Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/juli0II7BMcaUX1OE6BZVSXJlTU.roa
File: juli0II7BMcaUX1OE6BZVSXJlTU.roa (raw, json)
Hash identifier: anwf4VeZv69fRI0Lyoc8PqgfIHXPWMRqXS28plwzWbY=
Subject key identifier: 8E:E9:62:D0:82:3B:04:C7:1A:51:7D:4E:13:A0:59:55:25:C9:95:35
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01928B4D9CFA1B38BC60013E9F4FBD9BED59
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/juli0II7BMcaUX1OE6BZVSXJlTU.roa
Signing time: Mon 14 Oct 2024 13:52:52 +0000
ROA not before: Mon 14 Oct 2024 13:52:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215071
IP address blocks: 213.145.68.0/24 maxlen: 24
213.145.71.0/24 maxlen: 24
213.145.82.0/24 maxlen: 24
213.145.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft
rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:4d:9c:fa:1b:38:bc:60:01:3e:9f:4f:bd:9b:ed:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 14 13:52:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ee962d0823b04c71a517d4e13a0595525c99535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:0f:21:be:c6:d3:67:57:fd:34:8f:68:0c:
88:80:cd:91:ea:eb:31:97:10:94:44:ea:31:e3:79:
0b:da:6b:10:17:07:bb:1a:70:cb:40:ef:f4:33:86:
75:ab:08:ba:07:29:ef:0d:22:b8:a3:79:1a:9f:a7:
46:35:d0:3a:da:b2:4e:8a:b6:7c:9a:de:d0:8e:95:
a4:fe:65:2e:70:6b:09:6a:5c:db:52:3a:82:25:bd:
8e:e7:35:35:30:59:e9:ab:71:60:a6:ec:77:7d:e7:
7f:29:05:dd:94:e1:80:59:3a:86:4b:56:d8:e9:7f:
0f:4d:b7:ef:02:d0:98:19:a0:3c:22:ca:65:b6:e7:
8e:fc:ea:b2:0c:70:fb:1c:66:76:c8:3b:7e:48:19:
36:6a:8a:08:e3:1f:1b:71:ef:e2:46:6c:b5:4d:ac:
58:3c:d6:9a:dd:1b:43:1e:c2:1b:dd:45:97:9d:37:
4f:94:62:39:ed:e9:0d:96:0d:bd:be:c5:22:99:22:
78:9e:1c:0a:81:bd:08:41:73:c1:b4:f8:ba:d2:06:
b5:93:6f:0f:6c:46:d4:e4:4e:1b:e6:6a:4c:72:85:
9f:e2:cf:14:01:54:34:c7:37:c4:4d:31:72:77:dc:
3e:33:71:2f:56:bc:a5:93:b2:36:21:f4:9a:93:0c:
f1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E9:62:D0:82:3B:04:C7:1A:51:7D:4E:13:A0:59:55:25:C9:95:35
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/juli0II7BMcaUX1OE6BZVSXJlTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.68.0/24
213.145.71.0/24
213.145.82.0/23
Signature Algorithm: sha256WithRSAEncryption
86:9d:d6:a1:0b:10:85:99:5e:91:4b:f4:35:c0:19:db:98:ee:
98:d3:33:ce:10:bb:76:96:fd:85:ec:04:37:8c:a1:f2:e4:76:
36:27:2b:1d:cb:05:3b:21:c3:62:f3:0e:56:b0:3b:99:8a:63:
c1:77:0b:e5:28:07:43:73:7b:b2:48:9c:ef:4f:4d:2a:4a:9c:
c6:c9:cf:32:f1:54:95:cb:16:48:b6:cf:a3:9d:15:29:c6:61:
31:2e:ad:77:95:12:7e:0d:56:c2:e3:25:94:97:01:aa:95:b4:
6a:27:3f:4f:9a:c8:43:d2:e9:34:23:43:f8:77:7b:78:d0:d4:
05:2b:7d:7a:07:33:e3:92:3b:84:55:fb:10:9d:bf:aa:b1:8b:
1c:0b:c1:75:d2:15:21:1f:d2:57:c3:da:ea:ed:09:ed:0d:2f:
be:4a:7f:a8:cf:c0:ee:1f:1c:1f:15:18:1d:f1:d1:59:46:72:
2f:5a:81:d1:7f:c5:a6:3c:ba:4e:6a:3e:64:92:c9:27:9a:72:
85:db:ef:a2:af:b5:01:fc:e4:97:18:c5:46:50:e4:6c:14:ad:
f5:86:02:c5:b7:9c:4b:aa:a6:e5:f4:60:a9:52:8b:22:18:08:
68:c1:5b:49:49:49:3d:f4:4f:ca:3e:6e:2f:2a:fa:3d:96:c5:
57:ce:eb:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:06:54 2024 by rpki-client on console-fra.rpki-client.org