Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/qlmfOy_b9k0vQKGjZ_frvbvzsRQ.roa
File: qlmfOy_b9k0vQKGjZ_frvbvzsRQ.roa (raw, json)
Hash identifier: GUco6q2jI+IxCS4aW5aLRaD6s3hCF7V2ear2JdlwCIo=
Subject key identifier: AA:59:9F:3B:2F:DB:F6:4D:2F:40:A1:A3:67:F7:EB:BD:BB:F3:B1:14
Certificate issuer: /CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Certificate serial: 0193401A5DD6E05538E6D2F009A167DE023B
Authority key identifier: 61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/qlmfOy_b9k0vQKGjZ_frvbvzsRQ.roa
Signing time: Mon 18 Nov 2024 16:28:09 +0000
ROA not before: Mon 18 Nov 2024 16:28:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42868
IP address blocks: 77.245.144.0/24 maxlen: 24
77.245.145.0/24 maxlen: 24
77.245.146.0/24 maxlen: 24
77.245.147.0/24 maxlen: 24
77.245.148.0/24 maxlen: 24
77.245.149.0/24 maxlen: 24
77.245.150.0/24 maxlen: 24
77.245.151.0/24 maxlen: 24
77.245.152.0/24 maxlen: 24
77.245.153.0/24 maxlen: 24
77.245.154.0/24 maxlen: 24
77.245.155.0/24 maxlen: 24
77.245.156.0/24 maxlen: 24
77.245.157.0/24 maxlen: 24
77.245.158.0/24 maxlen: 24
77.245.159.0/24 maxlen: 24
185.87.252.0/24 maxlen: 24
185.87.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:40:1a:5d:d6:e0:55:38:e6:d2:f0:09:a1:67:de:02:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Validity
Not Before: Nov 18 16:28:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa599f3b2fdbf64d2f40a1a367f7ebbdbbf3b114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:17:94:da:70:22:03:ba:9e:98:66:55:51:82:
c4:68:96:19:72:d3:a4:a5:84:dd:72:23:23:73:3a:
21:83:2b:df:a9:fc:e8:0d:26:d4:01:25:e2:56:9e:
ea:30:6e:13:be:17:70:bf:8c:aa:6f:54:32:fb:7a:
77:07:4e:e4:bd:7e:9c:43:26:9d:0f:81:4a:4f:23:
fd:75:3b:c5:d6:a9:5e:6d:ed:4e:9b:72:09:d7:be:
7e:5d:92:fc:1c:45:19:b5:d6:d8:8b:df:ff:64:7e:
fd:65:a5:75:f9:7b:29:d3:07:78:ce:76:e5:97:f5:
b7:0d:83:3e:e3:cb:a2:08:8c:b2:41:d5:45:53:4a:
47:f5:e1:3e:02:d5:e9:4c:f7:ec:c0:89:b4:a6:63:
e6:89:fe:37:17:e6:9a:ec:bd:70:e3:39:10:62:f4:
a8:f9:73:08:e5:54:fe:eb:d8:26:8a:fb:d6:ae:16:
02:c9:96:d7:fc:9b:e2:00:3e:30:98:b3:b5:85:76:
ed:5e:3b:91:16:82:57:ae:9b:af:db:85:a4:45:b3:
2d:02:e1:92:29:63:bc:5d:a8:c4:a5:ce:7e:2e:6d:
1a:02:83:da:c4:d5:3c:31:72:5c:fa:d2:2a:cb:65:
95:33:78:56:1c:09:63:4d:82:db:e0:20:1d:14:3c:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:59:9F:3B:2F:DB:F6:4D:2F:40:A1:A3:67:F7:EB:BD:BB:F3:B1:14
X509v3 Authority Key Identifier:
keyid:61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/qlmfOy_b9k0vQKGjZ_frvbvzsRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.245.144.0/20
185.87.252.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:46:b0:c9:ce:0f:2d:3f:a4:ea:27:94:d9:30:e5:41:8d:5c:
cb:94:a3:36:c6:eb:46:1d:c6:e2:62:3d:ca:88:a3:69:2e:85:
ba:e6:0a:80:82:81:74:6a:11:25:e6:2a:3a:fe:59:6a:1b:85:
83:e2:eb:73:1b:a7:b2:08:05:6a:10:91:d2:e8:6f:10:09:1f:
68:c0:4c:ca:d9:4f:e1:1b:de:21:b4:0a:17:33:92:d3:cf:30:
29:a0:a9:13:c4:4c:84:be:90:91:39:72:3a:a6:50:80:e0:5b:
57:da:f3:be:52:14:e1:d7:e1:3b:44:2f:b9:d6:9a:18:59:09:
1a:4f:2c:43:88:95:78:ad:89:6f:6d:aa:f7:85:6b:1a:79:6f:
cf:46:b0:17:d6:52:62:1e:9e:ae:5b:c2:98:69:2c:00:93:1d:
4c:e4:e1:f7:10:1d:e3:87:d0:41:bc:6d:44:06:af:91:d4:dc:
9a:35:0f:84:8b:26:3c:68:3d:f8:69:b8:31:cc:02:ce:a1:95:
16:24:06:e8:e4:3f:fa:50:0b:8c:f3:94:ef:f1:5d:e4:20:9c:
eb:fd:a3:1c:d4:35:79:84:7d:59:5a:52:22:f6:0b:a9:1c:2f:
e4:2a:fe:1f:6b:f6:bd:76:83:bf:d1:e4:df:fe:19:41:95:47:
50:b2:e1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:36:38 2024 by rpki-client on console-fra.rpki-client.org