Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/EBqvvJDk7JR4tFCwKvawsoTa1Sw.roa
File: EBqvvJDk7JR4tFCwKvawsoTa1Sw.roa (raw, json)
Hash identifier: 1K8UJQNdmO06+zflMgoGEadPPOIqBcbxKM1YQjasVzM=
Subject key identifier: 10:1A:AF:BC:90:E4:EC:94:78:B4:50:B0:2A:F6:B0:B2:84:DA:D5:2C
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 018CC725B2C3B311211611928F69F35C4290
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/EBqvvJDk7JR4tFCwKvawsoTa1Sw.roa
Signing time: Mon 01 Jan 2024 22:29:45 +0000
ROA not before: Mon 01 Jan 2024 22:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 271932
IP address blocks: 37.148.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:b2:c3:b3:11:21:16:11:92:8f:69:f3:5c:42:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 22:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=101aafbc90e4ec9478b450b02af6b0b284dad52c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:76:3e:74:26:db:a4:28:0d:d4:0e:ce:fc:8b:
da:28:f6:ab:64:f8:26:21:98:d4:33:f3:8d:d8:2a:
11:89:e1:8b:9b:85:6e:04:62:88:2a:7f:8c:41:2d:
29:d9:9a:8f:51:d8:65:46:6f:8e:c6:fd:fe:26:ac:
48:ca:3c:95:a7:24:33:05:70:94:a0:38:f5:84:fe:
b9:4f:ca:60:13:7a:43:19:81:c7:51:20:72:1d:d7:
69:4b:c1:43:65:dd:23:c3:62:36:21:cb:65:86:c7:
27:be:07:8a:1c:36:0d:df:69:f2:fa:04:1a:26:43:
70:02:56:7a:cf:d8:3d:22:b4:24:ab:2a:0c:24:ce:
9d:0a:c4:45:84:4e:f1:f5:c8:5f:bd:fc:ab:65:0b:
fd:3d:89:79:41:c4:f1:06:77:a1:2e:07:7e:7b:5d:
47:1c:d0:18:4e:25:64:08:a6:54:3b:95:35:f7:2b:
c3:da:0b:6a:e5:45:83:a7:2f:ab:e3:92:06:02:0e:
21:7f:67:71:39:42:dc:1f:ac:43:5d:b3:dc:39:9a:
de:4e:28:26:8b:60:14:69:0b:19:f7:25:fe:c0:3a:
cd:42:09:1b:28:fe:6c:42:2c:b3:14:b9:b9:12:08:
bb:44:0b:99:a7:d9:40:63:44:60:ad:34:6e:1c:b8:
6b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1A:AF:BC:90:E4:EC:94:78:B4:50:B0:2A:F6:B0:B2:84:DA:D5:2C
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/EBqvvJDk7JR4tFCwKvawsoTa1Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.216.0/23
Signature Algorithm: sha256WithRSAEncryption
42:4e:be:c4:db:b4:9b:9a:6c:73:69:db:78:c1:4c:fc:4a:8a:
a8:f5:06:78:1f:e8:84:82:b8:26:b7:78:5d:29:3a:1d:71:d5:
78:6c:2e:ce:04:12:f2:e5:a1:f4:d6:71:24:14:c8:90:6f:d9:
25:9b:ea:11:25:b4:81:6b:7b:cc:1b:aa:a6:69:80:91:89:bc:
75:45:72:17:57:f3:99:c3:21:18:da:06:e4:7f:76:7d:e5:00:
b4:e7:c5:0e:05:d5:3b:ac:d8:c1:5f:d7:44:eb:49:1b:91:b1:
d6:af:74:65:3e:db:40:0e:8b:73:32:57:44:ab:ae:a9:68:48:
c5:fe:c2:1c:d9:06:18:82:8d:12:1e:2c:44:fd:cd:7f:26:aa:
37:71:55:ab:89:d7:22:e4:51:32:85:3e:dd:2b:28:8d:7b:3b:
74:ea:bd:69:c8:69:76:46:7c:9f:12:55:55:67:92:81:93:77:
f4:4e:89:c5:5a:ba:6d:d8:2e:2c:70:89:80:c0:4b:d5:35:ed:
a5:cf:86:e2:cd:a3:cf:20:40:e5:6f:aa:c0:20:9c:9d:8e:03:
98:82:37:33:6d:0e:b2:7a:09:00:aa:99:f8:4a:b3:09:32:dd:
0e:aa:63:50:d4:56:64:3b:0c:79:7f:50:7f:57:d2:39:b0:37:
af:05:91:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:08:12 2024 by rpki-client on console-ams.rpki-client.org