Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/7NQJnU7oVmoFzAkZREexoVvmLYs.roa
File: 7NQJnU7oVmoFzAkZREexoVvmLYs.roa (raw, json)
Hash identifier: DHCSGwajAGP7oJ+epPV8t2cx4CaeT2DHj39Z7dXRcZc=
Subject key identifier: EC:D4:09:9D:4E:E8:56:6A:05:CC:09:19:44:47:B1:A1:5B:E6:2D:8B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01902AF2D1837D969A408044EF7C87993605
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/7NQJnU7oVmoFzAkZREexoVvmLYs.roa
Signing time: Tue 18 Jun 2024 10:44:34 +0000
ROA not before: Tue 18 Jun 2024 10:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202050
IP address blocks: 77.65.142.0/23 maxlen: 23
77.65.194.0/23 maxlen: 23
77.65.223.0/24 maxlen: 24
193.192.176.0/22 maxlen: 22
193.192.176.0/23 maxlen: 24
193.192.178.0/23 maxlen: 24
193.192.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft
rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:f2:d1:83:7d:96:9a:40:80:44:ef:7c:87:99:36:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jun 18 10:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecd4099d4ee8566a05cc09194447b1a15be62d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a3:eb:eb:07:1d:e5:55:f8:20:10:07:52:0d:
38:f5:d1:fd:b3:b4:fe:85:c0:06:da:93:80:e2:c0:
6c:1a:59:82:2d:df:7f:ef:c9:97:ae:1e:85:4e:a9:
38:10:f2:09:cd:4a:f6:07:4c:b5:aa:aa:1f:7d:96:
82:97:de:8e:93:75:5b:fe:0f:f9:5c:e7:2d:30:6b:
b3:ca:8a:94:d4:9e:66:3e:69:72:2f:23:58:36:f4:
a6:9d:fd:7a:8e:eb:18:a3:2e:33:60:81:2e:cd:15:
2b:07:29:e0:eb:0f:ef:7a:ff:9f:75:10:32:8b:f5:
01:77:70:3c:57:c8:34:de:28:a8:12:b5:80:a8:df:
98:6a:96:d7:db:cf:2d:93:3e:29:89:d4:a5:e4:b2:
ba:75:55:f7:50:6c:73:bd:2c:36:0d:47:62:87:46:
82:90:37:56:d5:47:2a:65:53:e6:a7:a2:2b:7e:7a:
1b:c9:e8:88:77:ef:db:42:f8:90:69:7e:0b:fb:67:
a3:26:4b:74:c5:a7:96:77:e9:46:fc:41:e5:4d:84:
09:17:45:1f:76:be:57:26:4a:7d:5c:81:99:6c:e0:
d3:93:9a:54:af:ba:bf:02:12:98:b8:48:60:ba:1d:
5d:15:35:40:67:28:c4:d7:60:1b:ad:ba:a6:81:9c:
fc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D4:09:9D:4E:E8:56:6A:05:CC:09:19:44:47:B1:A1:5B:E6:2D:8B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/7NQJnU7oVmoFzAkZREexoVvmLYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.142.0/23
77.65.194.0/23
77.65.223.0/24
193.192.176.0-193.192.180.255
Signature Algorithm: sha256WithRSAEncryption
7e:8c:ec:a8:61:72:a4:f6:39:a9:d2:fd:fe:cf:9a:ed:71:73:
96:6b:6f:95:89:e3:de:b1:cc:b9:43:00:28:f9:20:98:2f:93:
23:1c:90:5c:66:61:5a:a0:fd:b6:de:36:6c:a5:4b:7c:3c:c9:
62:f4:4e:69:52:59:70:45:c4:d5:3f:b6:d4:bf:0e:0e:d7:80:
91:10:19:ef:1c:4c:11:8c:fc:93:94:17:f2:48:0f:cd:4a:92:
1b:c3:8c:0d:b3:c7:71:81:03:d6:7f:d5:00:f7:9c:26:94:86:
a3:99:86:cf:36:e6:0e:80:8f:04:19:14:b3:36:2b:9f:9a:f8:
19:f2:02:92:3b:28:c8:74:d6:d7:c7:bc:cc:67:11:b0:5a:4a:
77:6d:52:b4:c7:ec:4b:9e:55:bc:71:14:fa:9e:e2:5f:9c:6b:
22:cf:7e:2e:77:fb:49:cc:4f:04:25:31:d4:23:74:61:95:da:
78:70:d7:5b:d6:61:e1:94:51:66:40:9e:65:aa:41:d1:16:e2:
32:85:55:b7:4e:8c:1f:78:7c:61:75:ff:f1:10:94:08:fd:ba:
1c:bb:e3:9a:b1:08:c7:a2:17:41:07:cf:bd:99:c1:59:b7:07:
d0:16:8c:b5:5b:18:bd:19:eb:54:52:09:f7:d4:68:49:a0:2d:
cb:9e:3d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 10:56:33 2024 by rpki-client on console-fra.rpki-client.org