Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/ejJA3khtDDu_A5g2RXZA5gzR8HQ.roa
File: ejJA3khtDDu_A5g2RXZA5gzR8HQ.roa (raw, json)
Hash identifier: kZzjuPyEUu9HhzEXyvKtwkchY0JLpUIY3hBE7gMDiPo=
Subject key identifier: 7A:32:40:DE:48:6D:0C:3B:BF:03:98:36:45:76:40:E6:0C:D1:F0:74
Certificate issuer: /CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Certificate serial: 018CC42525324102D7E6F60D34B43013AC5F
Authority key identifier: F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/ejJA3khtDDu_A5g2RXZA5gzR8HQ.roa
Signing time: Mon 01 Jan 2024 08:30:17 +0000
ROA not before: Mon 01 Jan 2024 08:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6461
IP address blocks: 185.237.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/8YCPGr745rWc1DWaa0SB_HyWMdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/8YCPGr745rWc1DWaa0SB_HyWMdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:25:32:41:02:d7:e6:f6:0d:34:b4:30:13:ac:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Validity
Not Before: Jan 1 08:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a3240de486d0c3bbf039836457640e60cd1f074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:69:a0:48:85:df:f1:9c:3e:bc:67:fc:c2:
3d:a1:79:c1:fd:51:d9:85:0f:51:f8:5e:25:c8:d2:
9a:50:1f:64:e2:52:38:de:0c:1e:6f:77:b0:87:bd:
2d:61:0b:fc:4b:de:cc:d5:42:d0:1a:22:c0:29:54:
b3:3d:00:66:9e:e2:77:06:fb:69:ef:82:b6:d3:56:
a5:0c:7f:d4:54:4d:d6:35:e9:e3:6a:b5:a6:d3:b0:
13:29:02:b4:58:7c:38:22:48:41:9d:30:19:e7:5e:
63:66:11:c3:53:f6:f6:f3:4a:74:20:c7:3a:ea:b6:
05:be:41:85:50:79:b7:24:e7:35:79:f5:77:61:88:
bc:7d:11:30:2b:d0:05:57:41:b1:34:6d:89:b9:19:
b1:31:ca:ed:1c:a1:68:5a:1f:91:e2:ad:fb:4b:5e:
98:62:57:33:cb:36:f3:4c:9f:54:14:08:fa:b5:0f:
15:23:8b:eb:48:b8:29:af:bf:89:ba:87:7e:ad:84:
fd:35:dd:b5:85:e4:cb:53:ce:f7:d7:ad:2a:c2:39:
4c:b3:ae:69:8c:a6:68:78:7b:94:b2:f5:57:6b:e0:
75:be:20:4f:7b:f4:70:61:0e:4c:2c:32:7d:d5:bf:
42:fa:fb:3d:e4:3d:5d:f9:6a:be:d1:ba:a1:5f:1c:
ea:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:32:40:DE:48:6D:0C:3B:BF:03:98:36:45:76:40:E6:0C:D1:F0:74
X509v3 Authority Key Identifier:
keyid:F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/ejJA3khtDDu_A5g2RXZA5gzR8HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/8YCPGr745rWc1DWaa0SB_HyWMdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.35.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c5:40:db:e9:e9:d2:84:99:76:29:0d:a2:3b:b7:a1:d9:fd:
d7:b0:eb:55:11:ce:78:28:42:01:69:9e:32:e4:ca:5b:70:c7:
ea:6c:b2:cd:19:73:82:00:14:fb:80:82:af:c1:0d:16:ed:fd:
18:c0:6b:60:49:49:1b:0b:be:ce:57:72:e8:a6:f9:6b:41:6e:
77:67:0a:bf:95:40:55:83:b9:01:f5:ff:51:4e:72:21:24:4c:
c8:37:9e:03:62:02:c8:73:18:d4:08:af:9c:1a:ba:d0:6f:91:
ac:3c:39:6d:66:1b:91:94:0b:81:0a:3b:d6:52:9b:4c:1a:73:
37:91:11:f4:c7:c5:c0:7e:15:87:c1:7d:03:5e:44:4e:5a:11:
58:02:df:9f:42:43:4b:d9:3e:d3:44:9d:b4:83:7c:ff:11:97:
b8:21:81:67:44:e8:99:45:eb:31:ad:0f:c1:fa:06:77:ad:8b:
34:53:ae:e5:b0:43:0d:bb:2c:48:82:b2:fa:f0:d8:95:e2:a1:
95:05:dc:9e:3f:9f:c8:c6:36:08:99:d4:89:3c:30:a5:e2:8a:
bc:8d:a5:83:d2:06:3e:70:89:b4:c2:7e:36:a6:21:5d:9f:1e:
f4:b9:ab:f7:6e:3a:12:6a:11:19:74:ef:3d:6a:e8:0b:c2:a4:
d6:3e:e4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:05:18 2024 by rpki-client on console-ams.rpki-client.org