Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/gg1ql7AeTwU-KZasHlHfvqTtaDI.roa
File: gg1ql7AeTwU-KZasHlHfvqTtaDI.roa (raw, json)
Hash identifier: aticpALlWH20lNGptt61tlrE01YXsT8b6irHPIj7M6c=
Subject key identifier: 82:0D:6A:97:B0:1E:4F:05:3E:29:96:AC:1E:51:DF:BE:A4:ED:68:32
Certificate issuer: /CN=3edf7b2d68ba76a0bd1ba7e9d29fac5852316b9c
Certificate serial: 018CC94C01A67274BB80D80CB2BD5C5C683C
Authority key identifier: 3E:DF:7B:2D:68:BA:76:A0:BD:1B:A7:E9:D2:9F:AC:58:52:31:6B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt97LWi6dqC9G6fp0p-sWFIxa5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/gg1ql7AeTwU-KZasHlHfvqTtaDI.roa
Signing time: Tue 02 Jan 2024 08:30:50 +0000
ROA not before: Tue 02 Jan 2024 08:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51420
IP address blocks: 109.164.64.0/19 maxlen: 19
109.164.64.0/20 maxlen: 20
109.164.84.0/24 maxlen: 24
109.164.85.0/24 maxlen: 24
109.164.83.0/24 maxlen: 24
109.164.80.0/20 maxlen: 20
109.164.88.0/24 maxlen: 24
109.164.89.0/24 maxlen: 24
109.164.87.0/24 maxlen: 24
109.164.91.0/24 maxlen: 24
109.164.90.0/24 maxlen: 24
109.164.97.0/24 maxlen: 24
109.164.92.0/24 maxlen: 24
109.164.95.0/24 maxlen: 24
109.164.96.0/24 maxlen: 24
109.164.93.0/24 maxlen: 24
109.164.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/Pt97LWi6dqC9G6fp0p-sWFIxa5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/Pt97LWi6dqC9G6fp0p-sWFIxa5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt97LWi6dqC9G6fp0p-sWFIxa5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 02:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:01:a6:72:74:bb:80:d8:0c:b2:bd:5c:5c:68:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edf7b2d68ba76a0bd1ba7e9d29fac5852316b9c
Validity
Not Before: Jan 2 08:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=820d6a97b01e4f053e2996ac1e51dfbea4ed6832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d8:8a:1d:cd:94:50:3f:c4:95:da:5e:01:20:
b4:41:bb:9a:38:bc:cc:b5:48:94:4b:7f:9b:3a:c3:
74:ab:de:59:65:fa:1a:0e:ff:a7:81:62:14:c6:30:
69:9f:a6:b3:dc:83:b4:01:c0:13:a6:c0:d3:03:9a:
ae:2d:00:ce:84:c5:1d:2a:85:d6:05:da:fb:bb:69:
a2:b0:43:ee:00:de:a9:7e:65:43:5f:05:31:fb:7b:
1e:84:1b:a8:23:51:f6:bc:81:76:9a:38:b3:5d:86:
f8:d1:2a:cc:87:90:a7:7f:e5:1c:08:9c:6b:93:a3:
10:d9:7e:ab:10:d5:71:06:c3:7e:27:4e:75:28:97:
14:25:ae:1b:e6:f0:74:b2:5e:e1:99:6f:29:db:85:
b1:24:b0:f7:04:86:66:08:fd:c1:ea:47:1d:a1:e1:
7f:f6:25:ee:ef:10:df:fb:00:39:a8:68:d3:7f:04:
f9:d5:3f:ce:89:d6:99:0c:3d:43:2e:95:d4:25:92:
fa:c7:9b:d8:b5:f3:68:66:1b:02:f4:f1:d0:26:d8:
24:88:67:ed:5b:64:13:e1:a1:33:c8:68:92:5d:ad:
6a:8f:f5:86:ee:3b:ba:00:d4:fb:ac:c6:19:75:64:
26:27:ca:21:0f:72:3d:e1:aa:15:24:99:f1:4b:10:
79:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0D:6A:97:B0:1E:4F:05:3E:29:96:AC:1E:51:DF:BE:A4:ED:68:32
X509v3 Authority Key Identifier:
keyid:3E:DF:7B:2D:68:BA:76:A0:BD:1B:A7:E9:D2:9F:AC:58:52:31:6B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt97LWi6dqC9G6fp0p-sWFIxa5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/gg1ql7AeTwU-KZasHlHfvqTtaDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/fe9d1d-4ade-4630-8aba-f8f0c7d662e7/1/Pt97LWi6dqC9G6fp0p-sWFIxa5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.164.64.0-109.164.97.255
Signature Algorithm: sha256WithRSAEncryption
2a:72:d1:b8:e0:dc:11:af:ac:cb:a7:41:c0:21:d0:11:ea:0c:
96:0f:0b:ce:99:8d:6f:82:53:e8:09:3d:df:cd:40:ce:d8:58:
a7:ff:a2:66:06:6a:2c:bf:50:14:3e:c8:be:91:ad:d9:0d:7a:
2c:59:0f:fb:39:d6:15:a2:c7:82:9f:14:3b:3e:a1:c1:8b:17:
3b:04:55:dd:3d:43:0d:98:1a:ae:7a:22:5c:ce:cb:12:0a:e7:
9f:19:91:b7:3a:56:42:27:c2:72:9d:84:fd:0f:b3:0a:ab:cc:
b6:14:ea:91:9b:c7:69:11:24:bf:ff:82:df:ff:00:32:61:86:
c7:7b:f9:04:1c:ae:9d:9b:b9:53:9f:63:a4:dc:3f:1d:7d:1f:
be:32:dc:d7:87:fa:da:d3:e1:3c:f4:73:62:42:b2:a3:5d:1e:
dc:a6:8e:7f:b8:d3:c1:9b:dd:aa:15:53:3e:df:be:ca:6a:48:
56:92:83:56:44:0a:e3:d9:3e:b8:e4:01:2b:27:a1:6a:52:45:
eb:5f:48:f3:0a:16:d9:ca:56:49:6b:f1:c0:c7:4d:67:66:bc:
8e:6f:00:01:9b:6f:14:64:cc:93:05:1f:64:54:da:0a:77:64:
fa:8a:a8:4b:ce:39:3a:fd:4f:2f:88:56:c4:c4:81:07:49:81:
96:2e:98:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 11:42:19 2024 by rpki-client on console-fra.rpki-client.org