Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-77wj4uLQ3bbX6TR0KoQoF6KKrM.roa
File: 1-77wj4uLQ3bbX6TR0KoQoF6KKrM.roa (raw, json)
Hash identifier: R4rDKOgau4aOgtyTv9Ed1zmPeZJasEhFjZfKd1KwlHg=
Subject key identifier: FB:BE:F0:8F:8B:8B:43:76:DB:5F:A4:D1:D0:AA:10:A0:5E:8A:2A:B3
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AE0A8CDC99E4E457CA7C646BD0739
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-77wj4uLQ3bbX6TR0KoQoF6KKrM.roa
Signing time: Mon 01 Jan 2024 18:30:45 +0000
ROA not before: Mon 01 Jan 2024 18:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31554
IP address blocks: 81.181.78.0/23 maxlen: 23
81.181.76.0/24 maxlen: 24
193.226.92.0/24 maxlen: 24
81.181.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:e0:a8:cd:c9:9e:4e:45:7c:a7:c6:46:bd:07:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbbef08f8b8b4376db5fa4d1d0aa10a05e8a2ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4f:be:07:a1:a7:2f:fa:6e:c8:ed:32:d6:02:
0e:d5:be:9f:74:f7:b5:a9:71:ed:18:59:ee:ec:74:
eb:37:b2:e1:38:f9:42:84:8f:09:a9:72:1e:13:84:
0b:be:bd:0c:22:fa:07:6f:cd:d4:26:85:76:e0:52:
55:0f:06:27:4a:28:2a:a8:b1:f2:38:19:8d:57:1c:
6f:d1:a6:6d:4c:64:dd:c5:75:1e:00:dd:07:fd:da:
1e:6c:7d:27:8e:25:19:a2:b8:ce:03:72:03:d8:21:
14:89:d4:74:10:49:ec:62:fd:ed:9a:77:61:1d:70:
46:3f:53:63:93:cf:7e:05:d4:d7:e0:e9:86:8e:4d:
06:93:f1:44:cd:46:52:f7:cd:c5:80:1d:76:9e:e5:
6d:cc:a8:de:ee:62:b1:8d:9b:27:35:38:7b:d9:c8:
7e:c4:27:78:7a:d8:b3:2d:41:e2:70:8c:91:b7:88:
67:4f:b3:87:56:00:73:4e:35:e8:76:fa:c4:e4:96:
4f:d6:01:28:f6:75:c0:e7:dc:01:b1:e5:b4:94:a0:
b8:68:0f:1e:97:2d:8e:c6:e9:fd:57:67:f5:93:de:
90:bd:61:2c:ca:61:fa:bc:8a:72:07:9f:7b:7f:38:
e5:04:a6:85:77:b6:9e:16:43:81:69:b3:11:eb:1a:
07:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BE:F0:8F:8B:8B:43:76:DB:5F:A4:D1:D0:AA:10:A0:5E:8A:2A:B3
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/1-77wj4uLQ3bbX6TR0KoQoF6KKrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.76.0/24
81.181.78.0/23
81.181.165.0/24
193.226.92.0/24
Signature Algorithm: sha256WithRSAEncryption
21:af:9d:a0:09:46:55:bf:d4:cd:08:eb:c6:16:b8:78:b7:6c:
7e:28:75:65:e1:a1:ec:cd:d0:67:f4:8b:bb:ff:6e:25:b4:3d:
7f:14:91:cf:7d:ee:fb:0b:c4:99:b7:4f:b5:74:43:0b:50:86:
ff:dc:10:46:aa:1a:c3:d0:c9:b9:71:2b:e1:96:5e:da:f1:74:
aa:7f:3f:87:d6:d8:04:e1:21:c9:e7:91:b9:3d:14:d8:9e:52:
89:59:a2:94:64:66:60:93:39:a9:57:b4:bd:d2:46:0f:af:3a:
58:cc:63:eb:da:dc:80:06:4c:18:63:3d:cc:f8:64:27:90:48:
1e:db:ef:5a:f8:94:12:1a:32:00:19:60:82:50:65:7c:6f:b2:
70:06:e0:fa:4d:79:c1:4d:d4:58:0c:38:c1:66:d9:2c:c7:ed:
9a:ff:41:ce:b3:6a:97:ab:6c:bb:51:94:90:13:09:13:3c:e3:
1e:7e:85:5b:6a:52:5b:19:f5:dd:8e:e5:47:df:9a:c5:be:75:
52:91:d7:f0:1d:89:25:e6:ca:96:23:45:d6:16:f1:82:93:0e:
41:91:ad:a4:f3:df:9c:30:94:5f:0e:19:1c:c3:1d:6c:7a:0b:
fa:2d:78:cc:f1:2b:40:9c:ff:c1:eb:a3:61:f3:c4:2e:46:bd:
b6:93:ef:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 13:29:34 2024 by rpki-client on console-fra.rpki-client.org