Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/LR3jEfrUN4yIefnAiD-r2Za5N-Q.roa
File: LR3jEfrUN4yIefnAiD-r2Za5N-Q.roa (raw, json)
Hash identifier: eH7vuPzpUL6JG3C8yaxH/G5fYsc2tnwjei7aa7wCEOc=
Subject key identifier: 2D:1D:E3:11:FA:D4:37:8C:88:79:F9:C0:88:3F:AB:D9:96:B9:37:E4
Certificate issuer: /CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Certificate serial: 018CC6B8F6EC5B89AF6E4320A578E2C858D3
Authority key identifier: 81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/LR3jEfrUN4yIefnAiD-r2Za5N-Q.roa
Signing time: Mon 01 Jan 2024 20:30:59 +0000
ROA not before: Mon 01 Jan 2024 20:30:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11158
IP address blocks: 77.247.1.0/24 maxlen: 24
77.247.15.0/24 maxlen: 24
212.11.82.0/24 maxlen: 24
212.11.84.0/24 maxlen: 24
185.71.48.0/24 maxlen: 24
185.71.50.0/24 maxlen: 24
46.235.109.0/24 maxlen: 24
46.235.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/gVeAUy7Smj-A57pBTvyzednsl8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/gVeAUy7Smj-A57pBTvyzednsl8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:f6:ec:5b:89:af:6e:43:20:a5:78:e2:c8:58:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Validity
Not Before: Jan 1 20:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d1de311fad4378c8879f9c0883fabd996b937e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:0b:1c:8b:f6:af:8d:e3:9d:b3:b9:22:95:
3b:1e:28:49:51:48:be:1c:1c:e0:54:48:5d:2e:98:
97:29:f6:d5:c3:71:a6:a4:9c:44:2f:cb:11:3e:87:
ef:18:b0:ab:c5:8c:97:99:c5:e2:9a:59:8c:2b:76:
13:a8:d7:84:ac:2b:49:be:25:4c:42:15:c0:47:fe:
df:8c:40:db:db:68:15:d1:e3:8f:58:bd:88:ab:e6:
71:6e:89:31:7d:ac:07:00:f5:76:f3:62:7f:63:ce:
80:06:7b:f5:87:bc:01:01:b3:63:fa:e0:a5:72:8a:
5e:06:c1:6a:ef:7b:4e:25:fe:21:e0:fb:e2:93:44:
c0:aa:b3:65:cc:69:95:23:0c:a4:b0:38:42:c8:9e:
3c:c2:f6:b0:59:6f:70:65:61:52:8c:9d:04:ee:e2:
e9:e3:e7:aa:bf:16:8a:ef:d5:46:4d:c8:0b:a0:2e:
b3:b5:b8:32:49:57:cb:da:d6:9c:c9:b2:e8:4c:12:
c4:58:12:dc:21:77:39:7d:9c:87:8c:70:a4:15:53:
3a:2d:5f:8c:bc:72:61:b9:91:ab:bb:75:c3:99:1d:
2d:f3:36:a0:98:16:e4:f0:d0:50:81:76:f5:2f:33:
fd:3f:f0:83:d5:37:3a:e2:25:5e:ea:78:a7:7d:76:
6c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1D:E3:11:FA:D4:37:8C:88:79:F9:C0:88:3F:AB:D9:96:B9:37:E4
X509v3 Authority Key Identifier:
keyid:81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/LR3jEfrUN4yIefnAiD-r2Za5N-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/gVeAUy7Smj-A57pBTvyzednsl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.109.0/24
46.235.111.0/24
77.247.1.0/24
77.247.15.0/24
185.71.48.0/24
185.71.50.0/24
212.11.82.0/24
212.11.84.0/24
Signature Algorithm: sha256WithRSAEncryption
27:21:6f:d8:43:29:63:ae:e4:e1:9f:ba:2c:86:53:76:98:7a:
34:50:1d:4a:a9:b2:9f:84:9c:9a:5b:03:8f:e0:a3:91:59:85:
57:5d:5e:6c:65:b8:57:30:9e:7e:20:8c:37:cf:e2:9a:f9:9b:
b8:b5:79:7e:2a:0c:29:87:af:64:92:a7:41:6e:73:d9:a6:9e:
ce:8c:8b:d9:b2:cd:1d:b6:b3:e9:18:43:6a:9f:61:dd:f8:af:
8c:18:38:cf:08:d6:4b:2f:92:27:20:47:be:c6:be:62:ab:81:
78:e9:3e:32:31:1e:7a:2e:da:aa:a9:32:32:60:dd:df:60:59:
6b:29:c3:b2:6b:fc:4f:1a:3e:1d:61:ab:40:08:9a:89:26:ca:
13:51:4e:6a:8e:35:e0:5b:d4:ef:e8:76:67:a0:50:5a:a4:16:
c8:f5:55:ba:ae:10:b0:03:e2:d9:c7:b3:ae:58:8a:96:1a:47:
e1:55:4d:99:12:6b:09:6a:99:23:1f:4d:fe:3c:5c:6c:ee:49:
87:dc:59:0f:eb:13:3d:42:5b:73:a8:3d:e0:d8:84:a4:c0:2f:
c4:20:56:73:22:d2:45:bf:5e:81:c1:46:b7:ba:3e:8e:e9:e6:
ff:7f:5c:ec:8e:c2:ea:4d:b3:b7:e0:b8:9f:a5:5f:c9:ff:51:
88:af:45:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:43:54 2024 by rpki-client on console-fra.rpki-client.org