Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/eAWLAUkgFkAASyPeEJIAZ1upPBM.roa
File: eAWLAUkgFkAASyPeEJIAZ1upPBM.roa (raw, json)
Hash identifier: FXVg/VrVufpSp9MQK7NqeEaDe+89mnr70RHMghEddYE=
Subject key identifier: 78:05:8B:01:49:20:16:40:00:4B:23:DE:10:92:00:67:5B:A9:3C:13
Certificate issuer: /CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Certificate serial: 018F4E293F5983FEAD79CF56A92DCCA68762
Authority key identifier: 9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/eAWLAUkgFkAASyPeEJIAZ1upPBM.roa
Signing time: Mon 06 May 2024 13:47:56 +0000
ROA not before: Mon 06 May 2024 13:47:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33868
IP address blocks: 91.207.186.0/23 maxlen: 23
185.6.2.0/24 maxlen: 24
193.23.54.0/24 maxlen: 24
194.24.164.0/23 maxlen: 23
2a02:848::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/m2t7PqYO-0pXmk9eI36nqI07wHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/m2t7PqYO-0pXmk9eI36nqI07wHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 03:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:29:3f:59:83:fe:ad:79:cf:56:a9:2d:cc:a6:87:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Validity
Not Before: May 6 13:47:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78058b0149201640004b23de109200675ba93c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ee:cb:bf:23:08:28:23:4f:a4:02:21:ae:60:
b5:b5:b0:2c:7c:08:c4:95:69:5e:19:d3:c9:92:73:
dd:85:7f:77:15:b3:f8:47:22:51:f2:a8:98:fa:fc:
a0:38:03:19:c5:81:90:d0:9f:06:de:42:65:b1:9a:
a9:91:da:f5:c0:f1:d7:a6:37:e5:0f:c3:c0:37:f4:
c2:10:55:64:85:ca:a4:5b:eb:59:40:ac:97:27:7c:
08:f9:bc:e6:fe:2b:19:b9:83:c6:3f:3a:5c:cd:ad:
fe:ca:74:f9:11:87:f8:a9:ac:88:13:15:1d:6c:24:
03:cb:13:33:cb:2a:ca:24:49:90:b9:1b:2d:ac:a2:
83:33:35:75:e9:a3:a0:94:7e:08:18:1f:8f:20:99:
47:d6:16:54:1a:93:c9:7e:8d:e6:dc:f3:b5:90:16:
5d:cf:99:fa:2e:16:0c:2d:d2:22:85:14:d6:1e:f1:
16:b4:61:19:89:bc:9e:a1:cb:66:38:27:b2:0b:62:
54:31:63:24:79:be:a6:0e:59:c8:6e:23:cd:48:9e:
e4:cf:a4:66:7e:9d:12:6f:40:f2:8d:79:90:ef:5e:
30:fa:12:06:4d:4f:8f:96:47:f7:b6:20:d8:a9:9d:
19:0f:33:02:f6:62:c5:5f:75:77:13:ef:e2:ec:e1:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:05:8B:01:49:20:16:40:00:4B:23:DE:10:92:00:67:5B:A9:3C:13
X509v3 Authority Key Identifier:
keyid:9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/eAWLAUkgFkAASyPeEJIAZ1upPBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/m2t7PqYO-0pXmk9eI36nqI07wHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.186.0/23
185.6.2.0/24
193.23.54.0/24
194.24.164.0/23
IPv6:
2a02:848::/32
Signature Algorithm: sha256WithRSAEncryption
07:ce:be:38:4d:cf:12:d9:62:6f:aa:4e:5d:13:fa:e3:16:9a:
f7:1b:eb:7b:ce:6c:2c:af:20:f8:e6:b0:bd:bd:3a:59:da:94:
eb:97:99:66:53:96:46:5f:35:74:55:7d:9a:c9:6b:be:18:8f:
26:5c:33:a8:fa:9e:33:71:cc:46:bb:13:89:ce:d3:8a:b8:06:
1d:00:e0:91:99:64:39:d0:b2:fa:b2:a9:21:66:c7:49:36:7f:
d6:f1:3d:c5:e7:72:97:03:a9:b5:9c:df:8a:b8:ad:09:3d:cb:
9b:57:34:0e:ff:b2:f6:e4:82:51:71:f1:af:04:c8:32:0d:92:
20:4f:7e:82:6f:54:e8:2b:2f:9f:5d:b2:67:5d:54:47:45:54:
8e:08:4e:96:41:8d:ca:5b:b1:9f:70:7e:f0:45:0d:2d:bc:54:
1c:9e:41:5f:2c:9e:3b:3d:14:e1:ff:5b:ab:84:6c:fe:f1:58:
52:b3:13:bb:03:e9:cf:4e:b8:76:e0:30:f5:c2:b5:10:32:ad:
83:80:08:60:0d:da:64:4d:ba:fe:f4:0b:44:2e:91:b4:04:87:
29:70:ad:6b:83:e0:6f:3c:c0:db:b0:7b:70:a1:c6:62:e5:f2:
de:ab:12:b6:f8:c0:65:a4:66:67:db:14:55:79:7b:8c:00:0e:
9f:1b:5c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:56:48 2024 by rpki-client on console-ams.rpki-client.org