Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/eUwLqeIH7zCT81sSKFeKCXYEErU.roa
File: eUwLqeIH7zCT81sSKFeKCXYEErU.roa (raw, json)
Hash identifier: sO7+riJG6LVH+5S0VyXbW+QLXBEOQ2RHFqB92GiEe8s=
Subject key identifier: 79:4C:0B:A9:E2:07:EF:30:93:F3:5B:12:28:57:8A:09:76:04:12:B5
Certificate issuer: /CN=fadce637efb28194715ac2a72129e20571b983af
Certificate serial: 018CC50065DB32B77D47F6710A0E61F1273F
Authority key identifier: FA:DC:E6:37:EF:B2:81:94:71:5A:C2:A7:21:29:E2:05:71:B9:83:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tzmN--ygZRxWsKnISniBXG5g68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/eUwLqeIH7zCT81sSKFeKCXYEErU.roa
Signing time: Mon 01 Jan 2024 12:29:46 +0000
ROA not before: Mon 01 Jan 2024 12:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56722
IP address blocks: 185.134.208.0/22 maxlen: 22
2a06:eec0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/1-tzmN--ygZRxWsKnISniBXG5g68.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/1-tzmN--ygZRxWsKnISniBXG5g68.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tzmN--ygZRxWsKnISniBXG5g68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:65:db:32:b7:7d:47:f6:71:0a:0e:61:f1:27:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fadce637efb28194715ac2a72129e20571b983af
Validity
Not Before: Jan 1 12:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=794c0ba9e207ef3093f35b1228578a09760412b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c3:b2:55:9d:dc:3a:07:8a:39:90:6a:98:41:
74:63:e1:68:36:f3:af:57:aa:5b:99:4e:a4:fb:6a:
ed:8c:d6:eb:ac:1d:b2:15:67:a7:50:40:69:9c:2b:
7d:7d:a1:c5:c7:a7:84:c6:a4:a6:7b:41:3e:ec:d5:
70:b9:8e:86:0b:bd:0e:c1:49:c1:02:57:07:ee:16:
d7:32:e9:eb:dd:6e:08:77:88:77:66:2a:aa:bd:d5:
21:01:62:de:2c:5b:4d:64:3c:5b:aa:3b:9b:c5:4e:
3c:82:70:10:7d:dd:30:cd:4f:1f:3e:39:6f:be:d9:
11:45:46:ac:21:c9:ff:72:5d:f0:84:a2:49:8c:75:
0c:39:3a:6a:b3:7b:38:9a:0a:fc:7e:b3:4b:25:ca:
33:f6:35:67:d7:0e:e5:8d:54:d9:ad:15:b1:23:3d:
f0:61:69:be:a2:1f:4b:34:04:5e:de:51:94:57:1d:
7a:54:7f:21:2e:20:2d:08:6e:43:20:0d:2f:d5:c5:
f4:27:cb:6d:ca:2f:6c:b7:31:10:83:b2:f2:2a:58:
6c:1e:27:45:58:45:94:c8:30:3a:2a:de:77:d7:d5:
d9:86:6a:7b:8e:2b:ce:01:93:25:10:0e:1b:07:75:
30:2e:59:5a:05:e1:88:03:3e:e1:a2:37:c7:d8:ec:
84:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4C:0B:A9:E2:07:EF:30:93:F3:5B:12:28:57:8A:09:76:04:12:B5
X509v3 Authority Key Identifier:
keyid:FA:DC:E6:37:EF:B2:81:94:71:5A:C2:A7:21:29:E2:05:71:B9:83:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tzmN--ygZRxWsKnISniBXG5g68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/eUwLqeIH7zCT81sSKFeKCXYEErU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/55fbc5-b2dc-4639-9a3a-64117db2c4e1/1/1-tzmN--ygZRxWsKnISniBXG5g68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.208.0/22
IPv6:
2a06:eec0::/29
Signature Algorithm: sha256WithRSAEncryption
21:98:f1:37:36:17:63:8e:49:bb:50:15:ed:37:cc:a4:5c:6b:
54:42:8d:05:3b:01:db:3a:2a:5c:d3:fb:8e:e2:fc:df:c2:5d:
36:62:d0:04:77:30:6b:ea:88:e9:16:59:38:37:46:ed:09:d3:
0c:0f:55:23:75:0a:8a:fc:3c:43:f5:e2:64:e9:24:ea:0b:ff:
6e:09:ad:2e:fb:6a:dc:4f:90:9b:70:d3:00:62:25:7b:d8:35:
07:71:e2:0b:32:e1:14:75:f5:84:4b:b8:e7:b9:31:b8:be:44:
4b:4c:fc:e8:0a:67:29:4d:33:93:48:72:34:4f:90:b9:48:7b:
67:e5:3a:a9:00:3a:15:3e:d0:6d:b4:94:ef:9e:01:3c:eb:37:
bd:1e:4e:6a:1d:06:4c:6a:5c:e1:03:c0:7c:08:43:3f:38:ef:
79:f3:90:90:33:80:8b:21:2c:7e:c6:f4:ba:8f:05:45:50:c0:
b1:1f:13:e3:3e:8e:d0:9c:d1:41:f5:87:62:36:68:b0:46:3a:
29:30:45:29:5b:89:a4:fd:df:92:08:b0:50:59:d7:e3:8c:47:
13:34:b6:6d:66:87:05:6f:d9:43:ab:75:a5:69:a5:f3:6d:1d:
fb:92:de:61:4c:78:d0:4f:2b:9b:85:d3:60:aa:00:32:2c:06:
8d:ef:e7:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 28 03:00:31 2024 by rpki-client on console-ams.rpki-client.org