Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/svxU7F-l2xch0UxbkeKw7zlhVfM.roa
File: svxU7F-l2xch0UxbkeKw7zlhVfM.roa (raw, json)
Hash identifier: Sm/Y/1fzHPwXq016jlaHXGyL/s2a1ANf6X1qcB4m0bc=
Subject key identifier: B2:FC:54:EC:5F:A5:DB:17:21:D1:4C:5B:91:E2:B0:EF:39:61:55:F3
Certificate issuer: /CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Certificate serial: 01922E901A0C1768E80ED2BE6621831C1921
Authority key identifier: 70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/svxU7F-l2xch0UxbkeKw7zlhVfM.roa
Signing time: Thu 26 Sep 2024 13:40:48 +0000
ROA not before: Thu 26 Sep 2024 13:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60446
IP address blocks: 80.253.246.0/24 maxlen: 24
91.151.88.0/24 maxlen: 24
91.151.89.0/24 maxlen: 24
91.151.95.0/24 maxlen: 24
213.142.148.0/24 maxlen: 24
213.142.151.0/24 maxlen: 24
213.142.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:90:1a:0c:17:68:e8:0e:d2:be:66:21:83:1c:19:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Validity
Not Before: Sep 26 13:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2fc54ec5fa5db1721d14c5b91e2b0ef396155f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d4:35:54:f9:03:8f:6a:86:9f:44:91:d8:cc:
8c:0f:05:5a:47:95:fd:7c:f8:5d:73:1c:92:50:38:
ec:f7:b1:cf:39:74:f0:7b:94:02:51:ea:b6:95:76:
44:85:d5:50:d0:40:49:f9:34:ca:6c:82:77:63:07:
b8:4b:d6:57:b7:bd:be:b3:c8:6a:fc:d8:cd:0e:f0:
1d:20:2a:43:d8:36:0d:ff:36:28:ee:9f:f2:e2:54:
6f:72:fd:9a:e3:47:1d:94:4b:b4:23:0b:59:32:b5:
ad:35:0c:1f:e6:eb:94:9a:20:d9:b4:b7:43:cb:f0:
8e:03:e8:90:cc:6f:de:0e:2b:a8:fb:d5:72:a8:80:
fb:3a:42:34:0d:be:50:6e:1b:28:e8:a0:25:77:1e:
9f:32:27:ac:c9:d0:d4:e4:db:fd:4f:f4:21:dc:b9:
5a:d7:b5:87:e7:5c:e0:9d:75:51:4f:be:26:19:5f:
cc:d2:10:64:b6:fd:c7:1f:74:ff:64:c8:17:a5:5c:
0e:2b:c2:13:7e:a2:9c:99:f9:5f:28:97:fc:02:b1:
40:0b:1a:3d:8e:2c:aa:62:d4:05:7f:fe:41:41:c3:
22:cb:bf:bb:72:86:43:be:d2:4d:4a:c5:b7:d2:9a:
af:27:4a:6c:80:43:e0:5d:cb:f0:a8:2f:f7:5d:b0:
79:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FC:54:EC:5F:A5:DB:17:21:D1:4C:5B:91:E2:B0:EF:39:61:55:F3
X509v3 Authority Key Identifier:
keyid:70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/svxU7F-l2xch0UxbkeKw7zlhVfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.246.0/24
91.151.88.0/23
91.151.95.0/24
213.142.148.0/24
213.142.151.0/24
213.142.159.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:15:16:c6:3b:58:6c:23:ec:af:d6:54:77:0d:72:cd:b9:95:
95:90:67:ab:34:a6:7d:7c:4a:b9:41:5a:b2:1e:f0:6f:1c:5b:
26:48:41:42:b4:a8:a2:8d:90:1b:24:97:b8:e3:21:79:36:4a:
a5:08:64:4f:77:cb:2d:6d:f6:20:77:ed:49:78:c9:d2:41:38:
74:c2:ac:63:b8:c1:39:70:be:c3:76:64:9d:49:2b:49:5b:00:
c6:db:ba:c3:49:fa:65:95:36:f0:ea:7d:01:f9:84:59:6e:93:
cb:4f:cb:89:1c:33:c7:09:c6:e7:2b:e1:7b:5a:1f:fb:43:4b:
50:4a:df:d3:d9:41:cb:15:1b:ad:43:2c:08:8e:57:d7:94:96:
28:3a:90:2c:fb:10:e5:53:92:e1:fc:1f:4c:8b:77:9f:f5:82:
90:e7:4f:bb:41:1e:ff:6a:83:64:82:14:fa:c3:e4:5b:7e:a4:
2c:2b:c0:e8:73:83:83:c1:68:ba:71:0d:bc:aa:bc:db:6a:26:
79:0a:48:ea:b9:d0:a9:e6:8a:94:d2:ac:7e:5d:48:c8:ba:fc:
71:37:c3:82:4f:75:db:5d:78:7d:e5:2f:25:71:b5:c1:fe:0a:
f9:b0:dc:48:cb:24:5d:60:93:cc:3c:fb:0c:0e:c3:b2:d8:b1:
02:a2:1d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 21:05:28 2024 by rpki-client on console-ams.rpki-client.org