Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/Ir756BtVA4lkSbyfkwCPi7bthDA.roa
File: Ir756BtVA4lkSbyfkwCPi7bthDA.roa (raw, json)
Hash identifier: AvvsK4B7SbKYBNnHhasKXC33/DT+VYF0ooCrwrGmRCs=
Subject key identifier: 22:BE:F9:E8:1B:55:03:89:64:49:BC:9F:93:00:8F:8B:B6:ED:84:30
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0192108781919D7D9CF057383F2440DECFC1
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/Ir756BtVA4lkSbyfkwCPi7bthDA.roa
Signing time: Fri 20 Sep 2024 17:42:48 +0000
ROA not before: Fri 20 Sep 2024 17:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214381
IP address blocks: 37.77.0.0/24 maxlen: 24
37.77.1.0/24 maxlen: 24
37.77.2.0/24 maxlen: 24
37.77.3.0/24 maxlen: 24
37.77.4.0/24 maxlen: 24
37.77.5.0/24 maxlen: 24
37.77.6.0/24 maxlen: 24
37.77.7.0/24 maxlen: 24
37.77.8.0/24 maxlen: 24
37.77.9.0/24 maxlen: 24
37.77.10.0/24 maxlen: 24
37.77.11.0/24 maxlen: 24
37.77.12.0/24 maxlen: 24
37.77.13.0/24 maxlen: 24
37.77.14.0/24 maxlen: 24
37.77.15.0/24 maxlen: 24
37.77.16.0/24 maxlen: 24
37.77.17.0/24 maxlen: 24
37.77.18.0/24 maxlen: 24
37.77.19.0/24 maxlen: 24
37.77.20.0/24 maxlen: 24
37.77.21.0/24 maxlen: 24
37.77.22.0/24 maxlen: 24
37.77.23.0/24 maxlen: 24
37.77.24.0/24 maxlen: 24
37.77.25.0/24 maxlen: 24
37.77.26.0/24 maxlen: 24
37.77.27.0/24 maxlen: 24
37.77.30.0/24 maxlen: 24
37.77.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:10:87:81:91:9d:7d:9c:f0:57:38:3f:24:40:de:cf:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Sep 20 17:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22bef9e81b5503896449bc9f93008f8bb6ed8430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c0:c2:35:f4:0d:bc:8b:0f:83:ec:1a:3f:07:
5e:37:bf:70:d2:92:0b:12:ac:44:bc:f1:c9:7f:fd:
6d:47:38:51:c9:ef:8f:10:0b:69:3b:3c:b1:8b:bf:
7d:24:34:9e:19:ab:05:8b:07:4e:c3:2f:b9:f3:ff:
e8:b6:2a:95:32:af:3f:15:af:bb:ff:08:28:44:ae:
3b:f6:9d:5c:63:2b:f9:d7:6f:9e:09:ee:d8:79:ff:
3c:f4:65:28:7a:55:1d:56:e7:a4:9a:0d:8f:c3:1e:
a4:3e:ba:0b:e5:66:4a:22:a4:41:c1:13:79:14:76:
a1:27:e8:e4:09:08:68:bd:d8:d0:e7:bc:ce:3b:24:
57:54:9f:c4:8f:45:fe:a2:89:c7:f9:b3:f6:70:71:
74:31:1d:7c:71:13:41:33:c0:de:00:d1:d8:3d:03:
ab:dc:1b:fd:d9:92:12:2b:0d:bf:a4:ff:5c:04:bd:
90:05:03:aa:42:e6:83:b1:a8:90:2b:9f:79:72:d0:
2f:73:42:64:a5:f1:5d:87:a8:01:0d:e3:02:46:47:
05:25:c3:e5:7a:71:0b:68:6e:86:76:0c:76:7a:c4:
76:c4:20:25:35:39:3c:6a:47:2a:67:fb:5b:7f:05:
f2:87:ba:d6:d3:64:9a:30:4f:5e:9c:e0:89:53:b7:
56:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BE:F9:E8:1B:55:03:89:64:49:BC:9F:93:00:8F:8B:B6:ED:84:30
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/Ir756BtVA4lkSbyfkwCPi7bthDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.0.0-37.77.27.255
37.77.30.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:ce:ae:90:fd:16:7f:e5:17:26:d0:7f:35:20:5d:23:f3:3c:
aa:7c:fb:b0:a9:22:92:97:be:7f:4d:23:17:5f:eb:66:d8:b7:
9e:9c:77:f2:54:31:d6:fc:d0:35:16:ea:32:eb:52:ad:75:40:
c1:67:12:4a:25:50:2c:46:82:ef:ca:37:56:07:23:eb:8e:65:
73:b1:c4:11:6a:77:d7:72:54:56:2d:e4:84:4a:f2:31:81:a8:
19:91:bc:2f:52:e1:27:9e:83:41:49:5b:ac:46:73:98:4d:18:
40:49:05:37:b4:77:82:9b:04:58:e7:ea:a3:99:e3:65:56:2f:
6d:71:a8:de:a4:61:75:f3:fa:49:a6:1d:18:60:1d:37:fc:6e:
73:ec:4a:f9:9f:d1:47:c3:93:e3:57:07:f0:92:67:3a:fb:f9:
6b:21:93:63:0c:c8:6c:6d:5f:d2:78:02:55:98:f9:d6:ba:da:
15:61:16:01:62:0a:96:c1:5e:49:c0:5d:9a:99:a5:ba:b1:42:
16:bb:c0:1e:5a:9c:b0:32:02:c6:3e:1a:9f:bf:1a:a5:71:45:
10:28:55:b3:7e:5f:60:a2:a1:cb:60:d9:86:97:41:f1:31:8c:
c7:5c:f2:2f:92:94:f8:32:4e:ce:88:3d:ee:da:9a:a6:14:8f:
52:49:27:93
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:29:07 2024 by rpki-client on console-ams.rpki-client.org