Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vvGaOgYUBh9maYZoWmDiSRcVIAI.roa
File: vvGaOgYUBh9maYZoWmDiSRcVIAI.roa (raw, json)
Hash identifier: inc19V+HaVgHnJYonUzep2TN4lDT9d0fTO7YPNpuq/4=
Subject key identifier: BE:F1:9A:3A:06:14:06:1F:66:69:86:68:5A:60:E2:49:17:15:20:02
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2F1E508D37026654EBB97B2F89E77
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vvGaOgYUBh9maYZoWmDiSRcVIAI.roa
Signing time: Thu 02 Jan 2025 01:48:14 +0000
ROA not before: Thu 02 Jan 2025 01:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 53356
IP address blocks: 79.135.128.0/19 maxlen: 22
80.254.208.0/20 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:f1:e5:08:d3:70:26:65:4e:bb:97:b2:f8:9e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bef19a3a0614061f666986685a60e24917152002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:6a:10:66:2a:5d:10:5c:5a:8c:be:af:dd:72:
29:36:e2:dc:3e:f9:ce:bf:7f:fc:50:3b:71:9d:01:
eb:12:b4:85:40:4b:a2:d8:b4:ff:86:e2:ac:c0:6c:
d7:d6:64:4c:61:49:19:58:cb:8f:c5:ed:26:df:1e:
57:6e:7d:75:c1:38:9c:bb:d2:bf:19:a7:ed:47:85:
e5:9e:ca:4e:e0:f4:3a:32:26:90:89:3e:25:d1:06:
b8:7e:aa:39:31:e9:31:7a:8c:9c:1d:a6:5f:f0:b8:
4b:b3:75:d4:a1:38:d4:64:60:a4:e1:d6:1a:d6:00:
d2:de:9e:f9:d2:e2:15:b6:df:93:52:9f:a3:e2:e3:
e9:5d:dc:27:36:e0:68:cb:06:61:6d:ce:ae:1a:08:
eb:28:e3:52:ea:79:75:77:e4:c0:6b:49:84:bc:40:
48:8f:5a:d9:b6:4b:50:ba:ac:eb:3e:48:f0:dc:82:
52:4c:a3:e7:d5:6b:99:38:9e:3d:33:a3:d0:03:92:
39:0a:ca:21:da:76:ae:50:96:55:e9:30:6a:80:9b:
22:c0:dd:d3:f3:eb:90:c7:42:6c:e2:b0:0b:0f:4c:
ed:26:02:40:49:65:3c:8d:31:c7:d6:0f:cb:0d:b9:
53:f7:66:c9:1e:d9:06:63:4b:8d:a7:5e:7e:4c:9a:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F1:9A:3A:06:14:06:1F:66:69:86:68:5A:60:E2:49:17:15:20:02
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vvGaOgYUBh9maYZoWmDiSRcVIAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.128.0/19
80.254.208.0/20
Signature Algorithm: sha256WithRSAEncryption
c9:74:70:59:01:c1:13:1a:05:57:a8:66:6f:fd:78:57:a0:7b:
1c:df:a1:09:52:66:cb:be:f6:8b:c9:76:f6:d8:84:d9:47:a1:
24:22:ec:32:c2:04:ac:06:7f:ee:26:9a:5e:06:d2:13:34:35:
1e:a8:12:89:b7:60:e2:c8:b2:8d:f2:96:2f:ac:61:13:28:e3:
34:e6:f9:45:ba:5f:d0:7b:df:68:ba:a0:b8:34:82:02:ca:ac:
1d:c6:ec:71:e6:92:19:27:08:08:e8:dd:cb:4a:b4:f6:15:9b:
8a:89:d7:c7:1b:52:06:0b:e5:68:c0:d0:d4:25:26:03:70:16:
7f:3d:15:11:00:2d:49:38:0f:55:49:3e:37:16:a8:51:ed:1b:
18:cc:76:9a:de:c3:5d:63:2f:b1:c5:09:d8:d0:65:c8:62:28:
e0:e3:73:ce:08:26:65:1c:02:35:b9:60:5e:fb:b1:c0:61:1c:
5b:65:a0:d4:4f:e4:86:40:7d:91:50:56:69:68:c3:59:e8:bf:
95:f1:ab:68:50:d4:5c:c4:18:36:29:96:81:98:be:4c:6b:e1:
8e:1e:93:36:e5:25:8e:8c:07:e8:29:46:00:2c:4e:95:70:f9:
ba:db:64:8c:56:eb:67:11:50:8a:9b:68:bb:7c:f0:6d:f4:77:
b7:b8:bb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:19 2025 by rpki-client