Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/el4H0GLAYHJ13knC1Dtvp1qcnKQ.roa
File: el4H0GLAYHJ13knC1Dtvp1qcnKQ.roa (raw, json)
Hash identifier: osORFCLhO2hOGJQsbDVMHP6YcIm2hj1YC6RKEzmg4ks=
Subject key identifier: 7A:5E:07:D0:62:C0:60:72:75:DE:49:C2:D4:3B:6F:A7:5A:9C:9C:A4
Certificate issuer: /CN=7b2711150910dcd1b1c7ab531448bd8321fc1c36
Certificate serial: 018ED6436C97E54A7DD1CB228458C3D9C959
Authority key identifier: 7B:27:11:15:09:10:DC:D1:B1:C7:AB:53:14:48:BD:83:21:FC:1C:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eycRFQkQ3NGxx6tTFEi9gyH8HDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/el4H0GLAYHJ13knC1Dtvp1qcnKQ.roa
Signing time: Sat 13 Apr 2024 07:02:06 +0000
ROA not before: Sat 13 Apr 2024 07:02:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207029
IP address blocks: 185.85.24.0/22 maxlen: 22
185.85.24.0/23 maxlen: 23
185.85.26.0/23 maxlen: 23
185.134.8.0/22 maxlen: 22
185.134.8.0/23 maxlen: 23
185.134.10.0/23 maxlen: 23
185.210.112.0/22 maxlen: 22
185.210.112.0/23 maxlen: 23
185.210.114.0/23 maxlen: 23
213.226.104.0/22 maxlen: 22
213.226.104.0/23 maxlen: 23
213.226.106.0/23 maxlen: 23
2a05:a580::/29 maxlen: 29
2a06:ea00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/eycRFQkQ3NGxx6tTFEi9gyH8HDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/eycRFQkQ3NGxx6tTFEi9gyH8HDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eycRFQkQ3NGxx6tTFEi9gyH8HDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d6:43:6c:97:e5:4a:7d:d1:cb:22:84:58:c3:d9:c9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b2711150910dcd1b1c7ab531448bd8321fc1c36
Validity
Not Before: Apr 13 07:02:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a5e07d062c0607275de49c2d43b6fa75a9c9ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e3:d6:53:3f:95:4d:89:3f:10:52:62:e7:29:
e5:71:e5:63:a4:39:d1:57:3f:8a:2f:b8:02:13:00:
7c:96:16:53:42:5a:7a:cf:34:0b:96:6e:39:73:f0:
50:10:4e:f6:07:2c:fa:bc:6e:94:cd:b0:aa:cf:5a:
28:9f:43:4b:14:ef:59:8f:67:93:1b:0c:86:42:59:
86:e4:22:97:25:e8:7f:2d:59:23:34:4f:fa:96:fb:
e3:92:90:b5:36:23:54:05:88:aa:1d:64:12:08:65:
87:b0:df:18:b2:c3:f9:f6:25:9e:07:4b:44:4a:46:
27:01:ab:75:28:e2:4f:b0:20:5e:86:ea:71:3f:9b:
cd:4f:6d:dd:26:d3:03:4d:96:7e:6d:42:5a:10:28:
02:af:16:23:22:5e:b4:30:f9:b3:dd:c4:2a:64:d2:
4e:61:e0:cd:9a:e6:30:55:a3:0b:d4:d8:16:98:e5:
15:2e:c5:e7:98:19:10:17:b7:49:b8:3e:ce:71:fe:
ec:50:56:b1:fe:ce:9d:05:a7:4a:ba:5e:d5:93:9a:
1f:ba:d5:4d:7a:57:22:e8:56:7a:1c:06:ff:19:5c:
12:6f:34:6d:f6:f8:7c:31:c1:7c:f8:52:63:8e:50:
4a:13:dd:e0:80:60:de:af:a0:ec:0a:e7:79:bc:7e:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5E:07:D0:62:C0:60:72:75:DE:49:C2:D4:3B:6F:A7:5A:9C:9C:A4
X509v3 Authority Key Identifier:
keyid:7B:27:11:15:09:10:DC:D1:B1:C7:AB:53:14:48:BD:83:21:FC:1C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eycRFQkQ3NGxx6tTFEi9gyH8HDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/el4H0GLAYHJ13knC1Dtvp1qcnKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b11764-be65-49f1-b42c-b7a8b7c12eee/1/eycRFQkQ3NGxx6tTFEi9gyH8HDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.24.0/22
185.134.8.0/22
185.210.112.0/22
213.226.104.0/22
IPv6:
2a05:a580::/29
2a06:ea00::/29
Signature Algorithm: sha256WithRSAEncryption
91:9e:dc:34:4d:d5:64:67:10:91:96:f8:dc:42:b8:ea:6a:d3:
aa:84:9b:fe:e4:59:93:9c:41:5b:44:cf:34:5a:7d:3f:96:7d:
28:58:b0:49:29:2d:e7:3a:b8:bb:52:ec:e8:61:7f:3c:aa:53:
f8:ce:c3:ef:4b:12:0c:7e:32:70:47:40:41:0f:43:42:d2:d1:
74:68:25:6a:1a:cb:dc:b9:e5:20:f5:68:7f:12:1e:ff:0c:e1:
cd:e7:ed:39:d6:a8:01:1f:f4:31:20:c0:f4:6c:fb:98:be:c2:
e7:2d:d6:81:45:6e:e0:4c:9d:ff:10:3e:f8:e6:8d:2f:8c:c2:
de:01:57:b7:ac:4c:21:82:0e:4f:99:f4:72:de:22:31:aa:ea:
4e:a2:a2:e9:c2:31:a6:5d:2f:29:c7:4c:7a:b1:16:25:c7:5b:
85:8f:8a:6a:93:f4:ea:8f:0a:d4:84:7d:3d:37:e9:19:77:06:
9a:c6:b7:ad:a4:9c:d0:98:6f:37:b5:18:58:bc:12:f5:35:09:
2d:58:80:35:92:b4:8f:c0:9d:57:89:f0:41:15:2f:d2:8c:cc:
f9:e6:3c:3b:fe:59:36:b6:ba:55:11:e8:d7:6b:07:17:cc:5f:
be:59:b2:18:0b:23:0e:cb:1c:30:7e:9b:17:24:29:79:bb:57:
fe:c9:88:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 11:15:20 2024 by rpki-client on console-fra.rpki-client.org