Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/BUg6KfEA7CDVmsVL8Hp0TaDOGO8.roa
File: BUg6KfEA7CDVmsVL8Hp0TaDOGO8.roa (raw, json)
Hash identifier: grpRPrnPoTElcrNPncYIgNIokbzvs3wfPDDTFgs/pIk=
Subject key identifier: 05:48:3A:29:F1:00:EC:20:D5:9A:C5:4B:F0:7A:74:4D:A0:CE:18:EF
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019315347CBFDC221644F2CC7D67DD6EA555
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/BUg6KfEA7CDVmsVL8Hp0TaDOGO8.roa
Signing time: Sun 10 Nov 2024 08:33:01 +0000
ROA not before: Sun 10 Nov 2024 08:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.5.0/24 maxlen: 24
77.90.14.0/24 maxlen: 24
77.90.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:15:34:7c:bf:dc:22:16:44:f2:cc:7d:67:dd:6e:a5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 10 08:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05483a29f100ec20d59ac54bf07a744da0ce18ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:5c:68:de:07:b8:b7:df:db:42:64:ca:02:
4c:01:6f:3c:1f:4e:66:16:3e:3f:ab:2a:52:d1:15:
5e:d0:66:0d:98:21:b9:de:45:96:06:50:b3:45:d7:
2f:7b:ab:9a:f9:25:a5:45:5b:b7:fb:03:d8:f5:64:
03:df:bf:85:ac:48:19:d6:12:cc:55:76:5f:ff:c9:
e2:f4:2f:c3:45:9f:4a:8a:f3:b8:f4:c0:c5:84:de:
c8:94:cc:ca:4b:af:9d:4c:75:f3:57:53:6e:82:d3:
51:ca:0b:e0:ba:e5:45:12:5c:f4:3c:57:3e:f5:0f:
99:62:a0:6e:bb:c6:08:b0:6f:20:40:9a:0e:04:93:
7b:50:d3:b0:39:96:7e:24:ad:b5:33:59:f5:24:a1:
e5:37:5e:b5:a0:2e:5b:27:fa:33:3d:f5:e1:63:53:
fd:d8:57:5d:73:98:e4:86:d9:52:67:0b:56:27:fb:
77:99:6e:9c:e7:61:6a:07:10:ce:df:8f:ab:b6:22:
2b:9d:92:d6:b5:14:53:a2:1b:49:ac:57:13:72:ee:
45:e9:41:29:37:90:b0:63:30:a5:1b:83:5e:39:11:
58:39:6f:39:04:53:bb:13:01:4f:c8:44:11:12:3c:
c4:d8:43:6e:d5:29:cb:a4:fc:e6:1e:ea:3e:9d:2f:
c5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:3A:29:F1:00:EC:20:D5:9A:C5:4B:F0:7A:74:4D:A0:CE:18:EF
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/BUg6KfEA7CDVmsVL8Hp0TaDOGO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.5.0/24
77.90.14.0/24
77.90.53.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:eb:1f:91:09:d2:9b:e6:12:95:60:d6:6b:04:04:7f:aa:6e:
69:e3:5f:49:85:0d:29:3a:af:df:68:8c:c8:ac:ec:00:65:ae:
31:51:f4:b2:c1:31:51:c2:2b:ee:52:00:36:a0:bd:ec:4f:9d:
7b:0d:40:67:5f:75:82:e0:a1:a7:f2:e1:78:4a:56:41:79:15:
af:05:9e:32:e9:2a:41:c4:c4:3a:89:45:5e:f9:8e:0b:84:1c:
e0:df:73:b8:74:3f:30:57:57:14:7e:56:7f:b5:af:07:9c:af:
71:f5:01:f7:82:35:43:3c:16:16:8d:46:be:09:d3:d9:21:be:
12:a0:09:a3:3b:02:ea:38:d3:01:45:83:49:35:42:2f:e4:d9:
19:a8:9b:8b:98:33:a6:0c:a4:b4:06:5b:d4:0b:1f:5c:db:31:
e2:10:a5:5e:81:c3:42:b6:27:ca:a2:39:d4:0d:39:76:fd:f7:
33:93:0f:f4:e4:0d:38:59:11:46:17:ab:f9:7e:cb:8c:14:9a:
9f:4d:66:86:63:df:ec:bb:08:e5:88:de:06:59:6f:7c:ef:19:
20:71:1a:5a:c7:05:00:78:39:f6:cb:df:08:83:0e:fd:6f:d9:
21:0d:65:19:4c:f0:13:fe:32:3d:00:ac:71:ee:ad:d1:a7:46:
e8:5a:c2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:27:16 2024 by rpki-client on console-fra.rpki-client.org