Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/E5ak1Cdn4_pGkFGODDYoGe72LP4.roa
File: E5ak1Cdn4_pGkFGODDYoGe72LP4.roa (raw, json)
Hash identifier: /V29jkd+S+uHIktCLDAjoQTlqCnqvFFjYjKnxyDGI10=
Subject key identifier: 13:96:A4:D4:27:67:E3:FA:46:90:51:8E:0C:36:28:19:EE:F6:2C:FE
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F6254CC6E3CECA025061F48CB4C21B6
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/E5ak1Cdn4_pGkFGODDYoGe72LP4.roa
Signing time: Tue 25 Jun 2024 12:32:42 +0000
ROA not before: Tue 25 Jun 2024 12:32:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396575
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:54:cc:6e:3c:ec:a0:25:06:1f:48:cb:4c:21:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1396a4d42767e3fa4690518e0c362819eef62cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:aa:a4:5a:37:54:4a:e5:4c:f8:dc:68:e8:39:
1c:35:ad:cc:d8:d0:7c:e9:81:cd:81:bc:36:f5:17:
5a:e1:cd:31:9e:9f:82:1a:e9:6e:0a:19:03:f2:0a:
d4:49:1f:96:96:12:dd:92:97:bf:24:e4:05:a3:fe:
be:8a:85:f6:59:24:8c:95:5a:e8:95:8c:dc:ca:48:
0d:c6:bd:eb:e9:d6:ef:6d:d3:9d:db:13:3f:72:3e:
d2:cb:32:97:eb:06:f0:e5:15:b1:5a:9e:e4:73:89:
38:db:b2:92:d8:27:d8:38:65:d3:7b:19:d4:3d:4b:
c5:cf:bb:56:ea:78:63:4b:1c:fa:b9:65:40:b9:d8:
d4:41:6d:ac:f2:77:bd:26:0e:1c:e8:2c:8d:e9:3d:
d9:d9:09:8c:1d:31:6a:cf:fc:f4:e7:9e:a6:2e:7e:
1f:d7:ee:19:36:90:98:eb:bc:ac:61:75:cf:34:84:
21:5d:80:fb:a9:6c:99:8a:8d:e3:e2:67:aa:43:e3:
5f:7f:fe:9e:09:79:47:6c:2d:a6:0f:ea:97:ce:77:
58:cf:38:fc:bb:b4:db:15:67:42:8f:5f:0a:d1:05:
a5:27:02:d1:a1:4d:8e:f3:70:d0:96:8c:96:88:83:
5f:c9:92:6b:1f:03:9c:41:f5:c7:e2:96:0a:f4:10:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:96:A4:D4:27:67:E3:FA:46:90:51:8E:0C:36:28:19:EE:F6:2C:FE
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/E5ak1Cdn4_pGkFGODDYoGe72LP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
20:d5:e0:21:c9:d0:71:b1:aa:75:40:3c:6a:9a:6a:36:0c:c2:
e2:14:55:30:fe:69:6e:ec:2c:4a:81:8d:a4:4c:5e:e0:2e:eb:
61:47:bc:43:c7:b0:b1:6c:3b:12:2f:c1:95:3b:68:22:03:aa:
01:60:c1:1e:2b:e3:f0:da:40:20:90:e8:73:52:ba:c2:24:ec:
8d:61:d9:89:8e:86:1e:ed:20:c2:73:2d:fb:69:9a:4b:8c:c8:
e8:00:e6:79:7d:55:db:ee:4d:77:9f:47:f5:f2:30:a4:3d:8e:
c4:42:ae:6f:68:fb:98:22:ed:9d:77:5e:43:60:00:d2:52:e0:
8f:a1:b8:89:1f:07:3d:fb:93:1a:95:68:9a:23:73:c7:8a:59:
2b:12:90:49:61:4a:5c:ed:68:15:c3:7c:06:82:be:bc:b6:f3:
35:4f:f0:e9:66:79:3b:d8:07:ac:21:31:a4:85:c4:17:0a:33:
93:7d:c2:31:45:3f:e0:6b:82:09:8b:cf:2a:22:cb:a3:0c:cb:
ea:6d:a0:c3:ea:2e:f8:15:cc:25:7e:f4:a8:bb:36:a5:8d:11:
89:08:48:1c:67:e9:ab:b2:1b:a4:10:c4:62:91:31:58:59:dc:
85:a9:58:ad:c1:f4:4d:44:2f:1e:82:e9:f0:2f:3c:51:6f:90:
89:c2:0e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:13:23 2024 by rpki-client on console-fra.rpki-client.org