Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eo11uUX2R0XcIF6_EAbrV6mwoEk.roa
File: eo11uUX2R0XcIF6_EAbrV6mwoEk.roa (raw, json)
Hash identifier: F3ALbWe1m+JdmfejyqFpyI8rgRPCMjPMZKS4Fw6GLCw=
Subject key identifier: 7A:8D:75:B9:45:F6:47:45:DC:20:5E:BF:10:06:EB:57:A9:B0:A0:49
Certificate issuer: /CN=79a1d0ea730fcfcb2149995c78289bf2d6d186fc
Certificate serial: 018FBE984A103BE44D66C0A4672D479A250B
Authority key identifier: 79:A1:D0:EA:73:0F:CF:CB:21:49:99:5C:78:28:9B:F2:D6:D1:86:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaHQ6nMPz8shSZlceCib8tbRhvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eo11uUX2R0XcIF6_EAbrV6mwoEk.roa
Signing time: Tue 28 May 2024 09:46:42 +0000
ROA not before: Tue 28 May 2024 09:46:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59668
IP address blocks: 31.40.24.0/22 maxlen: 22
45.91.220.0/22 maxlen: 22
82.215.96.0/20 maxlen: 20
91.212.124.0/24 maxlen: 24
93.157.58.0/24 maxlen: 24
118.88.16.0/21 maxlen: 21
119.12.104.0/21 maxlen: 21
178.218.200.0/21 maxlen: 21
202.79.184.0/21 maxlen: 21
2a0e:17c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eaHQ6nMPz8shSZlceCib8tbRhvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eaHQ6nMPz8shSZlceCib8tbRhvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/eaHQ6nMPz8shSZlceCib8tbRhvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:98:4a:10:3b:e4:4d:66:c0:a4:67:2d:47:9a:25:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a1d0ea730fcfcb2149995c78289bf2d6d186fc
Validity
Not Before: May 28 09:46:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a8d75b945f64745dc205ebf1006eb57a9b0a049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ee:17:e9:b0:6e:d4:55:c3:7b:af:c3:ef:0a:
87:eb:d6:d2:00:a4:b0:6d:97:02:dd:b7:d5:17:e9:
b9:4b:c2:1a:26:c8:fe:0e:ce:2e:7a:61:fc:d5:57:
23:19:db:ce:7c:fe:5f:21:d6:f1:43:f9:50:f4:85:
75:a2:48:8d:d2:51:73:de:3e:81:ab:ed:86:54:a4:
28:46:8e:1c:31:b4:8c:35:71:f6:c0:5e:82:c9:2f:
9a:98:67:84:21:08:a9:eb:1a:11:d2:29:df:86:51:
e1:4d:f9:5a:bf:1c:69:c1:46:31:09:3b:65:03:c9:
95:e3:67:dd:36:55:d5:ba:5d:d1:ef:8c:80:2c:50:
c3:0f:38:08:48:5a:b6:4c:f8:1a:77:df:79:4b:f6:
f1:3a:8c:84:c5:b1:c3:83:16:96:81:8f:71:50:ff:
77:b3:ca:26:7e:ee:81:13:72:4a:69:0e:88:a0:50:
b5:02:56:e6:e8:a6:de:71:f6:3a:31:bc:97:dc:da:
39:09:21:9b:46:dd:14:2f:fa:52:d9:94:94:c9:24:
27:d3:da:12:6b:c2:ed:2d:51:29:4c:c5:fb:7f:2f:
16:d9:68:7d:59:bd:68:a6:63:ac:8f:63:4e:27:6c:
ea:03:ae:6f:f3:19:5e:f8:55:ea:84:cf:cf:0e:9e:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8D:75:B9:45:F6:47:45:DC:20:5E:BF:10:06:EB:57:A9:B0:A0:49
X509v3 Authority Key Identifier:
keyid:79:A1:D0:EA:73:0F:CF:CB:21:49:99:5C:78:28:9B:F2:D6:D1:86:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaHQ6nMPz8shSZlceCib8tbRhvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eo11uUX2R0XcIF6_EAbrV6mwoEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f4c47b-9dee-4e71-a6da-80a91af42a65/1/eaHQ6nMPz8shSZlceCib8tbRhvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.24.0/22
45.91.220.0/22
82.215.96.0/20
91.212.124.0/24
93.157.58.0/24
118.88.16.0/21
119.12.104.0/21
178.218.200.0/21
202.79.184.0/21
IPv6:
2a0e:17c0::/29
Signature Algorithm: sha256WithRSAEncryption
86:58:69:80:25:3f:49:69:7e:2d:e1:b1:50:34:3e:01:57:a4:
f8:c0:80:bd:37:5a:39:c6:bc:fe:84:6b:98:c1:22:0a:71:30:
14:e3:be:3a:66:ab:a3:ff:c4:79:69:64:85:fd:fa:67:b0:a7:
6f:73:04:d1:ee:9e:b4:a6:b4:30:6c:1f:75:a6:84:ae:9d:0d:
77:37:fc:06:c2:e5:50:34:52:90:1e:81:5f:4f:1f:a5:0a:e7:
d0:e8:4c:1c:d1:96:12:00:02:0f:de:e9:f4:74:aa:50:45:72:
1c:ea:d3:a1:9a:05:b3:d9:25:ce:f9:dc:db:fd:8b:89:e5:5e:
28:22:65:c7:be:38:7d:7b:57:fd:2e:66:d3:10:06:d9:40:3e:
1e:23:f2:54:dc:4a:64:74:76:11:8a:67:bc:bc:f0:c2:cf:cf:
bb:e1:53:ee:22:7d:2c:09:91:72:c0:ae:bb:26:8c:fa:44:1d:
ca:db:80:aa:05:1e:ff:0d:64:ec:7f:26:c8:77:83:93:4f:8c:
9e:b5:b7:6f:de:84:fc:7e:a8:6c:27:5b:4d:63:a8:d0:26:39:
62:1c:0e:2b:17:21:3c:30:df:92:95:dc:80:bb:42:a7:78:7d:
05:b9:59:15:e0:83:1e:1e:53:fb:4d:9a:83:8e:39:f2:f8:23:
bc:4c:97:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:57:47 2024 by rpki-client on console-ams.rpki-client.org