Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/VwV7Qe3_lq8E8cgsyA1R7eZq7tg.roa
File: VwV7Qe3_lq8E8cgsyA1R7eZq7tg.roa (raw, json)
Hash identifier: eUd8Ws8BM3nFO5/4OiHzBtsgSJqRwK3t3gZGoGLlsOk=
Subject key identifier: 57:05:7B:41:ED:FF:96:AF:04:F1:C8:2C:C8:0D:51:ED:E6:6A:EE:D8
Certificate issuer: /CN=e0c70cc2d21da8c2ea6481534f48da495aa84bdd
Certificate serial: 018CC86F0749680BAE8621B659848E6DCD99
Authority key identifier: E0:C7:0C:C2:D2:1D:A8:C2:EA:64:81:53:4F:48:DA:49:5A:A8:4B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4McMwtIdqMLqZIFTT0jaSVqoS90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/VwV7Qe3_lq8E8cgsyA1R7eZq7tg.roa
Signing time: Tue 02 Jan 2024 04:29:28 +0000
ROA not before: Tue 02 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12519
IP address blocks: 185.10.100.0/22 maxlen: 24
82.148.32.0/19 maxlen: 24
87.252.32.0/19 maxlen: 24
81.31.64.0/20 maxlen: 24
212.42.160.0/19 maxlen: 24
2a02:13a0::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/4McMwtIdqMLqZIFTT0jaSVqoS90.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/4McMwtIdqMLqZIFTT0jaSVqoS90.mft
rsync://rpki.ripe.net/repository/DEFAULT/4McMwtIdqMLqZIFTT0jaSVqoS90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 10:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:07:49:68:0b:ae:86:21:b6:59:84:8e:6d:cd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c70cc2d21da8c2ea6481534f48da495aa84bdd
Validity
Not Before: Jan 2 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57057b41edff96af04f1c82cc80d51ede66aeed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:99:bc:63:39:96:5c:86:b0:70:8e:a0:68:
ce:b1:65:1a:67:e1:f8:40:67:a8:1e:46:78:cf:d4:
ab:09:31:df:08:b8:f1:92:7c:17:af:dc:ed:0c:7b:
5e:69:5d:02:02:03:e8:74:94:79:39:e4:cd:3f:f6:
cd:62:b9:a2:70:ba:dd:5b:da:83:41:c1:e4:96:29:
fd:a3:c6:53:27:96:7c:9a:95:06:a1:7d:84:26:1d:
7c:24:c0:39:d8:f9:c8:24:77:de:76:41:1f:bc:35:
f6:11:44:70:47:26:8d:cf:1d:54:16:8f:a0:aa:97:
1c:82:44:55:5a:e8:23:f2:d1:0a:5e:5b:48:df:e5:
68:2a:a3:74:27:da:c6:cb:c2:5c:40:0e:c2:3f:eb:
61:7f:f5:a1:a0:de:26:74:64:6f:91:ee:c4:8e:b4:
b2:93:15:47:fd:08:51:25:85:63:25:35:bd:02:31:
55:b1:37:b5:45:68:4e:cf:83:5f:47:c1:2e:c1:97:
44:95:95:3c:78:32:2e:c1:7f:6a:ad:6d:b0:c3:1a:
aa:81:59:2a:92:6c:28:6b:34:ff:a0:d6:28:d8:b0:
d8:f8:4f:8f:d9:83:2c:34:36:73:7e:ce:27:64:3d:
4d:51:65:3b:6f:7b:32:98:a5:6d:e5:a3:cb:a9:0d:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:05:7B:41:ED:FF:96:AF:04:F1:C8:2C:C8:0D:51:ED:E6:6A:EE:D8
X509v3 Authority Key Identifier:
keyid:E0:C7:0C:C2:D2:1D:A8:C2:EA:64:81:53:4F:48:DA:49:5A:A8:4B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4McMwtIdqMLqZIFTT0jaSVqoS90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/VwV7Qe3_lq8E8cgsyA1R7eZq7tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/71033c-0b6a-46e6-a5fe-329a99f0f1b5/1/4McMwtIdqMLqZIFTT0jaSVqoS90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.64.0/20
82.148.32.0/19
87.252.32.0/19
185.10.100.0/22
212.42.160.0/19
IPv6:
2a02:13a0::/32
Signature Algorithm: sha256WithRSAEncryption
52:38:c2:74:73:9c:ed:17:ef:58:c6:f2:a7:89:c8:41:c6:40:
91:ee:3f:72:bf:84:da:ab:37:44:d3:e2:7f:3d:e5:b1:77:db:
34:b2:e1:14:f5:08:18:2b:d1:97:fc:b6:78:0f:87:8e:02:ea:
07:03:10:b7:bc:8f:d3:6e:8b:5f:bd:66:24:d3:8b:ba:4f:fa:
94:d4:c7:fd:ff:3e:ea:e1:72:0a:a4:87:4f:79:4f:f3:38:fa:
cc:a4:04:51:de:87:b7:7b:9f:df:c1:ed:7d:0c:02:85:49:64:
ab:c7:e1:b0:1e:cb:e2:8e:91:f9:b7:e6:04:87:a0:48:cf:9a:
36:27:bb:57:f8:4a:b7:a2:80:a1:93:e0:d0:07:af:9f:8a:40:
3c:a4:b1:c6:db:ac:fc:42:a4:f5:2d:fd:2d:73:2b:6e:d4:ef:
b5:41:d3:3f:b3:9b:bc:f5:03:55:83:a0:e9:21:e1:f9:d5:ac:
12:24:5b:c1:f9:a9:6a:c3:63:ac:ab:01:b0:51:fb:d3:d5:89:
03:11:6f:e0:96:3d:9f:52:cf:81:53:50:e1:64:b3:ad:a6:a0:
72:7f:66:cd:b5:b6:6e:c8:48:d3:19:91:5f:ae:2d:e9:7c:02:
b9:33:10:c4:f2:46:46:b3:d7:c3:ba:bb:e9:14:0f:2a:01:85:
99:20:ac:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 17:03:20 2024 by rpki-client on console-ams.rpki-client.org