Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eEiZ98ekPc6q1p1lxaoOGz4nGXQ.roa
File: eEiZ98ekPc6q1p1lxaoOGz4nGXQ.roa (raw, json)
Hash identifier: 7ORnF3EIz6fhXNOYX8U3yTRQspsFZkQFv5Nw/E8jZsY=
Subject key identifier: 78:48:99:F7:C7:A4:3D:CE:AA:D6:9D:65:C5:AA:0E:1B:3E:27:19:74
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F625FB20C03B2965D144B3B67331706
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eEiZ98ekPc6q1p1lxaoOGz4nGXQ.roa
Signing time: Tue 25 Jun 2024 12:32:45 +0000
ROA not before: Tue 25 Jun 2024 12:32:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396597
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:5f:b2:0c:03:b2:96:5d:14:4b:3b:67:33:17:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=784899f7c7a43dceaad69d65c5aa0e1b3e271974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:6c:7b:95:d2:b5:b6:b2:ab:b9:d7:86:2d:
87:9d:e7:e1:9e:0a:52:dd:94:5a:75:75:e6:8c:e0:
df:12:2b:5c:c3:c4:8c:6e:7d:6e:77:91:b9:f0:dd:
c0:4a:70:44:d5:23:af:71:ad:6f:6f:21:00:0b:24:
b9:b4:b3:3a:7b:48:c7:c3:1d:5f:8f:60:9c:6f:2f:
f4:b2:f7:82:c1:df:13:cc:6a:8a:06:30:a3:8c:c1:
c8:8e:01:0f:92:b2:9a:50:37:0e:9a:c2:82:71:49:
d0:21:80:61:20:76:37:82:80:05:69:be:1f:dc:6c:
8c:6c:c8:7d:59:75:0a:e5:27:8a:db:f1:24:df:2e:
a0:5b:bb:82:1d:d8:9b:7a:a5:6f:2c:88:50:ea:fb:
af:c7:d5:9c:4d:7d:7f:52:a8:d7:24:21:39:50:a1:
3f:1e:13:69:fa:46:51:2c:97:ae:3b:83:e3:31:1f:
aa:3c:28:36:7c:b2:9e:d1:54:2f:3c:e8:4d:b5:78:
c0:8d:72:34:8a:d3:fa:2d:59:66:9c:c9:20:e9:78:
9c:20:6a:3f:48:fb:60:78:1a:78:82:99:a4:9d:87:
70:c8:35:94:19:74:1b:6c:49:47:57:3f:ba:cb:35:
3d:ef:30:7d:8a:67:6b:9d:25:28:1c:4d:f1:20:1c:
b6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:48:99:F7:C7:A4:3D:CE:AA:D6:9D:65:C5:AA:0E:1B:3E:27:19:74
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eEiZ98ekPc6q1p1lxaoOGz4nGXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
4f:ee:92:cd:df:f1:0f:37:fa:6a:35:58:de:0c:5a:1f:59:9d:
4c:be:c9:29:57:2a:99:40:47:59:be:d0:b4:8f:7f:79:8b:4a:
7e:cf:9e:0d:73:c0:9e:80:88:ca:7d:a8:6f:ea:ee:0e:0c:98:
ca:ff:18:a7:d2:db:e5:f2:d6:7b:5d:5a:98:9e:29:a4:96:62:
e5:ec:d4:97:14:13:15:fb:d0:f1:a7:5e:95:0a:3e:cc:3f:8c:
d6:e8:49:49:0e:ce:47:c5:f4:7e:4e:23:d4:45:8a:a8:63:f5:
ea:5b:ca:57:25:ea:ae:d8:df:fb:f4:4a:fb:a2:db:7d:ca:95:
f8:0f:c9:4a:4f:b1:34:75:33:33:34:04:cf:34:a5:8c:ca:77:
d7:3e:b9:21:84:4c:16:60:96:4c:16:ff:e3:3a:9d:bf:86:25:
7c:7a:fb:53:b0:5b:e5:9c:60:cb:bf:29:fd:99:7f:f1:4d:0f:
b8:a7:25:e7:b5:4d:27:9f:dd:37:a7:04:03:bb:d2:fd:5f:d5:
ab:bb:58:3f:9a:6d:fd:37:d7:c0:d8:de:7e:69:67:42:13:e4:
c0:fc:c9:c1:a5:15:be:1d:f5:46:cc:87:ef:ea:a2:0d:31:cf:
8c:fa:c4:60:e5:5a:ae:af:93:e9:18:ed:52:2f:35:22:6d:20:
fc:bf:a4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:47:18 2024 by rpki-client on console-ams.rpki-client.org