Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/E1zQMQFr3fLcdBo_8SJrPtdKVdo.roa
File: E1zQMQFr3fLcdBo_8SJrPtdKVdo.roa (raw, json)
Hash identifier: sLyXrJlXaAAtyXzvljT8KjJcLz0+T6+EnWATxFytOqA=
Subject key identifier: 13:5C:D0:31:01:6B:DD:F2:DC:74:1A:3F:F1:22:6B:3E:D7:4A:55:DA
Certificate issuer: /CN=5e9ed991ee6bc4bb48a8b75011d0481917e0f3f7
Certificate serial: 018CC5DBF9083D2F575F7AD669D0B9B05130
Authority key identifier: 5E:9E:D9:91:EE:6B:C4:BB:48:A8:B7:50:11:D0:48:19:17:E0:F3:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/E1zQMQFr3fLcdBo_8SJrPtdKVdo.roa
Signing time: Mon 01 Jan 2024 16:29:36 +0000
ROA not before: Mon 01 Jan 2024 16:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201225
IP address blocks: 185.236.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 20:41:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:f9:08:3d:2f:57:5f:7a:d6:69:d0:b9:b0:51:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9ed991ee6bc4bb48a8b75011d0481917e0f3f7
Validity
Not Before: Jan 1 16:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=135cd031016bddf2dc741a3ff1226b3ed74a55da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8b:3e:ac:59:40:32:25:e5:f2:f1:01:b9:81:
4f:38:4c:53:91:aa:48:13:bc:94:73:3c:f7:ef:ab:
a7:6d:d1:f0:9b:ce:69:f8:15:0d:3c:3e:79:15:c6:
2d:b8:aa:b1:16:a9:7a:01:04:3c:a1:15:01:8b:d5:
a5:b9:e3:4a:b7:ad:66:db:fc:7a:59:83:47:1f:35:
fe:7b:ae:38:24:fd:45:33:98:2f:0e:b9:36:2e:aa:
a6:e7:59:0b:ca:ba:78:22:53:b5:35:10:92:20:58:
66:0b:67:1f:93:38:77:24:d6:a4:0e:a1:e5:29:8f:
63:18:15:d6:08:f0:37:9b:fb:6c:1d:81:44:57:32:
9f:ba:2c:c6:04:5b:5c:01:04:8b:02:07:54:06:53:
62:2c:76:6f:76:56:48:c2:64:da:e5:d1:57:21:b0:
57:93:79:9d:58:e5:ae:0a:d5:de:28:34:f0:5c:a7:
f3:4a:05:72:11:f3:ae:22:34:24:43:eb:3f:8c:b9:
24:5c:d7:0a:97:c3:27:6b:23:8d:be:fb:31:3a:9b:
e4:f0:e6:a3:41:c0:8c:fd:cb:66:0b:82:ac:47:b5:
0a:73:f0:47:28:28:a8:a8:8b:4c:55:60:a4:df:20:
49:e3:32:d4:aa:21:63:14:a9:9d:47:16:79:5a:26:
a2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5C:D0:31:01:6B:DD:F2:DC:74:1A:3F:F1:22:6B:3E:D7:4A:55:DA
X509v3 Authority Key Identifier:
keyid:5E:9E:D9:91:EE:6B:C4:BB:48:A8:B7:50:11:D0:48:19:17:E0:F3:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/E1zQMQFr3fLcdBo_8SJrPtdKVdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49e426-90cc-4586-90f4-6cdbc2122749/1/Xp7Zke5rxLtIqLdQEdBIGRfg8_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.180.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:86:23:0b:ca:d0:83:57:2f:e9:10:e1:10:11:39:49:db:82:
88:18:75:13:47:27:f7:d2:48:ed:a0:f9:92:da:2c:91:44:17:
96:51:62:de:c4:2a:48:77:47:1c:36:9e:54:dc:98:02:12:df:
1d:27:71:cc:7f:d5:b4:59:31:a2:39:26:1b:1c:c1:48:64:88:
46:e0:82:a2:5e:4a:ca:04:23:1c:24:dd:9b:0b:12:7a:40:93:
8b:1f:f2:94:dd:b3:0b:ed:d9:d4:57:33:42:66:ee:0d:4c:2c:
22:66:a0:df:0b:0d:59:17:ba:01:a3:1d:4b:1c:50:4d:ef:62:
57:d2:cf:be:f1:21:be:58:d5:75:13:80:dc:a7:64:8c:08:a7:
0d:45:75:20:12:43:d5:d7:b1:78:fa:ca:b1:8d:3e:60:cf:cf:
fe:3e:cd:86:ba:13:19:0c:b7:44:89:b5:87:d9:b0:b1:d2:6c:
a0:ea:b4:2a:55:28:79:3b:fa:12:1c:71:64:3b:50:cc:98:44:
61:da:dc:55:b0:ff:a9:e0:e8:ff:27:4e:b1:c1:50:63:01:a1:
d0:da:f9:14:01:be:50:fc:6f:e4:a2:2b:f7:8d:76:a0:42:d7:
44:84:49:3d:7a:3c:e2:2b:fc:d6:75:b3:7c:5a:9b:1b:7e:af:
13:d0:07:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 02:54:06 2024 by rpki-client on console-ams.rpki-client.org