Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/DuRHGP9Dhs4CaHQhdDv06NHymck.roa
File: DuRHGP9Dhs4CaHQhdDv06NHymck.roa (raw, json)
Hash identifier: CNlU1V7NUEoD7Gcc7L39B4brkPEO7OFu6t/3kFVwhj8=
Subject key identifier: 0E:E4:47:18:FF:43:86:CE:02:68:74:21:74:3B:F4:E8:D1:F2:99:C9
Certificate issuer: /CN=151453f482cda78ebc99625d80b0ffc3660f95f2
Certificate serial: 0192BDA7B2C57E0E880598BC662699086423
Authority key identifier: 15:14:53:F4:82:CD:A7:8E:BC:99:62:5D:80:B0:FF:C3:66:0F:95:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FRRT9ILNp468mWJdgLD_w2YPlfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/DuRHGP9Dhs4CaHQhdDv06NHymck.roa
Signing time: Thu 24 Oct 2024 08:32:16 +0000
ROA not before: Thu 24 Oct 2024 08:32:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215992
IP address blocks: 147.78.88.0/22 maxlen: 22
147.78.91.0/24 maxlen: 24
2a09:2040::/29 maxlen: 29
2a09:2040:1::/48 maxlen: 48
2a09:2040:2::/48 maxlen: 48
2a09:2040:3::/48 maxlen: 48
2a09:2040:4::/48 maxlen: 48
2a09:2040:5::/48 maxlen: 48
2a09:2040:6::/48 maxlen: 48
2a09:2040:7::/48 maxlen: 48
2a09:2040:8::/48 maxlen: 48
2a09:2040:a::/48 maxlen: 48
2a09:2040:b::/48 maxlen: 48
2a09:2040:ffff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/FRRT9ILNp468mWJdgLD_w2YPlfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/FRRT9ILNp468mWJdgLD_w2YPlfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/FRRT9ILNp468mWJdgLD_w2YPlfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bd:a7:b2:c5:7e:0e:88:05:98:bc:66:26:99:08:64:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=151453f482cda78ebc99625d80b0ffc3660f95f2
Validity
Not Before: Oct 24 08:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ee44718ff4386ce02687421743bf4e8d1f299c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bf:b2:5c:58:01:ea:8f:68:91:a2:ed:21:c6:
3d:e8:82:6a:c6:21:21:28:76:ad:c5:02:01:f3:e6:
ab:0c:ea:74:11:d9:f0:62:aa:a3:3e:14:05:57:8b:
35:d5:c4:7c:b5:21:be:3e:b9:13:69:da:06:07:43:
f0:4c:5d:79:5c:10:d9:a8:70:c0:69:4d:98:8c:6c:
9a:f6:80:7d:2e:71:b6:e5:c1:6f:0e:3f:35:76:cc:
13:c9:77:cc:c4:c5:03:53:a5:33:d9:88:b6:7f:a7:
e7:6d:24:78:aa:7e:c7:97:3c:7d:9d:52:cc:27:75:
d8:f1:d0:97:7d:14:d1:12:cc:e5:a8:b7:49:a5:f7:
7d:ef:85:1c:da:99:74:41:34:4f:ca:f7:31:19:97:
de:2e:10:55:76:3b:52:8f:3c:49:cb:fb:24:b5:40:
d8:79:72:81:45:21:2d:61:ed:8a:60:4d:e5:48:92:
db:0d:dd:3a:05:81:60:d2:65:d8:1d:33:3f:d3:c6:
8b:6a:29:b4:fe:bf:f0:ef:be:3c:b8:ad:5c:b1:53:
3b:c3:f9:3d:e0:a9:b3:98:bc:45:69:fc:80:90:44:
0e:da:f2:9e:ba:7b:28:ce:fe:e7:96:55:79:05:a0:
78:ad:fc:18:66:20:91:30:48:33:49:31:5b:8d:65:
67:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E4:47:18:FF:43:86:CE:02:68:74:21:74:3B:F4:E8:D1:F2:99:C9
X509v3 Authority Key Identifier:
keyid:15:14:53:F4:82:CD:A7:8E:BC:99:62:5D:80:B0:FF:C3:66:0F:95:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FRRT9ILNp468mWJdgLD_w2YPlfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/DuRHGP9Dhs4CaHQhdDv06NHymck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/FRRT9ILNp468mWJdgLD_w2YPlfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.88.0/22
IPv6:
2a09:2040::/29
Signature Algorithm: sha256WithRSAEncryption
49:6f:6b:75:16:c7:79:e8:39:79:1a:ec:fa:4c:5d:80:c0:7a:
fa:cd:07:15:17:05:b1:f9:6b:fe:ac:36:d1:c9:9d:6b:0f:26:
41:a6:2a:e7:3a:40:d2:7c:d1:6b:fc:cb:d1:bc:d7:70:16:7c:
49:02:42:76:1f:ec:f2:9d:11:22:e3:4d:9d:a3:88:64:42:18:
94:bb:f3:5e:3e:6b:46:c8:ad:aa:e9:da:af:6b:3f:28:fb:90:
06:d3:81:12:b8:81:84:3b:59:d3:ba:df:00:11:1a:b9:4a:d2:
a0:9f:5f:cc:f1:2f:55:70:64:35:6e:f5:3b:ca:a6:cf:ac:78:
dd:29:dd:f1:31:eb:2d:de:2c:2a:4f:d4:bc:3f:e1:32:2a:a5:
95:d4:28:67:18:0d:86:e4:ee:75:ac:d1:bf:23:71:0c:05:bc:
2e:54:fd:70:b9:5f:e8:9f:ae:79:f7:27:71:ec:7d:d3:a1:01:
a0:f2:3d:b8:91:43:88:64:79:54:bc:4e:97:9f:ca:3a:f1:9f:
19:c8:25:72:32:0c:2d:42:0a:d5:77:5d:95:9f:35:e1:50:d0:
90:9a:c6:1a:b5:30:21:db:a7:49:ec:9e:59:d3:a2:b2:6e:d4:
d7:05:ec:4f:9b:f8:cd:b5:c9:d5:38:4a:4a:62:8e:c2:63:22:
24:23:f5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:13:55 2024 by rpki-client on console-fra.rpki-client.org