Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/FfQAx7HNz4k7ld2-KMGafGR6ISQ.roa
File: FfQAx7HNz4k7ld2-KMGafGR6ISQ.roa (raw, json)
Hash identifier: ngbfwXRNtOOBUMZ0f002IqYW8RHQh88OFMlqZd05JB0=
Subject key identifier: 15:F4:00:C7:B1:CD:CF:89:3B:95:DD:BE:28:C1:9A:7C:64:7A:21:24
Certificate issuer: /CN=6c6ddb72e7268298c1714583131bbe4ae4ef0916
Certificate serial: 018CC6B779FA6648BC7A4E954D21DE66965E
Authority key identifier: 6C:6D:DB:72:E7:26:82:98:C1:71:45:83:13:1B:BE:4A:E4:EF:09:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG3bcucmgpjBcUWDExu-SuTvCRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/FfQAx7HNz4k7ld2-KMGafGR6ISQ.roa
Signing time: Mon 01 Jan 2024 20:29:22 +0000
ROA not before: Mon 01 Jan 2024 20:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24637
IP address blocks: 193.110.139.0/24 maxlen: 24
212.3.64.0/19 maxlen: 24
193.19.183.0/24 maxlen: 24
193.19.180.0/22 maxlen: 24
80.244.208.0/20 maxlen: 24
2a02:1798::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/bG3bcucmgpjBcUWDExu-SuTvCRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/bG3bcucmgpjBcUWDExu-SuTvCRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG3bcucmgpjBcUWDExu-SuTvCRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:79:fa:66:48:bc:7a:4e:95:4d:21:de:66:96:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6ddb72e7268298c1714583131bbe4ae4ef0916
Validity
Not Before: Jan 1 20:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15f400c7b1cdcf893b95ddbe28c19a7c647a2124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5d:19:1a:c2:6b:37:82:aa:28:bf:47:21:92:
e2:ff:08:9c:62:77:5f:4e:19:cb:9c:55:5e:04:59:
f1:ee:3d:b6:39:bd:07:ff:97:6f:22:de:d0:47:29:
c9:2d:f3:53:f5:be:1a:12:a3:26:fb:90:f7:43:e6:
ab:cb:c1:d1:80:84:73:c0:0a:d2:1d:c5:35:35:82:
e4:24:cd:44:6e:22:75:23:c1:9b:c8:3c:b6:fa:62:
6e:b7:10:65:58:36:62:d4:b6:8e:9e:d3:de:ea:a7:
10:aa:6e:58:6c:e3:68:53:21:37:5e:58:4a:85:cf:
47:bf:b2:19:8c:4e:7e:e0:a2:86:0d:6c:7f:58:57:
a1:97:45:1b:38:8f:f3:6e:86:dd:3b:49:78:9b:1b:
90:ce:02:c1:5e:e2:56:4e:9a:c7:cb:bd:ce:54:fa:
65:4a:b7:ca:ec:58:8f:e0:90:b5:59:dd:a0:3c:8e:
3d:16:31:d5:af:11:b6:e5:f3:20:04:73:8b:b8:57:
3b:b0:e5:6f:77:0c:f3:ae:31:bb:05:63:84:8f:04:
77:74:64:76:5b:cf:21:72:50:44:4e:82:19:e8:1b:
8a:fb:d1:2d:84:ee:25:c2:38:86:12:b3:4e:8d:21:
7a:15:12:55:a5:89:35:b4:d8:5b:0e:83:f7:c6:7e:
66:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F4:00:C7:B1:CD:CF:89:3B:95:DD:BE:28:C1:9A:7C:64:7A:21:24
X509v3 Authority Key Identifier:
keyid:6C:6D:DB:72:E7:26:82:98:C1:71:45:83:13:1B:BE:4A:E4:EF:09:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG3bcucmgpjBcUWDExu-SuTvCRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/FfQAx7HNz4k7ld2-KMGafGR6ISQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/bG3bcucmgpjBcUWDExu-SuTvCRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.208.0/20
193.19.180.0/22
193.110.139.0/24
212.3.64.0/19
IPv6:
2a02:1798::/29
Signature Algorithm: sha256WithRSAEncryption
51:b0:5b:c8:2d:b9:31:93:29:dd:f1:14:73:64:12:63:6a:b1:
dc:36:86:53:83:f4:e7:bc:d7:70:bc:91:fe:8f:0e:94:df:d3:
58:3b:75:3b:dc:4b:78:8a:f2:64:d8:4a:a2:fe:a7:0e:35:a4:
fc:26:f6:17:e3:b0:18:d3:c5:34:85:bc:5d:6d:b3:c8:fe:d5:
b3:b6:e5:7b:cc:c5:b4:5e:16:95:31:a3:ad:50:11:70:0e:e9:
26:14:60:d0:85:cd:83:39:24:70:e2:6c:58:44:a1:66:29:6b:
38:a4:7e:95:88:7d:cd:b6:ef:de:94:62:e9:9c:8e:c5:dd:bf:
a1:df:be:b0:48:2e:bb:70:ef:0f:c3:a0:fb:0d:98:2e:ff:98:
f9:84:d6:5d:df:9b:22:f2:35:b5:28:cb:8b:8c:98:68:01:27:
75:18:69:31:4c:51:39:6f:47:36:0e:47:de:33:26:4a:6f:52:
f8:18:de:af:7a:45:5a:4a:97:e5:d4:5c:e2:34:7b:3a:01:6b:
3c:e1:d7:e4:27:81:90:5d:7b:7f:a6:96:a6:b5:15:0b:1f:87:
70:f2:ab:21:bc:3c:6a:da:32:92:9c:0d:27:df:f6:b9:49:3d:
d1:6e:4e:ea:bb:79:ea:ef:d2:67:32:7d:1b:e7:01:5d:d8:50:
18:21:ff:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:51:07 2024 by rpki-client on console-fra.rpki-client.org