Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/Iveu-PBCEyJDoHhkMrbdgDzz0Qg.roa
File: Iveu-PBCEyJDoHhkMrbdgDzz0Qg.roa (raw, json)
Hash identifier: mtyxTkCIzYe44IzIHFCjfKNMXJtUG5oCbDD+tT+2Lzg=
Subject key identifier: 22:F7:AE:F8:F0:42:13:22:43:A0:78:64:32:B6:DD:80:3C:F3:D1:08
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 01915BF18D9D0A0DA08418A49B05301ED9E1
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/Iveu-PBCEyJDoHhkMrbdgDzz0Qg.roa
Signing time: Fri 16 Aug 2024 16:07:22 +0000
ROA not before: Fri 16 Aug 2024 16:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58074
IP address blocks: 193.138.99.0/24 maxlen: 24
193.169.142.0/23 maxlen: 24
194.6.201.0/24 maxlen: 24
195.88.38.0/23 maxlen: 24
195.245.82.0/23 maxlen: 24
195.245.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:f1:8d:9d:0a:0d:a0:84:18:a4:9b:05:30:1e:d9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Aug 16 16:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22f7aef8f042132243a0786432b6dd803cf3d108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:22:10:85:62:df:91:0b:49:f8:13:92:30:
44:2b:ac:67:cf:9e:47:df:96:1f:40:1e:6c:12:e3:
a1:1e:57:a1:71:6c:74:c4:36:06:b6:55:15:2f:29:
54:79:6e:79:41:f8:34:3c:a8:7a:99:c6:3a:56:3b:
ef:d7:96:11:b8:81:e6:b5:63:89:d1:d5:bf:65:6a:
2c:cc:9e:ea:b7:98:73:dc:85:01:62:7c:2f:ca:cb:
63:62:76:87:3e:82:02:7d:c6:0e:85:02:bf:6e:e2:
b8:13:f5:9d:42:ac:f9:14:20:0e:92:48:c0:ac:b0:
8d:68:93:ee:91:26:e7:40:0b:96:be:5c:bb:e8:49:
c6:2c:4c:19:be:b3:1d:3d:0e:ab:07:06:e1:bc:19:
95:e2:8b:1c:6f:0f:99:93:a6:1c:c9:34:b8:05:47:
84:5d:c3:89:81:bd:31:63:64:45:e6:74:0e:43:a1:
bc:0b:8f:77:61:3d:80:5a:74:cc:b1:2a:19:a3:c1:
33:6c:98:f1:29:73:39:99:86:e3:5b:b9:b6:35:f7:
ee:42:67:e9:4b:1a:1d:95:cf:46:9d:00:72:fb:12:
5c:d1:c7:7e:eb:9a:48:fb:62:52:ae:1f:d5:5b:34:
54:f3:1f:bc:e6:45:73:83:81:cf:69:49:56:17:84:
45:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F7:AE:F8:F0:42:13:22:43:A0:78:64:32:B6:DD:80:3C:F3:D1:08
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/Iveu-PBCEyJDoHhkMrbdgDzz0Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.99.0/24
193.169.142.0/23
194.6.201.0/24
195.88.38.0/23
195.245.82.0/23
Signature Algorithm: sha256WithRSAEncryption
34:69:e5:9b:1a:1c:1f:33:87:07:0a:e5:98:8b:3e:4a:a4:bb:
45:13:b4:d5:03:52:43:67:44:a5:9b:88:dd:a1:0c:b0:47:47:
f5:80:dd:da:9a:cc:ac:5e:c1:6d:e4:73:c4:51:73:55:eb:85:
ea:b3:ed:0d:f3:51:aa:54:49:8b:85:a1:c5:90:b6:2a:ad:2f:
2e:c6:1a:6c:8a:70:16:fa:be:61:d5:6a:1a:f8:20:bc:31:f2:
d1:93:03:4e:60:72:b0:8e:95:20:6d:4a:bd:41:60:57:41:45:
60:9c:11:82:8a:5b:c1:79:32:7e:79:dc:94:7c:60:f3:95:a3:
74:52:98:39:6a:83:de:79:bc:17:ae:d0:93:1b:41:88:57:d5:
d3:dc:65:0e:7f:10:b5:ee:5b:83:40:43:12:d4:3b:1d:02:aa:
0d:39:6a:fa:72:4c:73:b2:25:0a:ec:82:dc:37:86:de:f4:d8:
53:d8:d7:fa:82:d3:7a:c4:f6:0e:62:b5:78:fe:97:60:1d:85:
db:09:c1:ba:de:5c:33:e1:9c:b4:91:0b:96:f6:23:8c:20:f3:
6f:57:61:9b:e5:d2:b1:1e:1d:85:67:7a:04:64:10:75:cd:1e:
c1:0b:29:c0:da:a6:18:5e:c2:56:72:3e:59:35:23:88:1b:79:
89:20:2b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 21:05:19 2024 by rpki-client on console-ams.rpki-client.org