:4c:66:5a:36:a7:
75:5c:c4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:26:05 2025 by rpki-client