Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/kEEM_VlTXQNGCtGD1pYZuhpYBYo.roa
File: kEEM_VlTXQNGCtGD1pYZuhpYBYo.roa (raw, json)
Hash identifier: UNYAfcDWhuVFnZqfBRZpOAL0HTLY0E+3/Gxpz0+WMM0=
Subject key identifier: 90:41:0C:FD:59:53:5D:03:46:0A:D1:83:D6:96:19:BA:1A:58:05:8A
Certificate issuer: /CN=bbd351b274fc23a42728303638a0d62b606401b4
Certificate serial: 018CC4938081D3997C459F6C82562361F55A
Authority key identifier: BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/kEEM_VlTXQNGCtGD1pYZuhpYBYo.roa
Signing time: Mon 01 Jan 2024 10:30:50 +0000
ROA not before: Mon 01 Jan 2024 10:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12657
IP address blocks: 212.72.64.0/19 maxlen: 19
212.102.160.0/19 maxlen: 19
213.131.192.0/19 maxlen: 19
2001:1579:2::/48 maxlen: 48
2001:1579::/32 maxlen: 48
2001:1578:ff::/48 maxlen: 48
2001:1579::/48 maxlen: 48
2001:1578::/29 maxlen: 40
2001:1579:1::/48 maxlen: 48
2001:1578::/32 maxlen: 40
2001:1578::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:80:81:d3:99:7c:45:9f:6c:82:56:23:61:f5:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbd351b274fc23a42728303638a0d62b606401b4
Validity
Not Before: Jan 1 10:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90410cfd59535d03460ad183d69619ba1a58058a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:60:9f:37:d5:5e:13:12:d7:29:ae:1e:63:d4:
93:a5:35:d2:74:eb:b8:0f:90:4d:e7:b1:2f:6b:07:
d3:46:d1:c5:7f:d3:d0:d7:ff:5d:4c:e7:34:60:c8:
3b:41:d7:6c:c1:54:1f:1e:7e:61:4e:9a:28:1a:05:
61:fe:85:24:f4:2a:dc:dd:d6:5f:46:e2:70:83:48:
b8:31:d3:f6:9e:82:40:18:a6:fb:7a:05:54:98:1f:
e0:82:1f:c8:d1:34:5a:ae:b2:ab:a3:0f:50:41:64:
e9:c1:da:55:43:3e:39:6f:32:9d:9e:d7:cb:c3:27:
93:04:1c:73:25:0f:7e:47:96:86:97:b3:1a:8e:ad:
0f:11:89:30:bb:ae:58:d4:a9:10:61:0b:6a:10:c3:
6d:69:4f:1a:81:87:a5:c6:16:1f:0a:a4:19:d9:e2:
22:1a:20:fb:12:14:ea:7c:22:c4:36:15:91:54:e0:
fd:f9:d4:c0:1c:81:66:5a:c7:0f:e8:3c:fb:ce:36:
70:13:01:f9:ad:09:ba:3f:17:4e:42:f9:7b:8b:ee:
15:aa:e4:11:59:b1:cb:2f:fe:1b:64:5e:a0:d1:e1:
5c:c1:53:a7:2f:e2:59:8e:53:3e:fb:bd:9c:6a:80:
36:b2:62:dd:b1:3a:5d:ec:a3:f7:72:d2:33:74:1c:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:41:0C:FD:59:53:5D:03:46:0A:D1:83:D6:96:19:BA:1A:58:05:8A
X509v3 Authority Key Identifier:
keyid:BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/kEEM_VlTXQNGCtGD1pYZuhpYBYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.72.64.0/19
212.102.160.0/19
213.131.192.0/19
IPv6:
2001:1578::/29
Signature Algorithm: sha256WithRSAEncryption
41:94:29:2d:4b:65:e9:d8:8a:09:cd:94:a8:ef:98:77:4b:91:
a2:cb:1e:23:95:a6:8a:ac:5a:b3:d3:d6:22:cf:b5:86:47:e3:
f9:22:72:db:2a:1c:59:78:25:d5:6a:c4:0d:c5:58:a4:5b:81:
48:27:7b:1e:f0:99:84:e0:54:96:53:4f:0e:e3:53:e9:6e:23:
32:c6:b3:67:2a:21:2a:dc:39:25:69:dd:4a:f5:96:42:e2:a1:
b2:5d:5f:6a:69:97:15:39:da:8a:45:09:bc:81:0a:f6:b9:fe:
37:fb:67:d8:e3:b7:ae:fd:2e:50:42:7c:b0:ab:f4:5c:81:f0:
b1:65:a5:d0:06:20:ad:b4:b7:a1:11:9d:eb:20:64:fd:90:ee:
4e:f7:65:48:62:c4:d7:58:b9:98:9f:a9:47:4f:fc:79:31:6e:
f9:f4:44:ff:29:5c:19:c3:ea:6d:01:23:d7:ae:bf:ac:58:20:
e6:e7:29:85:c0:05:f1:4c:88:76:1c:47:3d:85:48:41:84:58:
84:84:6f:a1:e9:f0:31:38:b9:43:dd:02:a8:e6:7a:6f:8b:92:
76:ab:4e:68:37:91:1a:0e:4b:d4:bf:c5:a4:44:d4:b7:93:a2:
79:39:99:f7:81:e5:25:79:bd:2c:c8:12:d5:dd:b6:1b:56:01:
1f:d9:c1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 06:17:50 2024 by rpki-client on console-ams.rpki-client.org