Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/AWU91KfWtjwE9bsUIFqG03V9WWg.roa
File: AWU91KfWtjwE9bsUIFqG03V9WWg.roa (raw, json)
Hash identifier: Q8Nk/gqXQjO0S/+NIb4ZaFXHV+9iI7HtXVzCfZnHQPg=
Subject key identifier: 01:65:3D:D4:A7:D6:B6:3C:04:F5:BB:14:20:5A:86:D3:75:7D:59:68
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018FBE4C4E50DC2A842177C56F4163AE43EB
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/AWU91KfWtjwE9bsUIFqG03V9WWg.roa
Signing time: Tue 28 May 2024 08:23:42 +0000
ROA not before: Tue 28 May 2024 08:23:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12301
IP address blocks: 79.172.226.0/24 maxlen: 24
79.172.230.0/23 maxlen: 23
87.229.20.0/23 maxlen: 23
87.229.51.0/24 maxlen: 24
87.229.56.0/24 maxlen: 24
95.138.198.0/24 maxlen: 24
213.181.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 23:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:4c:4e:50:dc:2a:84:21:77:c5:6f:41:63:ae:43:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 28 08:23:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01653dd4a7d6b63c04f5bb14205a86d3757d5968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:24:1d:d8:e1:de:52:64:c5:26:4e:96:58:c3:
9d:cf:c9:9a:38:6c:50:e4:ef:14:4c:e5:13:5f:dc:
61:04:4a:48:a5:be:54:2b:85:0e:c9:8d:dd:ce:9a:
fb:4f:b5:c3:8b:7b:e2:f9:d6:12:4d:49:22:b0:9b:
14:8b:69:10:42:15:ae:8f:02:61:dd:96:f7:cb:45:
9a:47:10:b2:7d:de:4f:ce:e0:9d:c7:3e:44:ee:51:
b4:04:b8:be:41:ca:2d:a2:71:0a:77:ed:ba:fa:91:
18:ac:6a:1e:0e:86:14:a2:b3:93:bb:bd:ef:d0:0f:
05:12:3e:a5:59:73:a4:44:64:9b:7c:05:9b:10:94:
58:ad:ad:39:07:21:1f:a9:cb:0b:56:e4:f4:8e:dc:
25:43:8d:74:2a:8a:95:98:da:dd:1e:80:f7:2d:0a:
08:8b:b1:2c:7c:41:6b:cc:39:f5:b3:43:f2:42:18:
45:75:1d:ec:55:53:88:4e:11:33:b0:85:c6:c9:6c:
c2:2c:2c:5e:db:9b:a2:bd:d1:df:4b:05:07:6f:48:
25:6c:7c:ca:3b:0b:39:de:5b:ec:67:f2:57:4a:df:
02:83:44:5e:0a:33:4b:72:17:4a:f0:ca:5d:a8:10:
1b:75:dd:b6:38:d4:90:19:d4:d7:71:cb:75:28:94:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:65:3D:D4:A7:D6:B6:3C:04:F5:BB:14:20:5A:86:D3:75:7D:59:68
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/AWU91KfWtjwE9bsUIFqG03V9WWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.226.0/24
79.172.230.0/23
87.229.20.0/23
87.229.51.0/24
87.229.56.0/24
95.138.198.0/24
213.181.218.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f0:78:39:16:47:52:bc:11:83:86:00:8b:7b:8c:ca:09:e0:
07:7f:86:70:54:f4:ce:58:26:66:8d:f1:02:b4:9a:fa:ff:87:
d8:03:e1:0f:47:fa:1a:30:94:c7:05:31:fc:03:95:a2:25:91:
5e:dd:fa:6a:fe:2e:d1:0a:84:81:a7:eb:e3:35:31:43:6c:11:
20:92:c9:55:5c:81:06:38:a1:3b:83:d6:64:0e:70:44:71:cb:
d5:28:87:67:bc:35:92:6c:b7:64:73:7c:65:5b:89:c3:57:fb:
99:06:bc:d6:55:9b:c0:0d:87:f4:b7:38:da:fa:bf:fa:f8:a1:
1e:99:91:c3:a7:36:a4:a2:e2:b0:cb:94:f8:7e:3c:81:29:89:
52:20:23:9e:ac:e7:25:f6:14:2d:15:46:65:85:c6:b2:7e:75:
27:9e:de:89:d2:d1:ec:b1:f7:1d:3a:6c:0c:fe:37:72:36:e1:
5e:1c:85:ec:c4:33:9b:33:43:77:23:85:8a:53:d6:38:e6:3a:
02:9e:d2:f1:71:22:91:03:95:09:71:b3:8c:ca:07:02:40:a0:
7d:eb:5a:59:c2:7e:d9:f3:f0:04:76:14:d0:02:26:32:3d:1c:
b9:45:57:4d:14:78:2e:7e:bd:a3:75:ba:e8:92:8a:f6:b6:5f:
c2:72:61:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 03:27:54 2024 by rpki-client on console-fra.rpki-client.org