Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/4rlk6c2qwFdpWvPWqkE2K8ic-KE.roa
File: 4rlk6c2qwFdpWvPWqkE2K8ic-KE.roa (raw, json)
Hash identifier: 5Z8fXitpYdF1EYQ/yasi2VGJSaycDozhOz36ajcFIak=
Subject key identifier: E2:B9:64:E9:CD:AA:C0:57:69:5A:F3:D6:AA:41:36:2B:C8:9C:F8:A1
Certificate issuer: /CN=22190c26894093dc64a05ef2cfd354a06cff039d
Certificate serial: 018F85468E71D49C536914C244893BAAA788
Authority key identifier: 22:19:0C:26:89:40:93:DC:64:A0:5E:F2:CF:D3:54:A0:6C:FF:03:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhkMJolAk9xkoF7yz9NUoGz_A50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/4rlk6c2qwFdpWvPWqkE2K8ic-KE.roa
Signing time: Fri 17 May 2024 06:39:04 +0000
ROA not before: Fri 17 May 2024 06:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16378
IP address blocks: 80.85.192.0/20 maxlen: 23
80.85.192.0/24 maxlen: 24
80.85.193.0/24 maxlen: 24
80.85.194.0/24 maxlen: 24
80.85.195.0/24 maxlen: 24
80.85.196.0/24 maxlen: 24
80.85.197.0/24 maxlen: 24
80.85.198.0/24 maxlen: 24
80.85.199.0/24 maxlen: 24
80.85.200.0/24 maxlen: 24
80.85.201.0/24 maxlen: 24
80.85.202.0/24 maxlen: 24
80.85.203.0/24 maxlen: 24
80.85.204.0/24 maxlen: 24
80.85.205.0/24 maxlen: 24
80.85.206.0/24 maxlen: 24
80.85.207.0/24 maxlen: 24
2a02:d700::/32 maxlen: 32
2a02:d700::/33 maxlen: 33
2a02:d700:8000::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/IhkMJolAk9xkoF7yz9NUoGz_A50.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/IhkMJolAk9xkoF7yz9NUoGz_A50.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhkMJolAk9xkoF7yz9NUoGz_A50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:46:8e:71:d4:9c:53:69:14:c2:44:89:3b:aa:a7:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22190c26894093dc64a05ef2cfd354a06cff039d
Validity
Not Before: May 17 06:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2b964e9cdaac057695af3d6aa41362bc89cf8a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:55:7f:7c:46:11:1a:0e:30:8d:8d:f6:9c:31:
f0:c1:48:53:6d:d8:0d:93:42:73:e4:ba:39:d5:86:
50:a8:94:0a:5d:d9:5d:91:19:81:e3:3a:0a:71:d8:
d2:e2:a0:a2:5f:da:87:e9:a8:ad:06:9b:4f:28:39:
9e:61:7e:0e:55:f0:bc:f0:fb:e3:28:a3:d6:43:17:
d5:b8:5c:0f:e9:99:03:81:f2:4d:38:46:4d:69:e6:
cd:c9:5e:89:73:f8:52:2f:48:1d:eb:e1:a3:e2:92:
e1:31:cc:60:3d:6b:81:e6:e5:9c:1a:ea:b9:eb:da:
0d:37:82:44:1b:d4:c0:4e:19:46:4d:68:7b:3f:d9:
b6:fe:46:6a:fe:18:25:3f:d8:b8:c6:8a:a4:26:90:
c0:f4:67:9d:bb:29:ee:4a:25:6d:61:7a:23:c9:17:
53:46:bf:88:b5:9d:a4:73:4a:c7:ab:3f:02:a0:fd:
b8:a9:7e:50:ee:4c:85:47:ba:d4:93:04:85:c4:fa:
e3:d1:40:d5:1c:a2:48:56:6c:6a:94:78:cd:a1:ac:
49:90:c9:b6:12:ec:7e:ad:e5:77:ef:ab:9c:bb:e9:
83:61:ef:db:fa:5d:f9:9f:06:51:01:20:40:25:c8:
0d:f3:27:9b:6f:2d:6a:10:97:18:41:b1:7e:05:1f:
ad:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B9:64:E9:CD:AA:C0:57:69:5A:F3:D6:AA:41:36:2B:C8:9C:F8:A1
X509v3 Authority Key Identifier:
keyid:22:19:0C:26:89:40:93:DC:64:A0:5E:F2:CF:D3:54:A0:6C:FF:03:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhkMJolAk9xkoF7yz9NUoGz_A50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/4rlk6c2qwFdpWvPWqkE2K8ic-KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/IhkMJolAk9xkoF7yz9NUoGz_A50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.192.0/20
IPv6:
2a02:d700::/32
Signature Algorithm: sha256WithRSAEncryption
4f:e2:57:43:26:77:6b:1f:d2:3e:47:dd:62:63:e5:56:f1:02:
0c:cd:5e:5b:e3:af:4f:70:1c:9f:fb:f6:a0:a4:57:2d:f6:21:
12:19:eb:21:fb:64:3d:85:5e:5f:2f:ce:e6:2a:f5:2c:a8:02:
8e:fc:1f:f5:a7:10:42:62:37:18:b0:7b:df:c9:62:7c:dd:84:
08:35:c1:f1:cd:09:74:a5:cd:e4:bb:c9:22:19:1d:18:f0:b5:
a8:da:28:0c:9d:e1:88:08:ad:91:cb:f7:53:20:78:d1:cf:e2:
fd:9a:06:2f:8b:e2:89:74:27:3e:f4:83:10:ee:1e:5f:59:cb:
26:b7:e0:1c:4d:43:53:a7:14:f8:90:20:a4:49:45:83:1d:32:
08:43:77:e8:ae:8c:70:9a:ac:e1:12:af:e8:ba:a4:98:a3:19:
05:98:15:6d:59:be:48:22:d6:99:54:dc:66:a6:d7:e7:77:fd:
ad:52:05:a9:c4:ca:b5:fe:af:5e:27:3b:d2:a2:7e:5d:e9:25:
c5:27:7a:64:46:af:b9:de:62:b2:9a:d9:1b:5d:30:25:63:a9:
ba:4f:41:ea:7d:b3:a1:d1:49:dd:14:6e:5f:79:fe:d4:3e:8e:
8a:e5:a5:67:31:17:ee:d1:fe:d8:6d:f4:cd:aa:a5:e0:eb:eb:
e9:e4:da:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:49 2024 by rpki-client on console-ams.rpki-client.org