Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Zwv0qqT7oHkjoyH-geGbuOP61rI.roa
File: Zwv0qqT7oHkjoyH-geGbuOP61rI.roa (raw, json)
Hash identifier: 9ZtW2oyA2mgGxhULtmRDGgTuqBM57jmntQdRBZvy3gA=
Subject key identifier: 67:0B:F4:AA:A4:FB:A0:79:23:A3:21:FE:81:E1:9B:B8:E3:FA:D6:B2
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01930E2451703CB6A5C6250635D2DE847EB0
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Zwv0qqT7oHkjoyH-geGbuOP61rI.roa
Signing time: Fri 08 Nov 2024 23:38:01 +0000
ROA not before: Fri 08 Nov 2024 23:38:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211192
IP address blocks: 217.180.39.0/24 maxlen: 24
217.180.56.0/24 maxlen: 24
217.180.62.0/24 maxlen: 24
217.180.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.mft
rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0e:24:51:70:3c:b6:a5:c6:25:06:35:d2:de:84:7e:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Nov 8 23:38:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=670bf4aaa4fba07923a321fe81e19bb8e3fad6b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e9:2b:c0:65:62:61:4b:b5:01:59:d2:06:04:
b5:d2:51:8b:31:0a:a9:70:bc:85:dd:15:9c:d1:19:
d3:34:d3:e2:bd:04:37:3f:0b:b9:ac:54:b2:08:ca:
71:5e:7c:c0:67:dc:28:80:d8:cf:20:6a:00:f7:0c:
86:9e:5c:3a:53:91:2d:55:76:fb:1a:a1:b4:3a:29:
01:3c:22:1c:31:80:e6:95:2f:9e:be:e7:5c:bb:41:
0c:d7:39:16:a4:6f:e9:08:69:b6:87:2f:15:d3:53:
75:94:e9:a8:aa:4d:1b:f8:69:7a:56:5e:07:0f:80:
bc:77:80:e4:8c:6e:ff:af:76:9c:65:59:2a:cc:42:
1b:4a:5f:31:26:fb:1e:51:fb:6f:32:ab:4e:98:bb:
ac:c7:a2:a1:cf:ee:e1:35:fb:eb:00:61:e2:de:75:
c9:57:96:aa:0f:c1:ec:7c:38:a9:4a:a9:ec:84:7c:
6d:0c:fd:6e:ca:b5:a2:24:3c:d3:bf:e4:fa:8b:c9:
3f:ab:12:35:ab:bf:cc:be:e1:5c:c9:5b:db:f3:0d:
5b:89:fb:12:57:41:02:ab:b4:ef:2d:be:0a:89:ce:
90:67:95:d1:6f:45:ba:4d:f2:7f:77:57:85:6e:08:
de:ac:f4:e1:6d:5c:cf:22:44:7f:d8:3a:34:85:89:
94:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0B:F4:AA:A4:FB:A0:79:23:A3:21:FE:81:E1:9B:B8:E3:FA:D6:B2
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/Zwv0qqT7oHkjoyH-geGbuOP61rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.180.39.0/24
217.180.56.0/24
217.180.62.0/23
Signature Algorithm: sha256WithRSAEncryption
70:e2:05:3c:58:6f:d2:0e:ba:73:7b:96:20:da:c5:d4:8a:84:
21:8c:7b:c8:75:70:54:d9:06:89:f1:c3:54:6a:e5:3e:22:f1:
d9:29:b7:38:aa:5a:91:39:b6:d8:73:de:e5:56:cf:bc:15:26:
f4:72:ba:d8:e5:74:f4:db:13:01:6d:4e:ce:d5:ae:6f:2c:65:
96:4c:7a:8d:eb:52:19:42:e6:82:ea:88:5a:af:8a:72:f8:0b:
b7:3d:26:4a:55:c2:c6:96:0a:9f:fa:9e:6c:d4:09:15:41:17:
d3:6c:6a:0f:6e:ff:92:47:9e:4f:a8:77:d9:17:54:26:22:3f:
26:a0:ce:f5:81:28:7d:86:06:96:ae:22:0a:e8:6b:71:2d:07:
5f:d1:72:db:f3:7e:c4:63:b1:e7:9c:87:6f:92:99:55:25:7e:
81:22:a9:88:d6:17:f0:c8:bf:c7:8a:7e:7b:37:bc:73:b2:df:
08:da:91:8a:eb:50:d8:7e:94:8c:c4:22:03:1e:13:1f:d8:6c:
9a:ef:63:3d:af:24:36:4b:d6:30:72:1f:2e:ff:60:6b:2d:6a:
9d:de:21:af:0d:88:21:11:bb:a1:ca:31:21:c6:4a:88:fa:a2:
9b:cf:ce:d0:c4:b1:78:05:95:b5:70:40:0f:2c:75:c4:99:d2:
09:78:47:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:56:00 2024 by rpki-client on console-fra.rpki-client.org