Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/EUYojsM_UYTGlrZ6mf-a5TsQFZA.roa
File: EUYojsM_UYTGlrZ6mf-a5TsQFZA.roa (raw, json)
Hash identifier: aLTxnlgASWXFYhQlZmK8H+2Q/4L2/1ABtpqF/ApI7J4=
Subject key identifier: 11:46:28:8E:C3:3F:51:84:C6:96:B6:7A:99:FF:9A:E5:3B:10:15:90
Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Certificate serial: 0190641D4813D72439AF340174CC5AA2C387
Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/EUYojsM_UYTGlrZ6mf-a5TsQFZA.roa
Signing time: Sat 29 Jun 2024 13:09:18 +0000
ROA not before: Sat 29 Jun 2024 13:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24631
IP address blocks: 109.95.64.0/24 maxlen: 24
109.95.66.0/24 maxlen: 24
109.95.67.0/24 maxlen: 24
109.95.69.0/24 maxlen: 24
109.95.70.0/24 maxlen: 24
109.95.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:64:1d:48:13:d7:24:39:af:34:01:74:cc:5a:a2:c3:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Validity
Not Before: Jun 29 13:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1146288ec33f5184c696b67a99ff9ae53b101590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6e:76:4b:ec:17:e8:77:c9:99:fe:c4:70:12:
45:20:9f:48:c1:9d:6f:f6:b5:52:77:30:3c:8c:95:
50:d8:24:d3:2e:51:15:ec:ab:f9:e7:72:a3:be:1c:
73:1b:b7:c2:c0:1d:7b:71:e5:29:16:7d:d7:84:14:
3a:f8:0d:93:a8:94:ce:d4:b6:c6:67:ff:34:24:0d:
5a:32:60:f0:96:3d:a7:5f:09:7b:58:85:f5:9a:e9:
97:30:e4:ba:84:80:ef:16:88:0c:8f:05:68:8b:9a:
1a:37:4b:4f:03:6e:67:e8:30:44:17:48:4a:fc:9b:
f0:03:4e:89:01:b7:be:3e:07:9b:24:4c:db:53:81:
19:a9:00:d8:3c:60:b4:93:8b:74:09:a1:6f:c1:a2:
9c:28:f2:63:de:34:ad:44:01:a5:0e:21:50:20:d2:
54:ea:bc:74:ab:a9:28:85:86:f1:91:2a:13:fc:26:
68:09:4f:eb:83:71:a0:98:6d:40:76:5a:fc:1b:5d:
3d:cb:33:47:da:7a:b3:40:be:dd:a4:cd:3b:d4:40:
e8:6f:60:b2:a3:89:6c:01:5e:72:c2:6d:60:4d:f7:
d0:76:d8:db:b1:1b:4d:b6:e1:ef:5c:0c:32:a4:ba:
83:cb:62:74:aa:90:08:22:e2:35:0b:cd:80:71:05:
3b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:46:28:8E:C3:3F:51:84:C6:96:B6:7A:99:FF:9A:E5:3B:10:15:90
X509v3 Authority Key Identifier:
keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/EUYojsM_UYTGlrZ6mf-a5TsQFZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.64.0/24
109.95.66.0/23
109.95.69.0-109.95.71.255
Signature Algorithm: sha256WithRSAEncryption
c9:41:4c:69:87:eb:b8:b2:b2:06:09:95:ac:bd:4c:81:52:bc:
28:9b:a4:47:a2:66:36:f9:9c:23:92:10:aa:68:b9:67:a1:a4:
68:f0:c7:92:ce:4c:92:f5:d3:41:e1:ad:a9:6e:35:1a:cb:8b:
29:3b:ab:99:bc:fb:9f:22:10:98:cc:ac:c5:11:7f:a1:36:1d:
81:f1:54:7c:74:07:49:b3:a0:c9:69:bf:93:dc:0a:cb:60:a5:
62:51:16:c1:f0:20:9a:55:81:6d:b5:e8:b7:05:87:75:04:c2:
4d:4b:58:e6:de:c8:ae:b6:d3:73:b0:5e:94:f2:c9:3c:f5:a4:
28:f6:ca:a8:58:ff:c1:81:81:b0:ab:7b:6e:fc:cb:bb:f6:0d:
e8:b0:44:c8:fd:23:fa:99:45:9c:23:4f:5b:6b:0a:d1:44:03:
d2:79:61:e8:fc:54:43:a8:14:fa:65:74:21:55:d1:e9:3d:ea:
1b:f1:63:09:18:ce:48:7a:43:37:6c:77:2d:8f:6e:24:4e:30:
b9:bb:c4:5b:66:0f:63:65:d6:03:83:02:a4:54:42:d3:1d:7a:
0e:32:c6:e1:80:99:10:cd:51:b0:7e:01:79:50:ef:f9:85:a2:
83:dd:52:a6:df:86:27:f4:78:43:0f:b5:ff:fe:25:25:a9:5f:
a7:a3:b2:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:24:03 2024 by rpki-client on console-fra.rpki-client.org