Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/36FMaWFmwG80HT_hY4lSfDRVYig.roa
File: 36FMaWFmwG80HT_hY4lSfDRVYig.roa (raw, json)
Hash identifier: wZECJME/prAkfT8mKVFXWO/f58lZEEmz7KfLoz7uLbM=
Subject key identifier: DF:A1:4C:69:61:66:C0:6F:34:1D:3F:E1:63:89:52:7C:34:55:62:28
Certificate issuer: /CN=7fe0e759354e83cc19320381109de22da0f1a700
Certificate serial: 018CC8018096DFB6116CA5DE714113DA3FA8
Authority key identifier: 7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/36FMaWFmwG80HT_hY4lSfDRVYig.roa
Signing time: Tue 02 Jan 2024 02:29:50 +0000
ROA not before: Tue 02 Jan 2024 02:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57822
IP address blocks: 80.72.209.0/24 maxlen: 24
80.72.208.0/24 maxlen: 24
80.72.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jul 2024 10:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:80:96:df:b6:11:6c:a5:de:71:41:13:da:3f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fe0e759354e83cc19320381109de22da0f1a700
Validity
Not Before: Jan 2 02:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfa14c696166c06f341d3fe16389527c34556228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:54:85:a8:e9:97:7f:40:c4:6b:28:bd:ba:d6:
6b:39:ca:8a:7a:eb:19:70:d4:83:0d:a6:ce:38:e5:
6b:94:83:37:f6:3f:e7:b3:2e:c8:69:9b:7b:68:b5:
c1:ad:38:02:62:0c:4a:45:31:6b:c5:85:c0:20:05:
08:3c:c3:ec:86:1a:de:1e:d8:d3:0d:52:fd:96:c3:
d7:13:fb:41:80:b1:d3:fa:d0:d0:bd:82:3e:99:cc:
87:ac:f4:02:5c:2a:ba:74:d7:ea:2e:37:62:e9:41:
8f:e3:9a:81:da:b2:ba:fb:c9:ba:36:b7:cd:cd:d9:
fe:4a:01:c4:81:b2:6f:35:97:db:e5:81:0a:ef:8d:
a0:a0:35:b1:24:eb:40:57:52:9e:d7:24:3d:f8:d0:
7e:d8:02:37:a7:2c:f9:73:37:89:71:c7:66:4d:cb:
76:24:af:69:cb:14:c3:44:c5:6d:07:c6:1f:80:8d:
39:e3:c4:99:97:2e:05:d6:a5:97:77:a8:f4:d0:55:
18:93:a1:43:31:03:f0:96:49:c9:0c:fe:67:1e:34:
3e:64:f7:87:e6:0f:e8:6b:48:62:39:c9:cb:5e:10:
64:14:95:a4:4b:9e:e3:74:7c:d4:37:c4:9f:ba:57:
c4:5a:43:55:a4:0d:1e:bc:de:5a:fd:9c:2c:c9:2d:
a3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A1:4C:69:61:66:C0:6F:34:1D:3F:E1:63:89:52:7C:34:55:62:28
X509v3 Authority Key Identifier:
keyid:7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/36FMaWFmwG80HT_hY4lSfDRVYig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.208.0/23
80.72.215.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f2:2c:8c:84:79:ad:1f:4e:91:10:62:5a:47:89:a7:8c:62:
c6:b1:29:b7:05:d6:aa:72:af:07:d3:17:d4:ec:4a:46:3b:20:
80:93:b6:3f:04:27:76:36:d4:21:a7:23:bd:a2:ee:98:f5:fb:
01:28:03:33:59:eb:46:98:de:18:57:3d:37:95:b6:79:2b:70:
7c:c5:92:71:89:d4:db:ad:8c:ca:f9:42:62:1e:3d:c0:77:e5:
45:20:31:ea:08:8a:ac:7b:b7:08:8e:5a:fc:18:11:4e:00:21:
37:56:15:a9:43:18:22:c3:c4:ec:28:75:c1:3c:fc:eb:a6:6c:
6b:c0:5e:c6:3b:8c:de:e6:97:c6:50:fc:97:ac:36:ef:3b:9f:
8f:5f:10:88:0b:ae:2d:26:98:d6:c4:57:e8:1a:70:81:e1:dd:
c1:78:64:57:f3:24:d5:63:69:92:ce:16:75:d5:07:fa:8a:2b:
a3:15:9d:ed:0b:2b:76:55:62:83:a1:bc:48:19:41:74:6f:0c:
36:9f:5e:92:62:fd:71:f9:c9:d2:16:e3:10:3e:ce:ee:af:f5:
c7:82:92:2e:86:f6:28:3b:c2:12:a3:5f:5d:c4:16:a2:3c:a2:
04:9a:a9:ca:04:5f:b8:14:be:9d:4a:e9:f6:83:5f:ce:0a:5a:
97:ed:c1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 19:24:39 2024 by rpki-client on console-ams.rpki-client.org