Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/V-paaxDBCvalPbeO5DjzsSVfoB4.roa
File: V-paaxDBCvalPbeO5DjzsSVfoB4.roa (raw, json)
Hash identifier: 95OB7oappYQT8RaYVdGNYGs7eZ9gV/iEZPSoYlI3IcQ=
Subject key identifier: 57:EA:5A:6B:10:C1:0A:F6:A5:3D:B7:8E:E4:38:F3:B1:25:5F:A0:1E
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 018CCA29D75A8216C74F9DECC977C23835AA
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/V-paaxDBCvalPbeO5DjzsSVfoB4.roa
Signing time: Tue 02 Jan 2024 12:33:08 +0000
ROA not before: Tue 02 Jan 2024 12:33:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41750
IP address blocks: 185.138.100.0/22 maxlen: 22
92.245.96.0/20 maxlen: 20
92.245.96.0/19 maxlen: 19
109.201.160.0/19 maxlen: 19
92.245.112.0/20 maxlen: 20
158.181.16.0/20 maxlen: 20
158.181.240.0/20 maxlen: 20
77.235.0.0/20 maxlen: 20
77.235.0.0/19 maxlen: 19
77.235.7.0/24 maxlen: 24
176.123.224.0/19 maxlen: 19
77.235.16.0/20 maxlen: 20
77.235.22.0/24 maxlen: 24
158.181.176.0/20 maxlen: 20
158.181.192.0/20 maxlen: 20
158.181.208.0/20 maxlen: 20
158.181.0.0/20 maxlen: 20
158.181.0.0/19 maxlen: 19
158.181.224.0/20 maxlen: 20
158.181.128.0/20 maxlen: 20
158.181.128.0/17 maxlen: 17
158.181.144.0/20 maxlen: 20
158.181.160.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 16:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:d7:5a:82:16:c7:4f:9d:ec:c9:77:c2:38:35:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Jan 2 12:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57ea5a6b10c10af6a53db78ee438f3b1255fa01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5d:d1:b6:61:aa:a5:b7:8b:af:19:01:30:57:
01:24:d1:c0:dc:33:64:b2:d4:08:70:fd:03:9e:ea:
00:dc:26:a3:6a:12:39:0f:b3:72:96:4e:17:32:d5:
7a:db:3c:be:01:dc:ec:4a:55:bb:7a:d3:36:a1:e1:
e6:2d:71:8e:7c:79:2e:4d:5e:f1:27:b5:49:2a:56:
50:14:76:f9:b4:43:36:87:8c:44:07:99:ee:8a:20:
d6:2e:2f:b1:ec:60:43:d0:8e:13:93:e9:01:fa:00:
0b:75:f6:34:9b:3a:10:61:de:ef:a2:0b:ca:08:f8:
6c:47:df:90:ff:68:a5:c3:d2:3f:f1:af:f8:f3:3d:
cb:94:36:0b:7e:84:85:ed:de:74:3b:21:b0:79:4f:
90:47:6e:01:f4:cf:ed:6e:75:66:db:f0:80:98:9b:
af:67:35:b6:8d:c4:a3:f8:ba:a9:c8:84:eb:73:9a:
b4:f5:89:be:c9:41:16:b9:c3:13:9d:76:b4:3b:74:
da:08:91:53:e9:02:8a:99:5a:cd:bc:20:d6:d9:ee:
4a:49:7a:6a:7e:04:0f:5a:a2:c5:41:73:05:8e:31:
a2:91:06:f8:c8:e0:7f:e8:d4:ec:c8:59:9b:29:49:
ef:39:e4:1e:09:1b:8c:bd:77:be:9c:d4:e7:a5:a8:
a9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EA:5A:6B:10:C1:0A:F6:A5:3D:B7:8E:E4:38:F3:B1:25:5F:A0:1E
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/V-paaxDBCvalPbeO5DjzsSVfoB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.235.0.0/19
92.245.96.0/19
109.201.160.0/19
158.181.0.0/19
158.181.128.0/17
176.123.224.0/19
185.138.100.0/22
Signature Algorithm: sha256WithRSAEncryption
48:21:35:88:fa:1f:3e:bf:a6:cd:e7:9c:dd:68:1f:23:0e:d7:
39:f6:23:06:b5:45:d2:c0:1a:6f:43:9c:9f:a8:01:51:4f:33:
03:e3:bd:80:7e:16:3d:c0:5c:03:f7:73:d1:d7:90:9a:52:8c:
fb:cb:b3:49:6f:56:9a:d0:c4:b7:46:f4:69:2f:d4:2e:9c:13:
c5:f7:17:1b:7e:fe:50:73:f4:e7:9b:4e:72:c5:a3:c8:3e:3e:
d2:cf:eb:83:0d:ed:43:dd:b5:3c:cc:d3:be:18:66:e4:2a:57:
36:0e:c7:d1:95:ec:d9:f3:cc:00:ed:b3:2a:d1:2d:2f:9e:b7:
5e:5b:cf:4b:8a:54:de:23:b1:e8:9d:76:5a:9a:3f:03:ac:b8:
a9:44:3c:e1:2f:7f:91:82:a4:4f:c7:4b:d2:6c:cb:79:0b:42:
64:53:8a:b6:71:c3:4a:31:31:1b:d0:bb:d9:f2:9f:da:83:43:
a3:52:fb:f8:e2:03:38:29:2c:6c:d2:bf:ce:2c:59:4b:a6:be:
1a:26:66:13:e6:24:3c:4f:c7:84:e3:82:56:92:cd:61:91:e1:
13:44:f5:89:9a:be:d1:0d:83:48:97:61:e6:63:e6:27:6f:b0:
35:fd:b8:79:ce:8f:14:a2:a4:b1:38:53:83:f1:13:cb:e3:2a:
71:89:f0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:06:09 2024 by rpki-client on console-ams.rpki-client.org