Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/ZyPLjMnzgKRX6y7vJRceVODR0N8.roa
File: ZyPLjMnzgKRX6y7vJRceVODR0N8.roa (raw, json)
Hash identifier: fxqFj8RAMs6p0giuiha93KbqvgX555X5jmwzm6vSEg8=
Subject key identifier: 67:23:CB:8C:C9:F3:80:A4:57:EB:2E:EF:25:17:1E:54:E0:D1:D0:DF
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018CCA2BB662B75EF3CF8699F1C05DD82DAE
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/ZyPLjMnzgKRX6y7vJRceVODR0N8.roa
Signing time: Tue 02 Jan 2024 12:35:11 +0000
ROA not before: Tue 02 Jan 2024 12:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28893
IP address blocks: 77.79.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:b6:62:b7:5e:f3:cf:86:99:f1:c0:5d:d8:2d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 12:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6723cb8cc9f380a457eb2eef25171e54e0d1d0df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:c3:a1:dd:3b:14:d2:d7:97:7f:17:1b:07:
99:c9:65:b0:eb:0c:b7:34:98:8c:85:bc:43:7a:10:
fc:8b:44:b3:5d:c5:7b:a9:2f:72:87:ad:00:6e:31:
36:9d:5a:37:f8:91:5e:db:a6:95:df:63:ba:2f:ff:
0d:23:12:40:fd:5d:2a:b1:46:8d:c3:cb:b8:ee:a6:
c0:99:2e:c7:a1:ba:9f:c7:b3:bf:3f:2b:c2:73:2f:
6a:9a:d6:ff:18:69:d8:48:ba:06:54:6e:78:b9:32:
b1:80:9f:ff:41:ac:40:67:89:66:da:92:db:93:c9:
57:45:5f:f4:70:bf:40:d9:ad:61:64:7b:10:ef:f0:
15:7a:1b:be:a3:37:2b:11:13:52:6e:ac:f8:a1:9c:
8a:fb:b1:e1:8c:1a:16:4e:8b:d7:3e:c0:c9:95:ca:
e3:2d:af:ba:b4:ee:61:31:f3:3d:1a:cd:28:99:66:
b6:a8:95:e8:eb:5f:d7:76:63:36:79:16:08:1d:e5:
65:0f:f4:b2:bb:c0:10:1f:f0:26:00:79:69:c3:4a:
0b:5c:fa:6c:72:b0:48:c9:9b:57:1a:fb:c6:d4:8d:
35:a6:93:a2:a3:8a:5d:b4:df:b9:19:5d:79:2d:58:
67:93:f6:7a:cc:80:63:69:fc:c4:9d:91:81:de:60:
76:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:23:CB:8C:C9:F3:80:A4:57:EB:2E:EF:25:17:1E:54:E0:D1:D0:DF
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/ZyPLjMnzgKRX6y7vJRceVODR0N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.226.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:98:3e:66:4c:9b:27:8b:d1:7d:e4:f8:2f:01:f8:4c:08:2d:
bb:22:b2:47:90:c7:1d:1c:5f:8e:3d:af:ff:9a:e0:e5:de:d2:
74:c1:ba:4f:da:9d:ec:8c:d2:1f:aa:0c:f8:aa:18:e4:72:82:
50:05:9b:18:cb:36:90:0f:ff:03:a4:8e:50:50:3c:ab:6a:a6:
ce:d6:13:00:30:c4:8f:00:63:cb:b4:ce:8e:71:7b:f9:2b:4a:
ac:ba:9a:54:59:5b:0b:49:58:29:c7:09:df:16:da:10:66:8b:
36:49:28:a0:5e:0b:25:93:e6:c4:e2:47:6b:31:d0:0e:ea:c4:
d5:8a:7a:01:cf:e2:0c:5a:80:0a:f1:aa:ef:a9:25:81:ce:cc:
c3:76:59:39:b7:97:9a:24:96:24:04:f8:8f:92:7c:95:06:1a:
2b:42:09:2e:df:3d:41:ee:b2:a9:1a:62:50:e1:1e:54:88:4a:
68:03:ba:12:f2:3e:41:1b:7a:ce:66:30:b2:31:11:f6:ee:d6:
61:5a:08:5d:5e:30:5e:d9:0f:27:02:23:0f:71:8b:86:05:9b:
b5:83:a4:2f:f8:af:c8:35:80:c1:96:48:d1:33:9f:23:a4:b4:
9d:cb:f9:bb:5d:30:d8:09:64:ea:66:9c:6b:63:17:8a:ba:43:
06:34:86:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:53:09 2024 by rpki-client on console-fra.rpki-client.org