Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/gvKxdokVyvVvqidVCEhpavCGypM.roa
File: gvKxdokVyvVvqidVCEhpavCGypM.roa (raw, json)
Hash identifier: JV5vjmuCjYHlQUBmjNHyG5Dq71jx7647+gBZftVYkDE=
Subject key identifier: 82:F2:B1:76:89:15:CA:F5:6F:AA:27:55:08:48:69:6A:F0:86:CA:93
Certificate issuer: /CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Certificate serial: 018CC86F77EC53242816C9A0E35EB1EC477C
Authority key identifier: CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/gvKxdokVyvVvqidVCEhpavCGypM.roa
Signing time: Tue 02 Jan 2024 04:29:57 +0000
ROA not before: Tue 02 Jan 2024 04:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212598
IP address blocks: 5.42.202.0/24 maxlen: 24
194.31.64.0/24 maxlen: 24
194.31.59.0/24 maxlen: 24
194.31.79.0/24 maxlen: 24
194.31.87.0/24 maxlen: 24
2a0f:a440::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:03:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:77:ec:53:24:28:16:c9:a0:e3:5e:b1:ec:47:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Validity
Not Before: Jan 2 04:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82f2b1768915caf56faa27550848696af086ca93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0e:b1:1f:74:dd:9b:e9:5d:07:9e:6f:30:ea:
6c:fd:b0:e8:b0:24:15:9e:56:bd:2c:35:45:dd:fe:
b7:15:a6:f0:d9:bb:73:a7:a4:d2:f3:ed:4b:56:91:
52:af:52:70:2a:27:c0:8f:36:c3:e1:4e:8f:51:74:
8b:33:57:6e:0a:53:9e:d1:0c:f4:a0:5b:fe:68:be:
ff:a9:06:f5:8a:87:1d:96:ba:bc:31:b9:70:a5:18:
cf:94:d5:f4:d9:4d:5d:37:be:2a:eb:17:51:e9:3f:
22:a0:19:0f:6e:99:18:6d:05:59:42:9c:23:6c:ed:
3a:c1:1a:a3:d9:89:45:15:b1:e0:a4:4e:ba:fd:43:
81:6d:98:1c:ea:83:25:7f:4a:43:51:f1:44:c9:93:
e3:e0:99:dd:ba:f6:32:ba:12:5a:ac:f1:5c:cb:be:
79:59:2c:29:7f:40:11:2d:dc:1a:e8:fe:23:33:67:
7f:88:46:4c:e3:c5:cd:ba:19:0a:f8:98:8f:2a:24:
78:6f:cc:cb:f6:a9:4e:ca:ab:d3:e5:32:4a:7d:68:
94:35:cf:8c:2f:33:ff:16:63:36:11:b0:32:f5:9a:
ff:44:82:32:74:74:cc:24:03:6b:1c:4d:0c:8d:ce:
19:51:f5:16:a9:44:44:41:67:42:b0:62:f7:be:6d:
01:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F2:B1:76:89:15:CA:F5:6F:AA:27:55:08:48:69:6A:F0:86:CA:93
X509v3 Authority Key Identifier:
keyid:CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/gvKxdokVyvVvqidVCEhpavCGypM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.202.0/24
194.31.59.0/24
194.31.64.0/24
194.31.79.0/24
194.31.87.0/24
IPv6:
2a0f:a440::/29
Signature Algorithm: sha256WithRSAEncryption
93:f1:c6:a6:15:5f:07:13:00:f0:cd:ab:00:f8:14:91:1e:d4:
ba:e3:98:b2:c5:f9:10:e0:59:df:5d:8a:1b:0d:46:ac:ab:ac:
38:9d:a4:23:e3:f6:a9:ca:b9:f9:3d:83:e0:f5:1e:33:89:3f:
cc:f5:b3:8e:b7:16:52:e3:e6:f0:31:c8:ca:ed:0f:5f:0c:90:
b3:7a:46:15:8e:d3:4b:3e:fb:5e:ee:46:be:64:8a:05:74:89:
b2:7b:2e:8e:9f:2d:ad:1a:4a:bf:ae:cd:eb:17:92:ff:2c:36:
d0:04:bd:4d:0d:60:29:98:7f:4c:68:77:f2:9d:cb:e2:90:0e:
1c:d3:88:79:54:84:e4:82:a4:c7:a1:0f:e8:1d:df:d1:f8:0d:
25:27:e3:f0:67:a8:ed:c9:6b:64:cd:2d:71:73:61:17:7d:3f:
e7:8c:04:0c:b1:fb:98:23:77:a7:0a:75:0d:8a:3b:af:08:6c:
1a:a3:1c:b5:4a:1c:74:0b:4d:f6:41:ea:3c:0d:64:92:61:af:
ac:0e:53:4b:af:04:02:5e:d7:46:87:72:c3:f3:b0:ae:d0:0c:
bb:98:8f:1a:0e:c2:d4:24:1c:0e:a3:8f:09:bc:22:94:f1:b0:
f2:77:ff:42:09:57:5b:87:30:ce:b1:d4:af:19:47:05:1f:09:
eb:2c:96:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:43:16 2024 by rpki-client on console-ams.rpki-client.org