Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/AYV8vqDsI0L1Jq_o_AFoEAepqjo.roa
File: AYV8vqDsI0L1Jq_o_AFoEAepqjo.roa (raw, json)
Hash identifier: YA6GKqXsGqXgKqypq8FCMDqrP6wRuiW+LC+QlLYbkWk=
Subject key identifier: 01:85:7C:BE:A0:EC:23:42:F5:26:AF:E8:FC:01:68:10:07:A9:AA:3A
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018DEDE4C1F534FCFD484A4F8508BC15A8F4
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/AYV8vqDsI0L1Jq_o_AFoEAepqjo.roa
Signing time: Wed 28 Feb 2024 04:06:48 +0000
ROA not before: Wed 28 Feb 2024 04:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 93.127.160.0/24 maxlen: 24
93.127.175.0/24 maxlen: 24
93.127.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ed:e4:c1:f5:34:fc:fd:48:4a:4f:85:08:bc:15:a8:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Feb 28 04:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01857cbea0ec2342f526afe8fc01681007a9aa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:49:2d:c9:30:96:73:51:1e:72:59:b2:ea:4a:
3c:2b:9a:81:cf:77:73:2c:fb:49:e1:c9:2b:35:38:
73:58:74:e2:9d:bd:7d:d9:66:30:7f:55:47:a3:b4:
79:1e:0f:22:fa:63:a3:4b:05:be:b7:55:93:e7:58:
fd:76:bb:76:43:3f:d3:15:c9:fb:10:ff:94:08:23:
f5:b0:64:7c:18:cf:45:8d:24:fd:ef:44:db:b7:54:
be:c7:c5:2c:93:04:13:b7:78:19:92:da:20:17:d0:
01:f9:04:a2:41:de:ec:10:58:fc:e9:3d:b5:ca:e5:
85:a3:6f:c6:55:b8:c0:7c:7f:05:c0:42:15:a7:8e:
39:c8:d6:6a:9b:ae:b7:fc:f9:d8:bf:ee:fd:84:58:
7c:a9:45:21:0a:f2:ed:9b:5c:1b:41:d9:7e:10:83:
6e:1d:e6:af:b7:15:d9:76:f7:3c:4c:d0:49:d8:3a:
d2:d6:4f:97:4f:c1:8f:b1:16:8e:d7:72:c9:2a:c3:
6d:b7:a1:e9:c8:1d:21:95:97:86:ef:07:f9:71:45:
6f:c8:0a:e4:4a:62:50:0f:2d:56:1e:ed:b2:12:fc:
41:dd:b9:8d:6f:8c:09:65:47:64:c9:b3:86:c1:5a:
cf:19:e6:24:93:34:1f:c3:e2:e9:13:e0:b2:d5:bf:
c9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:85:7C:BE:A0:EC:23:42:F5:26:AF:E8:FC:01:68:10:07:A9:AA:3A
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/AYV8vqDsI0L1Jq_o_AFoEAepqjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.160.0/24
93.127.175.0/24
93.127.184.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:4d:35:74:35:02:b2:c4:c2:22:80:61:4b:bf:a8:31:52:ff:
e1:fd:f6:45:9b:e6:ff:95:b9:a0:cd:df:a1:a5:1e:3b:ff:3f:
36:f5:9b:80:b0:34:30:fc:01:89:7e:e1:90:1c:46:3d:df:c0:
08:0a:d7:4d:74:8a:4d:86:65:58:08:09:f5:cb:59:c4:39:b3:
f6:ed:db:ef:06:df:6e:c4:cd:9c:9c:b1:7c:9a:56:38:81:cc:
63:8a:95:03:10:61:50:45:57:ec:b2:3a:88:49:c2:2c:82:a3:
64:b4:06:41:2e:31:93:1c:02:56:ef:59:95:35:a9:c4:af:57:
8c:71:3d:67:4d:ac:54:22:9c:99:fc:05:69:0d:7a:13:fd:09:
0b:a2:0d:3c:16:39:e5:9b:c9:86:9d:8e:fb:19:3d:32:3b:8a:
dc:85:dd:d2:07:36:5a:5e:f6:9e:c4:ce:db:fb:1a:00:d6:9c:
38:e9:70:fe:2d:48:a0:6b:7e:12:e5:cd:80:a3:24:8c:14:d7:
3a:a2:f5:3a:fa:5c:14:ef:8b:03:ca:09:a7:56:3f:a9:6c:a7:
db:73:e1:88:c8:00:41:2f:f0:f9:38:35:75:d8:e7:bc:b7:ab:
ca:4c:a3:9e:e7:ef:1a:f4:46:8d:4b:6b:5c:a5:86:70:5d:9c:
b1:ec:e7:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:36:18 2024 by rpki-client on console-fra.rpki-client.org