Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/V077Ss7eP5KxinkI4CT4LTx-a1Y.roa
File: V077Ss7eP5KxinkI4CT4LTx-a1Y.roa (raw, json)
Hash identifier: UxjoI11dgojE4qYZO6SvXwF+jznyMS15rNHD8ey78pQ=
Subject key identifier: 57:4E:FB:4A:CE:DE:3F:92:B1:8A:79:08:E0:24:F8:2D:3C:7E:6B:56
Certificate issuer: /CN=b039ab8298fa363ae837e530028969cc5cbf104e
Certificate serial: 01930C4494B9D471708F065F7DBBED8D4A1A
Authority key identifier: B0:39:AB:82:98:FA:36:3A:E8:37:E5:30:02:89:69:CC:5C:BF:10:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDmrgpj6NjroN-UwAolpzFy_EE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/V077Ss7eP5KxinkI4CT4LTx-a1Y.roa
Signing time: Fri 08 Nov 2024 14:54:01 +0000
ROA not before: Fri 08 Nov 2024 14:54:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214865
IP address blocks: 62.169.139.0/24 maxlen: 24
2a14:5140::/32 maxlen: 32
2a14:5140::/40 maxlen: 40
2a14:5140:100::/40 maxlen: 40
2a14:5140:200::/40 maxlen: 40
2a14:5140:300::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/sDmrgpj6NjroN-UwAolpzFy_EE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/sDmrgpj6NjroN-UwAolpzFy_EE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/sDmrgpj6NjroN-UwAolpzFy_EE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:44:94:b9:d4:71:70:8f:06:5f:7d:bb:ed:8d:4a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b039ab8298fa363ae837e530028969cc5cbf104e
Validity
Not Before: Nov 8 14:54:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=574efb4acede3f92b18a7908e024f82d3c7e6b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3e:c9:9c:92:ee:43:ef:3f:66:90:12:c4:dc:
3b:e0:ed:42:50:90:0b:13:8a:82:09:83:7f:1d:0e:
9a:ab:f5:73:cd:c5:08:66:8a:db:6d:20:d9:bb:57:
12:75:a0:ac:45:02:cb:19:dd:6b:ea:c0:20:6b:8f:
d9:b7:df:19:89:85:36:be:de:47:18:f0:ae:66:1f:
d0:99:61:75:54:8c:9b:53:a7:c9:84:77:f1:53:2f:
5e:14:57:4d:76:83:8f:7f:35:de:4d:20:f8:7d:0b:
98:38:5d:f4:c5:d5:39:b6:45:a6:5f:82:4c:31:f9:
f2:27:94:6b:63:c3:0b:fc:fd:c9:01:ea:bd:39:b9:
03:c3:ec:e8:f1:26:fb:6c:89:52:75:50:2e:cb:98:
02:4b:43:65:ed:a5:e3:93:63:f7:96:7f:16:f2:b3:
e9:aa:e3:11:0e:ba:c8:0c:8c:52:8d:80:2f:93:5c:
cf:d2:fb:06:4c:f6:a3:de:6d:5c:28:ec:8d:44:bc:
7b:60:4b:6f:f6:c8:dc:e1:a0:70:71:a4:a0:10:6b:
4d:33:91:0a:2d:83:ba:5d:ff:cf:15:37:52:a6:82:
5b:50:de:63:56:7f:67:f8:bc:52:d8:ce:88:dd:bb:
3f:05:4d:89:4a:ca:c3:90:88:b0:a9:82:3f:a9:6f:
c7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4E:FB:4A:CE:DE:3F:92:B1:8A:79:08:E0:24:F8:2D:3C:7E:6B:56
X509v3 Authority Key Identifier:
keyid:B0:39:AB:82:98:FA:36:3A:E8:37:E5:30:02:89:69:CC:5C:BF:10:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDmrgpj6NjroN-UwAolpzFy_EE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/V077Ss7eP5KxinkI4CT4LTx-a1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5fd72f-ef77-4537-89e9-9fbd963a513c/1/sDmrgpj6NjroN-UwAolpzFy_EE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.139.0/24
IPv6:
2a14:5140::/32
Signature Algorithm: sha256WithRSAEncryption
76:84:48:0f:98:0d:b0:94:78:ef:17:59:0d:16:dc:d2:3d:eb:
59:e0:fd:1d:34:25:1d:a4:a5:a8:60:70:9b:6b:2b:ce:4d:be:
24:df:d9:f5:87:7f:27:b9:21:3d:30:8b:4d:2b:8d:eb:c2:69:
97:f9:17:14:f1:b8:8c:be:3d:b7:62:91:cd:cf:34:f5:d5:ee:
82:eb:5c:e4:cb:4d:51:09:3f:92:79:b4:27:71:87:11:3d:59:
8a:ba:69:a4:5b:40:ec:1a:3d:21:30:45:42:f9:6b:3d:e3:34:
b4:be:56:0a:c0:76:95:f6:ba:67:19:6b:83:ee:c3:c9:ba:c9:
1a:c0:55:e3:4f:d1:cf:61:20:11:8a:2f:97:ea:86:b9:4d:e9:
92:88:52:d3:62:cc:ab:f8:47:e6:40:54:64:86:1b:dc:8c:75:
e1:c8:39:20:15:7b:b8:3d:79:af:31:78:04:38:82:4c:34:76:
67:f0:80:de:8d:8c:1a:80:02:2c:ca:af:ef:4c:9b:2e:59:55:
66:b3:bc:33:92:02:7b:64:d7:d5:32:18:02:ca:f4:09:61:ac:
54:f3:f2:2a:3a:2c:3f:c1:b2:f5:d3:3f:26:66:5f:84:96:6a:
c9:90:35:72:90:8b:2c:1c:4f:08:f4:1a:f9:e0:97:bd:4e:56:
2f:5f:11:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:21:47 2024 by rpki-client on console-fra.rpki-client.org