Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/c-BPFgIn2q7wCpQzQuYNrzHMNoI.roa
File: c-BPFgIn2q7wCpQzQuYNrzHMNoI.roa (raw, json)
Hash identifier: w6WRDnD+kiJqRUIeVjkKbdv0HHmFqgjiR7rZZtFMoAU=
Subject key identifier: 73:E0:4F:16:02:27:DA:AE:F0:0A:94:33:42:E6:0D:AF:31:CC:36:82
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7955C9A35DD260ED3E90B0DE607F6CC
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/c-BPFgIn2q7wCpQzQuYNrzHMNoI.roa
Signing time: Tue 02 Jan 2024 00:31:43 +0000
ROA not before: Tue 02 Jan 2024 00:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59784
IP address blocks: 86.106.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5c:9a:35:dd:26:0e:d3:e9:0b:0d:e6:07:f6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73e04f160227daaef00a943342e60daf31cc3682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:3b:c7:0d:7b:82:38:12:61:dd:f4:a7:d5:
2f:45:ac:a6:ca:06:db:63:f0:7b:80:9d:83:26:d3:
c1:75:f2:b0:1d:1a:8e:42:05:c3:f1:40:58:7c:94:
95:27:e2:c6:9d:f1:46:dc:f1:7e:ee:fd:52:ec:8f:
77:51:4d:03:b7:1c:46:a9:77:b3:55:77:d8:6d:62:
2a:a7:34:24:9f:1d:66:0f:65:77:1f:b2:bb:71:4b:
56:89:a5:45:e8:1d:59:57:df:da:23:a1:09:c6:bd:
6d:c5:cf:8d:63:88:20:50:f2:77:5f:9b:a4:41:43:
82:66:b8:2f:51:db:5e:59:e9:56:93:99:66:39:e7:
a9:96:84:3b:40:c0:3c:94:be:36:d1:01:75:3b:97:
df:40:dc:82:0c:eb:34:31:cb:57:66:e4:5d:b0:31:
28:c2:24:b6:31:cf:b0:5e:20:06:e0:bc:cc:85:9b:
dd:6c:52:f9:02:9c:1a:24:5f:b3:bf:44:0a:e2:6a:
47:7e:d0:fc:50:1e:84:04:50:3d:e6:da:a5:de:7f:
a1:32:99:b8:1f:4f:cd:ce:c0:17:f9:a9:0a:9f:2f:
30:da:2e:6e:ef:dc:b0:8f:12:a3:c2:54:f7:ed:b0:
7b:98:ee:6b:b6:00:74:da:b6:a7:8f:d4:5b:60:63:
f4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E0:4F:16:02:27:DA:AE:F0:0A:94:33:42:E6:0D:AF:31:CC:36:82
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/c-BPFgIn2q7wCpQzQuYNrzHMNoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.78.0/24
Signature Algorithm: sha256WithRSAEncryption
eb:83:d0:08:1f:a0:8e:9f:a7:14:46:fd:51:17:81:28:5e:21:
d7:b0:c2:9e:a6:6b:dd:4b:9d:66:42:5b:d2:19:f4:20:a0:24:
90:bf:9e:84:5c:08:f7:d2:eb:88:ae:4b:49:49:27:27:58:42:
7e:47:f8:bf:79:af:da:b8:45:01:af:06:ff:bb:3d:57:e2:51:
bc:a8:4c:e9:53:1e:94:f7:9d:c3:ee:5e:2b:5e:c7:ee:7e:6c:
32:34:bc:1f:c0:55:60:84:d4:e7:f8:71:92:b4:cf:97:cb:4e:
46:9b:d9:7e:68:a3:f0:ca:6f:30:6e:97:66:64:9a:5d:04:e0:
af:39:de:15:c5:2b:d3:b3:11:1f:78:cb:2c:24:88:6d:6e:5f:
45:62:e4:1d:fc:e0:1c:0c:2b:df:5f:64:50:79:16:9f:25:ff:
ab:3b:a0:c0:83:09:40:9f:bc:f3:3e:e9:c7:5a:f9:8c:9f:42:
48:fe:d2:42:21:38:00:f5:0f:ac:79:a9:12:58:a5:ff:53:47:
24:9a:94:2f:86:7b:de:85:f7:de:b1:67:ca:2a:33:ff:d0:9e:
13:4f:1d:cd:34:e5:2c:1c:97:a0:24:18:4c:8e:6a:ac:d7:92:
6b:4c:44:d0:20:80:3b:8b:28:5b:7b:46:79:35:ac:1d:27:73:
dc:61:0c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:56:37 2024 by rpki-client on console-ams.rpki-client.org