Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/7evpWuUSbIj0vNrYNgdiB3mxQlQ.roa
File: 7evpWuUSbIj0vNrYNgdiB3mxQlQ.roa (raw, json)
Hash identifier: EHxpCLJqTImzXPPV3b2SHALR0s0KnC/upuHOvwl6VmM=
Subject key identifier: ED:EB:E9:5A:E5:12:6C:88:F4:BC:DA:D8:36:07:62:07:79:B1:42:54
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 018CC72590ED45EE2826B9C9C1A3B2D9B664
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/7evpWuUSbIj0vNrYNgdiB3mxQlQ.roa
Signing time: Mon 01 Jan 2024 22:29:37 +0000
ROA not before: Mon 01 Jan 2024 22:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42907
IP address blocks: 77.245.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:90:ed:45:ee:28:26:b9:c9:c1:a3:b2:d9:b6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: Jan 1 22:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edebe95ae5126c88f4bcdad83607620779b14254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:9c:07:74:83:d5:17:b6:e4:c9:b4:5e:5c:
13:cf:a1:90:61:93:1e:92:d7:10:33:82:2f:14:1b:
25:47:0b:9e:40:9e:98:cd:9a:41:06:27:55:51:d7:
ba:e7:7b:17:87:84:da:6a:7a:c5:5c:0d:96:29:f9:
2f:6c:85:9d:06:c7:87:dc:e1:5b:da:1a:cc:df:e9:
5d:42:95:08:4b:45:aa:9f:72:9a:ff:1f:71:b7:12:
94:7a:83:5c:c0:40:13:e4:e1:ff:75:83:0d:37:df:
ab:bd:e4:d2:60:99:8c:80:e2:c5:77:26:16:ff:c4:
cb:89:9e:91:d2:b0:c4:e6:87:a6:85:ef:39:46:c2:
c2:07:01:22:51:ce:97:e3:db:38:71:02:ac:2d:96:
e9:47:79:0e:a7:43:4b:4e:2c:b6:fd:3b:c4:f4:a6:
49:67:57:ff:ef:2f:ed:6d:82:44:d2:75:2f:93:c2:
dc:0a:16:08:56:08:51:7b:7a:8f:be:d6:af:19:49:
0f:f0:2b:d7:2d:0b:dd:ee:f8:95:35:12:d2:7f:56:
09:fa:e9:43:ff:f8:ae:aa:40:96:ca:a5:5c:4b:6c:
c4:30:e6:0d:8a:c9:a9:e5:2c:91:b0:24:ae:3e:86:
9b:ac:0b:7d:e8:b8:95:00:7a:d0:ac:85:d7:0c:f6:
d4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EB:E9:5A:E5:12:6C:88:F4:BC:DA:D8:36:07:62:07:79:B1:42:54
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/7evpWuUSbIj0vNrYNgdiB3mxQlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.245.224.0/20
Signature Algorithm: sha256WithRSAEncryption
06:05:d2:3e:29:94:f8:f3:83:08:d8:05:4c:77:ca:cd:7d:f7:
c9:b6:6d:0d:84:24:d4:42:fe:6a:e5:fd:90:15:80:50:4b:0a:
2d:58:0e:43:f3:75:16:6d:89:9a:fd:9c:e6:5f:6d:62:60:2c:
3f:7e:fa:e6:87:0e:2d:e2:6e:ca:c8:4c:e1:89:10:7d:61:62:
81:2e:70:d2:c9:ce:dd:fc:c8:b1:68:5f:a8:97:bf:0e:fb:3a:
b5:69:48:68:36:83:d7:fa:76:0e:e1:2d:1c:2f:0f:c7:8d:fb:
78:d1:a2:dd:5a:34:24:16:90:56:e5:fc:34:db:0f:19:67:54:
1f:59:91:a0:51:e8:39:19:cd:1d:6e:ff:e8:1d:be:eb:64:bc:
f9:2b:99:b8:a5:a2:d9:7f:ba:e5:78:85:c8:1e:49:7d:13:9c:
92:60:88:5c:4a:f0:d1:69:3f:8f:7b:1d:ba:f6:a6:f4:2c:fe:
cb:94:19:82:fd:a5:ed:74:0d:1a:be:00:e7:fd:3d:6c:fa:aa:
fe:c1:49:13:e4:2e:0f:05:a1:3b:5a:48:42:79:ca:26:ca:ab:
db:98:fa:98:ee:f3:5a:33:67:47:9c:33:66:d2:41:d1:67:de:
ae:2f:08:a1:50:d8:bd:30:38:27:23:dc:af:af:1c:de:ee:13:
12:a2:ef:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:12:42 2024 by rpki-client on console-ams.rpki-client.org