Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/U--7Y0o0dVQ43SuNy5sx_pEvlMk.roa
File: U--7Y0o0dVQ43SuNy5sx_pEvlMk.roa (raw, json)
Hash identifier: DhrschBrx51n+AiDxN/dRSPrcv34yCLrsPvK5M3PevA=
Subject key identifier: 53:EF:BB:63:4A:34:75:54:38:DD:2B:8D:CB:9B:31:FE:91:2F:94:C9
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018FF2A67BDF8A09B35AE37C5DAC865E085A
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/U--7Y0o0dVQ43SuNy5sx_pEvlMk.roa
Signing time: Fri 07 Jun 2024 12:22:27 +0000
ROA not before: Fri 07 Jun 2024 12:22:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 45.10.108.0/24 maxlen: 24
45.133.32.0/22 maxlen: 22
77.83.80.0/24 maxlen: 24
185.235.247.0/24 maxlen: 24
193.9.126.0/24 maxlen: 24
193.56.188.0/24 maxlen: 24
193.56.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 04:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f2:a6:7b:df:8a:09:b3:5a:e3:7c:5d:ac:86:5e:08:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jun 7 12:22:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53efbb634a34755438dd2b8dcb9b31fe912f94c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:32:ef:5e:82:81:57:68:f1:aa:e5:63:1a:
2f:41:5d:c6:80:c1:3e:86:a8:ac:ca:2d:0f:22:7a:
28:5c:13:45:ba:da:33:1f:a4:e0:bc:99:7e:b5:fb:
8e:37:f1:d7:81:b3:ed:30:3e:41:2f:8c:49:45:d1:
ae:b2:6d:b3:93:0a:1d:ae:65:3d:73:c8:30:99:c5:
32:87:0f:e3:79:48:fb:78:d3:71:fe:6f:68:b3:e2:
aa:57:67:7d:29:c9:aa:7b:84:44:ba:19:0b:54:f0:
81:d8:fa:69:80:d7:0e:39:f0:de:12:28:e5:ca:7e:
6a:df:c5:03:82:77:d9:e3:1b:48:9f:3b:f9:05:19:
2a:90:f3:96:f2:d9:e5:b4:da:f2:f5:67:29:db:c9:
93:37:c3:e3:c0:e7:d7:3e:d9:be:49:6c:19:76:c4:
0b:5f:21:94:2a:3a:04:1f:9d:59:b9:30:7c:e0:ad:
49:e0:9d:57:ac:e5:65:3c:df:72:b7:46:2e:32:60:
df:71:f0:55:19:95:1c:99:52:22:9a:ae:c4:b6:37:
61:57:24:c1:0c:22:88:c1:73:45:d8:0c:df:67:e4:
61:73:a6:6e:a2:1b:bd:da:a2:07:7a:05:d3:13:77:
42:30:ad:21:05:88:4e:10:67:31:65:9a:d3:b5:5a:
14:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EF:BB:63:4A:34:75:54:38:DD:2B:8D:CB:9B:31:FE:91:2F:94:C9
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/U--7Y0o0dVQ43SuNy5sx_pEvlMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.108.0/24
45.133.32.0/22
77.83.80.0/24
185.235.247.0/24
193.9.126.0/24
193.56.188.0/24
193.56.190.0/24
Signature Algorithm: sha256WithRSAEncryption
36:70:f9:79:38:be:17:17:1d:38:be:04:18:a6:66:b1:fb:e8:
82:cb:5b:ec:47:47:56:04:45:4c:04:64:74:a4:4e:22:94:e2:
07:1d:ee:dc:74:97:a7:1b:ea:16:75:c2:f5:99:9e:e2:e9:9b:
03:47:fc:6e:0b:dc:1c:8d:e1:32:c7:c7:ea:17:a4:c3:8f:71:
9f:21:da:56:cf:13:bf:06:3d:90:6c:ce:94:f9:c7:2b:ce:2d:
54:c2:a3:23:bb:66:80:1d:a7:6a:bf:10:89:48:dd:e0:10:5a:
a7:75:b4:80:50:e5:52:fb:ae:f5:12:f3:8c:52:23:ac:76:22:
b0:01:f3:de:2b:6a:d4:32:e1:8e:93:47:39:7a:7e:5c:49:a9:
67:8d:23:67:b6:20:5b:f2:a8:50:0e:3f:ff:51:cb:e0:61:0a:
79:73:51:0e:cc:86:a0:4b:ea:43:95:05:c9:1b:e0:27:0a:7d:
c3:b8:d9:67:0f:27:2e:97:74:b5:6c:4d:9a:d7:a0:af:7d:28:
9f:95:d3:62:a9:0d:aa:7c:53:2d:8e:ef:1c:68:ca:ba:21:26:
4f:cc:fe:00:4d:88:c8:60:ce:ba:87:3f:d0:92:c8:3a:c9:23:
bd:d0:17:0f:1e:6f:fa:92:88:20:43:50:c9:17:85:37:f1:e4:
23:32:ba:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 14:46:36 2024 by rpki-client on console-fra.rpki-client.org