Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/Y0gwXGr1OYwKHTZmRF92eAnf0s8.roa
File: Y0gwXGr1OYwKHTZmRF92eAnf0s8.roa (raw, json)
Hash identifier: 4Q+Y+F1AfsINjAJtvfLlpBa3mJciaTQpvEha4aK81bs=
Subject key identifier: 63:48:30:5C:6A:F5:39:8C:0A:1D:36:66:44:5F:76:78:09:DF:D2:CF
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018FE2F0912ABCBF97666CEB82061311BEAE
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/Y0gwXGr1OYwKHTZmRF92eAnf0s8.roa
Signing time: Tue 04 Jun 2024 11:09:27 +0000
ROA not before: Tue 04 Jun 2024 11:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.14.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.23.0/24 maxlen: 24
87.229.31.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.92.0/24 maxlen: 24
87.229.97.0/24 maxlen: 24
87.229.100.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/24 maxlen: 24
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 23:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e2:f0:91:2a:bc:bf:97:66:6c:eb:82:06:13:11:be:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jun 4 11:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6348305c6af5398c0a1d3666445f767809dfd2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e9:16:4c:3c:36:89:59:1e:88:72:25:8e:1d:
ab:bb:53:34:9b:7b:92:cd:72:ff:b6:dd:38:9d:4f:
b3:bd:64:8e:0b:1f:91:63:00:e4:4e:fe:bf:d7:9e:
c4:f7:b2:a6:f8:65:d8:e2:a4:bc:72:59:5c:19:11:
23:0b:d5:7f:46:cc:ba:e9:f7:34:0a:e2:b4:19:5b:
0e:54:fc:a1:b3:d5:d1:ce:9e:39:ed:c6:94:f5:e6:
b5:4c:0f:c7:e1:4e:7f:18:02:18:f5:43:a1:a0:ab:
7a:2b:2a:ba:d7:b6:4b:3a:07:8e:0c:3f:cb:df:91:
67:91:ff:32:db:10:7b:d9:52:00:a0:18:3d:24:8b:
24:ee:61:7b:7f:b1:15:b6:7e:7b:a9:36:85:5e:df:
61:e6:01:54:fb:ad:ff:90:a6:91:ed:6e:3f:7e:90:
74:93:64:37:67:66:d8:06:5c:26:5a:74:0c:98:bb:
2f:2b:b9:3f:1b:d2:7f:0e:76:cf:ed:b5:76:0e:93:
26:72:be:74:1b:25:92:d5:06:89:4d:43:fe:be:d3:
bf:a4:31:7b:1b:19:d0:a3:bd:5d:f2:18:07:79:6e:
37:6d:7b:f5:bd:f1:19:c4:a3:0d:3f:8c:6f:37:b0:
f6:e9:8b:ec:96:87:a3:4e:0f:20:0f:65:8a:62:f9:
3a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:48:30:5C:6A:F5:39:8C:0A:1D:36:66:44:5F:76:78:09:DF:D2:CF
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/Y0gwXGr1OYwKHTZmRF92eAnf0s8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.14.0/24
87.229.22.0/23
87.229.31.0/24
87.229.34.0/23
87.229.48.0/24
87.229.70.0/23
87.229.79.0/24
87.229.81.0-87.229.82.255
87.229.92.0/24
87.229.97.0/24
87.229.100.0/24
87.229.110.0/24
95.138.194.0/24
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ae:e1:60:14:29:5e:c6:2b:22:b3:c7:54:04:d4:14:b1:70:
38:89:8f:16:d8:e2:7f:d5:f7:dc:c0:13:3d:de:53:21:0c:b5:
a7:7f:62:09:55:fc:d5:ba:7a:f8:16:38:11:16:88:1a:54:af:
2c:24:e6:7a:d1:3f:88:2e:6e:1d:a9:4a:07:9c:13:1f:f1:59:
a2:da:40:d2:6f:1e:01:d7:fd:45:33:5a:c6:5f:26:27:32:10:
20:08:cd:98:bf:d7:b8:24:a6:4e:71:ad:b8:b0:0a:db:fc:01:
90:09:51:25:f0:aa:49:1b:af:d5:68:71:5f:ba:82:da:0a:31:
ba:99:b8:38:c8:53:53:e5:a2:ad:6e:ec:60:f5:4b:6f:a9:07:
92:c9:ee:2d:4d:24:e2:89:d1:14:08:b1:48:27:b4:8c:fb:82:
94:55:74:ee:96:ee:f9:77:8d:6b:c4:bb:37:ca:a9:4d:fe:15:
48:c1:c1:af:0e:b7:d0:eb:4a:f4:c4:55:54:ec:eb:f5:f3:c7:
2c:b1:c0:e1:62:e8:f1:8b:11:00:1e:91:83:b6:86:04:49:dd:
4f:f3:f4:92:75:f4:bc:9d:2d:4a:2c:b1:e9:80:d4:c7:fb:e9:
72:b9:72:d9:2a:9a:5d:3f:c2:3a:42:e4:93:7a:a8:12:e2:e0:
e4:30:93:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 03:27:54 2024 by rpki-client on console-fra.rpki-client.org