Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/eaMS_8ocRZxzloGrL8aj2pEvR1c.roa
File: eaMS_8ocRZxzloGrL8aj2pEvR1c.roa (raw, json)
Hash identifier: JOtRMcwBVUPQIAKsfWOdkscAV9PmYX9s1sXbJ/hcIFA=
Subject key identifier: 79:A3:12:FF:CA:1C:45:9C:73:96:81:AB:2F:C6:A3:DA:91:2F:47:57
Certificate issuer: /CN=547841eeff20c78b33d411dae51a692adb892e31
Certificate serial: 018CC500131311AEC506AE8187761ADAAD31
Authority key identifier: 54:78:41:EE:FF:20:C7:8B:33:D4:11:DA:E5:1A:69:2A:DB:89:2E:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHhB7v8gx4sz1BHa5RppKtuJLjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/eaMS_8ocRZxzloGrL8aj2pEvR1c.roa
Signing time: Mon 01 Jan 2024 12:29:25 +0000
ROA not before: Mon 01 Jan 2024 12:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202491
IP address blocks: 212.225.228.0/23 maxlen: 23
212.225.232.0/24 maxlen: 24
171.33.238.0/24 maxlen: 24
89.37.75.0/24 maxlen: 24
46.37.87.0/24 maxlen: 24
46.37.95.0/24 maxlen: 24
89.39.18.0/23 maxlen: 23
89.39.20.0/23 maxlen: 23
89.39.152.0/23 maxlen: 23
89.39.157.0/24 maxlen: 24
37.61.148.0/22 maxlen: 22
37.61.154.0/24 maxlen: 24
89.32.114.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/VHhB7v8gx4sz1BHa5RppKtuJLjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/VHhB7v8gx4sz1BHa5RppKtuJLjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VHhB7v8gx4sz1BHa5RppKtuJLjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:13:13:11:ae:c5:06:ae:81:87:76:1a:da:ad:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=547841eeff20c78b33d411dae51a692adb892e31
Validity
Not Before: Jan 1 12:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79a312ffca1c459c739681ab2fc6a3da912f4757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c6:da:47:b8:0b:2d:32:a8:98:70:40:d1:e8:
0a:8d:4f:88:65:17:ab:5a:20:3d:dd:50:e9:a5:2d:
ad:7e:5d:36:ec:a5:ca:af:b4:3d:c0:ec:40:3b:2d:
48:a7:4d:53:d8:df:30:46:12:31:e3:3b:9d:88:be:
61:ac:69:72:98:e1:eb:9c:3a:d2:8d:d5:b6:6d:53:
c3:d6:b5:09:26:35:88:2e:a9:12:45:21:3e:98:fc:
43:7c:3c:33:00:61:b8:f1:7d:3b:de:25:41:42:94:
92:d9:ee:5e:d8:06:1c:ea:52:92:95:78:77:71:c7:
95:a9:ee:0b:fd:81:9f:f5:15:f2:74:26:21:5a:26:
6c:e1:f8:86:64:b2:2c:72:82:fd:f0:5b:72:9f:36:
3a:3a:83:33:98:c7:10:20:93:1e:df:38:84:f0:ca:
ca:0f:d9:aa:89:0c:a1:a4:a7:bc:7f:22:60:b4:cb:
b6:41:03:36:36:46:a3:c3:61:a1:fa:55:3c:b8:e6:
be:5b:d8:7f:34:04:98:94:9d:8a:20:5b:97:65:48:
da:d6:3a:33:35:b4:62:d5:b8:39:84:d7:1b:d5:69:
21:62:6b:a6:10:4c:b1:7d:b9:ab:e6:06:fb:76:70:
e3:85:81:7f:c1:25:75:c9:c7:91:45:98:17:14:42:
aa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A3:12:FF:CA:1C:45:9C:73:96:81:AB:2F:C6:A3:DA:91:2F:47:57
X509v3 Authority Key Identifier:
keyid:54:78:41:EE:FF:20:C7:8B:33:D4:11:DA:E5:1A:69:2A:DB:89:2E:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHhB7v8gx4sz1BHa5RppKtuJLjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/eaMS_8ocRZxzloGrL8aj2pEvR1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c8d393-3e28-4f07-996b-366ba1700fe0/1/VHhB7v8gx4sz1BHa5RppKtuJLjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.148.0/22
37.61.154.0/24
46.37.87.0/24
46.37.95.0/24
89.32.114.0/23
89.37.75.0/24
89.39.18.0-89.39.21.255
89.39.152.0/23
89.39.157.0/24
171.33.238.0/24
212.225.228.0/23
212.225.232.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b5:fe:36:5b:85:28:e3:48:b7:6b:71:f8:65:54:73:97:fe:
61:46:5c:db:73:64:fd:fc:3c:28:14:e2:90:2e:c0:e1:09:f8:
cc:d7:08:69:e7:38:42:73:3e:13:46:8f:53:5b:a3:63:29:50:
8a:1b:9a:76:1f:f0:77:6b:00:39:1a:6b:47:68:97:19:18:ae:
5e:1a:6c:0d:e7:2c:8c:46:4f:dc:08:95:cb:d1:1f:ef:ad:e1:
01:29:b5:7f:90:14:f1:d3:84:6b:9f:b8:ef:97:30:9e:2d:b2:
41:c3:31:ad:83:2b:bc:fb:5d:22:05:2d:e1:bb:a6:36:75:6f:
e3:ce:a6:1a:b6:72:5d:c8:b7:ce:75:e2:56:92:4b:ad:86:6f:
82:e9:3b:d4:a8:05:4d:28:b6:57:b2:8c:b6:04:8c:a4:1f:a1:
3a:f7:7b:a1:cc:bb:04:28:db:c2:38:61:3c:58:91:ab:e1:80:
6d:fb:55:aa:95:d7:c0:02:b7:76:f0:43:f1:56:77:11:ac:8e:
00:4d:6d:51:25:e7:bd:ef:18:16:cb:23:d2:2a:f1:32:3b:bb:
6a:1a:e2:c4:ec:4f:9a:bc:74:88:53:76:0f:51:b5:bd:ad:94:
71:85:2d:9a:6b:c5:ab:d3:93:f0:dd:b6:6c:8f:29:59:67:95:
41:25:bb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 14:54:05 2024 by rpki-client on console-ams.rpki-client.org