Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/fpNnp2ZtGkveXVBWn2iFJHXX5Ck.roa
File: fpNnp2ZtGkveXVBWn2iFJHXX5Ck.roa (raw, json)
Hash identifier: obKil96p4t1rjLTXNHXF3OHf5k3sJOpZnAW8BlUpgEA=
Subject key identifier: 7E:93:67:A7:66:6D:1A:4B:DE:5D:50:56:9F:68:85:24:75:D7:E4:29
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 018CC64B6B89F9E669B0DFF90D3F6DC232DD
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/fpNnp2ZtGkveXVBWn2iFJHXX5Ck.roa
Signing time: Mon 01 Jan 2024 18:31:20 +0000
ROA not before: Mon 01 Jan 2024 18:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15670
IP address blocks: 62.177.176.0/20 maxlen: 24
93.125.128.0/17 maxlen: 24
62.177.192.0/18 maxlen: 24
82.204.0.0/18 maxlen: 24
82.204.0.0/17 maxlen: 24
82.204.10.0/24 maxlen: 24
78.40.192.0/21 maxlen: 24
82.204.28.0/22 maxlen: 24
82.204.48.0/20 maxlen: 24
78.27.0.0/18 maxlen: 24
62.177.128.0/17 maxlen: 24
62.177.128.0/24 maxlen: 24
95.36.0.0/16 maxlen: 24
62.177.133.0/24 maxlen: 24
82.204.120.0/22 maxlen: 24
62.177.136.0/22 maxlen: 24
82.204.126.0/24 maxlen: 24
62.177.144.0/24 maxlen: 24
62.177.146.0/23 maxlen: 24
62.177.148.0/24 maxlen: 24
62.177.150.0/23 maxlen: 24
62.177.152.0/21 maxlen: 24
62.177.160.0/21 maxlen: 24
62.177.168.0/24 maxlen: 24
62.177.170.0/23 maxlen: 24
62.177.172.0/22 maxlen: 24
82.204.64.0/19 maxlen: 24
82.204.68.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:6b:89:f9:e6:69:b0:df:f9:0d:3f:6d:c2:32:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 1 18:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e9367a7666d1a4bde5d50569f68852475d7e429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:18:84:5b:0b:e6:d0:27:fc:9f:13:29:fc:34:
ef:78:28:a5:6a:09:a7:64:c4:b0:17:4d:3c:7b:7c:
91:f6:aa:f9:80:70:11:ad:d2:6d:af:d7:7e:b5:3c:
b6:49:3e:c8:41:20:89:85:44:a8:9c:02:34:33:27:
af:ce:96:e5:27:54:e6:b4:c5:5c:c9:6a:74:61:46:
53:1a:f2:fc:73:18:19:5c:4f:a2:e9:6f:9f:20:7f:
4e:ad:be:55:07:27:d2:d2:41:a3:63:aa:13:ac:22:
a7:25:8d:dc:7c:6e:4b:b8:46:ed:ed:7d:79:3a:46:
45:e1:07:b5:8a:0d:cf:6c:d5:71:15:87:cc:61:96:
5b:b1:b7:ef:48:91:c0:fc:05:71:a3:0e:bb:c6:cb:
5d:23:a2:f4:e7:ea:71:2a:4d:55:aa:41:a3:9e:4c:
5c:85:57:f7:8a:34:a5:65:f8:ab:0f:50:98:84:9a:
7f:1e:9e:b8:58:be:63:69:04:ad:30:8d:41:31:14:
ba:94:e1:ad:0f:26:44:0a:16:eb:7a:69:e0:8a:64:
12:4d:6f:c7:eb:cb:06:d2:db:37:17:ea:01:d3:f8:
eb:0a:15:0e:46:35:14:86:68:35:dc:59:a9:bf:4d:
4f:2b:22:ec:03:ed:f8:6f:ac:cd:e1:07:ce:d3:52:
b1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:93:67:A7:66:6D:1A:4B:DE:5D:50:56:9F:68:85:24:75:D7:E4:29
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/fpNnp2ZtGkveXVBWn2iFJHXX5Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.177.128.0/17
78.27.0.0/18
78.40.192.0/21
82.204.0.0/17
93.125.128.0/17
95.36.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:7a:09:3e:53:d1:77:97:97:e8:24:5f:d3:eb:c7:c9:bd:cc:
4a:14:d9:cc:1a:fc:08:48:9b:b8:69:d4:ea:d2:a7:00:f8:73:
80:ea:03:9a:cb:e5:da:fb:94:d8:ce:de:76:19:54:e0:6f:a6:
d1:98:00:5d:fa:6e:39:af:fc:8b:3e:7c:8d:8d:74:34:1e:ca:
0d:c8:a9:2a:b4:23:1f:5e:e6:10:03:c5:3b:00:07:20:11:4a:
07:f8:b6:8f:08:b0:7c:c6:9a:c8:53:89:40:39:23:23:7f:f1:
3c:fa:e6:9a:e5:7d:80:c6:98:06:59:be:25:4c:c5:ca:4b:4b:
21:a0:e3:6f:05:5e:69:4b:d0:77:75:4b:fc:99:a2:1e:1c:77:
8a:8e:94:30:f3:a0:75:44:6b:9a:e0:e5:78:3b:56:13:db:34:
1b:75:15:c0:f7:4e:e6:43:f3:4d:8c:49:b0:8a:e4:e0:ee:81:
10:40:07:38:d1:75:a9:aa:f4:c0:28:4b:16:f7:9f:ae:7c:d8:
cb:ef:c0:9d:74:0c:4d:a7:0e:0e:07:43:76:9f:ef:16:5c:a9:
ab:d9:20:6f:c3:0e:81:25:68:a4:92:7f:8d:60:ed:6a:c9:7d:
0f:59:1b:5d:de:f8:b8:88:4a:b7:c1:a0:5d:10:6b:49:ea:78:
c6:62:a1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:20:10 2024 by rpki-client on console-fra.rpki-client.org