Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/e69lqBFIU_GrU13ZFJC-4Qa5zCI.roa
File: e69lqBFIU_GrU13ZFJC-4Qa5zCI.roa (raw, json)
Hash identifier: 2v3rFvLA7bAYvHHPgxJbyrobwsuVpO8dTTx2f7Dwlzk=
Subject key identifier: 7B:AF:65:A8:11:48:53:F1:AB:53:5D:D9:14:90:BE:E1:06:B9:CC:22
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0191076BB54DC5AA550CE275E2DDB5DEA023
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/e69lqBFIU_GrU13ZFJC-4Qa5zCI.roa
Signing time: Wed 31 Jul 2024 06:13:04 +0000
ROA not before: Wed 31 Jul 2024 06:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 5.180.49.0/24 maxlen: 24
45.8.192.0/24 maxlen: 24
45.8.193.0/24 maxlen: 24
45.8.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:6b:b5:4d:c5:aa:55:0c:e2:75:e2:dd:b5:de:a0:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jul 31 06:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7baf65a8114853f1ab535dd91490bee106b9cc22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:71:ec:94:29:7d:ec:97:fe:30:d7:68:6b:df:
75:de:97:32:b2:48:08:83:c5:65:21:89:8a:be:3a:
a3:4a:e8:a5:cc:b8:34:42:ed:53:43:49:e3:20:43:
89:15:39:e3:bb:d0:a2:0f:bf:82:0d:71:f6:f5:fb:
73:c4:95:ee:27:db:72:b5:75:8b:96:44:87:f8:f2:
c5:3b:94:e1:7c:18:38:e1:6c:3f:51:dc:96:08:63:
86:7d:52:1a:d8:cb:90:e0:a6:96:4b:ea:f6:2f:fa:
f7:b5:93:df:a7:fe:eb:8d:83:db:c3:73:22:d7:4f:
f5:dd:42:6f:8a:d0:2e:25:c0:0a:24:0c:82:6d:4f:
ac:cc:38:63:34:c2:0a:97:3a:ac:b0:f9:2e:35:88:
36:ab:b0:2b:39:12:2a:fb:17:d9:20:c2:8c:c7:00:
64:93:20:38:fd:4e:1d:d3:23:8b:fb:5d:dc:9e:b9:
16:a5:b9:91:ff:8d:fb:2c:e3:75:21:9e:63:b5:de:
f6:e7:01:fc:62:54:ee:3c:a9:65:a8:d4:ce:2c:73:
6d:ec:00:43:79:00:97:d2:5b:35:ea:f6:b5:df:49:
b9:c2:24:46:16:e6:f6:10:ea:4e:7b:3f:3f:95:ba:
53:db:ff:54:68:a0:44:55:ac:83:68:c7:06:df:ea:
ad:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AF:65:A8:11:48:53:F1:AB:53:5D:D9:14:90:BE:E1:06:B9:CC:22
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/e69lqBFIU_GrU13ZFJC-4Qa5zCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.49.0/24
45.8.192.0/23
45.8.202.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:7c:96:a7:ad:5a:27:6f:e7:2d:18:dc:e2:19:b4:82:11:13:
5d:08:e2:32:0c:a9:a9:b5:a6:99:76:50:e8:cb:1e:bf:1e:3f:
05:6a:9e:f7:e2:05:94:16:80:e6:15:f3:0b:c6:41:ae:26:a1:
a6:0f:5f:35:d3:de:bb:ec:9f:3c:58:4c:3b:45:90:e2:fe:2f:
55:6f:bc:35:d0:8e:2f:ea:88:64:0e:88:1b:ee:35:4f:5f:9f:
fe:1c:4d:3b:f3:48:99:bd:7d:26:4f:bb:3d:3f:d2:68:38:e9:
87:40:7d:dd:93:5a:41:2e:80:47:f3:d1:47:e7:4c:26:7c:e1:
1d:b1:08:5d:7a:da:ab:89:22:1b:2b:5a:95:3e:62:60:6d:99:
2c:ab:f1:18:50:cc:31:62:3d:60:16:6b:97:8f:b0:93:15:08:
09:a6:d0:e2:19:99:25:3a:f5:a0:b4:b0:56:52:a4:a6:0f:97:
d6:8b:bc:3e:41:3c:22:6b:77:e7:27:15:d6:88:bc:de:56:da:
d2:78:9a:cd:dd:5b:cc:8f:c4:18:38:74:12:0a:9d:e2:b7:1a:
5e:11:a3:19:85:ac:24:e4:ef:db:4e:5b:db:f4:02:c0:dc:20:
04:89:bf:2c:11:1e:a9:b3:97:e9:19:63:38:0c:4c:15:e0:2b:
71:5b:da:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:28:19 2024 by rpki-client on console-ams.rpki-client.org