Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/5E1IOLYNA-Qx-ydFrVHARURfrAo.roa
File: 5E1IOLYNA-Qx-ydFrVHARURfrAo.roa (raw, json)
Hash identifier: /kPMpmjM8p4bAUJOfWYDxX6UcbzFONqIW41aIZFelqU=
Subject key identifier: E4:4D:48:38:B6:0D:03:E4:31:FB:27:45:AD:51:C0:45:44:5F:AC:0A
Certificate issuer: /CN=11dd0ebff5ba38a8758b794d04d62905194a3266
Certificate serial: 018DCC88B6CF95A51B1CFD437012FBFE4E3D
Authority key identifier: 11:DD:0E:BF:F5:BA:38:A8:75:8B:79:4D:04:D6:29:05:19:4A:32:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/5E1IOLYNA-Qx-ydFrVHARURfrAo.roa
Signing time: Wed 21 Feb 2024 16:38:48 +0000
ROA not before: Wed 21 Feb 2024 16:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34458
IP address blocks: 185.80.40.0/24 maxlen: 24
217.150.80.0/24 maxlen: 24
217.150.81.0/24 maxlen: 24
217.150.82.0/24 maxlen: 24
217.150.83.0/24 maxlen: 24
217.150.84.0/24 maxlen: 24
217.150.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cc:88:b6:cf:95:a5:1b:1c:fd:43:70:12:fb:fe:4e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11dd0ebff5ba38a8758b794d04d62905194a3266
Validity
Not Before: Feb 21 16:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e44d4838b60d03e431fb2745ad51c045445fac0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:aa:42:1b:cd:3b:8b:ca:21:f0:38:8d:61:
64:4d:3e:22:27:a8:0b:26:6f:48:96:6d:c7:ed:71:
06:57:b0:ba:9d:c6:14:d6:e1:7b:66:03:de:a5:fd:
af:b9:01:0b:1d:8f:5c:b8:06:46:5b:c0:d1:d8:ed:
36:ac:f2:61:56:83:04:fe:e0:33:8d:72:38:5a:e2:
8f:f7:a7:44:e0:03:76:fc:74:4b:9d:04:f1:9f:d2:
01:b4:14:37:b5:42:94:ab:aa:6d:79:2b:bd:4e:2c:
f5:c9:47:9b:42:42:ee:68:f2:d5:a9:be:4a:7c:3f:
6a:53:7a:54:ac:00:bb:79:41:9e:36:96:2f:fd:ee:
17:9d:69:13:3b:62:04:73:48:9c:26:91:1c:f8:b2:
ff:15:ef:91:62:db:3a:83:86:dc:e5:76:87:d9:12:
20:49:0c:c8:e5:73:a0:b7:68:b8:30:ef:35:55:a4:
1e:a1:d8:31:18:e4:6d:aa:4b:c2:8d:f4:ed:da:5e:
56:9b:6f:17:de:31:c3:06:5f:34:e0:c9:c8:ce:d5:
e1:61:05:16:ca:fe:67:56:f5:d9:a3:3a:84:65:ce:
28:3e:de:7d:f7:52:ff:13:ce:52:78:6e:e9:95:65:
b5:5a:14:a7:5e:54:83:14:70:98:13:2d:8b:99:85:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4D:48:38:B6:0D:03:E4:31:FB:27:45:AD:51:C0:45:44:5F:AC:0A
X509v3 Authority Key Identifier:
keyid:11:DD:0E:BF:F5:BA:38:A8:75:8B:79:4D:04:D6:29:05:19:4A:32:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/5E1IOLYNA-Qx-ydFrVHARURfrAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/a66a29-51cc-4ba9-884f-f17613ea49e7/1/Ed0Ov_W6OKh1i3lNBNYpBRlKMmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.40.0/24
217.150.80.0-217.150.85.255
Signature Algorithm: sha256WithRSAEncryption
9b:a6:a7:cf:5c:7c:2f:f1:5f:aa:d2:4c:1a:7d:c2:3c:70:03:
47:5a:60:85:38:e0:7a:d1:d3:42:b8:d3:52:87:8f:98:ac:a9:
47:b7:f8:35:14:5f:22:2e:7a:3a:4f:39:96:e9:56:bb:71:5d:
f7:bc:01:3d:15:f9:c6:fe:98:06:b6:22:25:bb:61:c4:c4:13:
bd:89:a5:83:5c:3e:a2:5f:cc:4a:31:40:4d:db:c8:ac:7b:2a:
4b:61:f6:85:b7:25:f7:68:1e:12:48:3e:49:55:21:cf:b8:a2:
0e:8b:20:50:d1:65:df:bc:ee:5f:9d:7b:5d:f7:49:2e:dd:ab:
3f:5b:96:e5:49:fd:1f:92:cf:88:2e:19:a4:fa:0b:d4:80:5d:
66:88:b0:7f:41:0c:b6:8d:f3:f9:99:fd:29:17:02:cb:f9:16:
0e:96:2c:df:16:37:76:52:35:1e:4d:61:43:35:e5:45:82:d1:
12:df:57:5e:20:82:a6:bc:ba:28:98:e4:83:65:b0:ce:99:8b:
17:08:34:66:8d:87:99:81:60:9d:4b:8f:ee:29:42:f0:1f:84:
11:e8:c1:84:cb:6b:5f:7e:4d:07:6f:65:5c:39:0a:47:29:fe:
c6:43:95:bf:8e:d9:57:0c:d0:0f:aa:3f:8f:a3:a5:0e:d1:cd:
bb:11:00:a0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon May 6 13:18:19 2024 by rpki-client on console-fra.rpki-client.org