Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/YUIZ-NV9Pf72WS-ltwScRa0Z4Bc.roa
File: YUIZ-NV9Pf72WS-ltwScRa0Z4Bc.roa (raw, json)
Hash identifier: 3SQEyzD6lA3zvEKUpTwRnGqS6yayC8kw7QK1qT3ctL4=
Subject key identifier: 61:42:19:F8:D5:7D:3D:FE:F6:59:2F:A5:B7:04:9C:45:AD:19:E0:17
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 0191DFE629DEA65634FD4EB5F26F584B1208
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/YUIZ-NV9Pf72WS-ltwScRa0Z4Bc.roa
Signing time: Wed 11 Sep 2024 07:04:48 +0000
ROA not before: Wed 11 Sep 2024 07:04:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205207
IP address blocks: 5.160.49.0/24 maxlen: 24
46.209.58.0/24 maxlen: 24
46.209.95.0/24 maxlen: 24
77.104.64.0/18 maxlen: 18
77.104.64.0/19 maxlen: 19
77.104.66.0/24 maxlen: 24
77.104.72.0/21 maxlen: 21
77.104.73.0/24 maxlen: 24
77.104.75.0/24 maxlen: 24
77.104.80.0/20 maxlen: 24
77.104.92.0/24 maxlen: 24
77.104.106.0/24 maxlen: 24
77.237.64.0/19 maxlen: 19
77.237.64.0/20 maxlen: 20
77.237.68.0/24 maxlen: 24
77.237.80.0/20 maxlen: 20
77.237.87.0/24 maxlen: 24
185.14.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:df:e6:29:de:a6:56:34:fd:4e:b5:f2:6f:58:4b:12:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Sep 11 07:04:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=614219f8d57d3dfef6592fa5b7049c45ad19e017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:5b:00:fc:50:d3:28:16:02:c5:1b:00:e7:
d3:13:16:d8:03:f6:60:48:6f:19:c5:5c:9c:35:ef:
7c:3f:de:b7:3e:54:ea:92:38:db:a3:7e:fe:4f:e7:
58:6e:89:4d:67:c3:f3:b3:47:f9:ab:9d:68:b6:bf:
4a:fe:6d:b7:b0:3a:a5:d6:c9:28:45:f9:33:f3:c6:
3a:43:35:e7:4e:ca:e5:42:84:90:58:62:66:77:0d:
8e:73:b2:57:e1:0d:1f:86:34:09:6b:bd:fc:33:f8:
73:b6:73:d9:11:02:6d:11:8e:17:ba:ab:53:2a:bf:
4a:45:8c:cf:e5:18:7d:7f:31:4b:11:89:5e:1a:ac:
a3:de:fb:07:fc:eb:29:df:d7:1c:fa:63:e4:21:09:
7a:fd:f7:5e:f2:1a:d4:5b:f2:20:62:f3:e3:37:ff:
ce:aa:fe:f5:f3:8d:4d:28:fb:37:80:5e:12:96:01:
a9:1c:d5:2d:13:f2:fc:47:5c:2b:a8:af:89:af:c8:
01:d6:43:b8:9b:bf:73:3e:f4:3e:94:09:17:52:1b:
70:7f:be:7e:53:dd:bd:fb:0e:47:45:3d:14:c2:a4:
c8:6d:19:bf:66:60:7b:37:58:2a:08:a0:bf:b9:78:
97:dc:ec:4d:dc:e1:ef:97:7e:14:61:9a:ad:bd:51:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:42:19:F8:D5:7D:3D:FE:F6:59:2F:A5:B7:04:9C:45:AD:19:E0:17
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/YUIZ-NV9Pf72WS-ltwScRa0Z4Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.49.0/24
46.209.58.0/24
46.209.95.0/24
77.104.64.0/18
77.237.64.0/19
185.14.160.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:1f:65:ab:53:17:b1:0b:82:a9:e9:28:e7:2e:b1:55:c8:16:
3e:45:54:c1:26:ab:82:32:5b:89:a8:87:9e:af:73:82:13:e3:
fa:6f:b5:2d:5c:d3:1c:dd:80:93:5f:db:ec:8a:38:b3:5f:5e:
92:11:20:2d:e7:d4:7a:39:f3:e6:dc:6a:da:df:17:bd:ea:e6:
ad:ec:2c:c7:e6:c2:8e:46:73:21:ee:69:1b:47:69:0c:d9:cc:
e7:33:e1:26:94:58:c0:47:94:76:81:40:7f:72:4d:2d:9a:47:
28:22:30:21:ef:67:89:e4:c1:dd:c5:19:a3:2a:91:71:ed:89:
72:62:c4:27:39:b1:c0:02:74:27:58:29:24:66:2e:b5:c4:da:
0d:1e:0d:8a:5e:7a:97:c1:34:51:2f:4d:51:9b:aa:0f:e4:66:
45:65:23:27:d7:c3:f0:38:2e:0c:5c:16:03:9f:e9:aa:38:f1:
a0:e1:65:71:b3:dc:1b:ab:f6:32:d8:97:ed:2a:5b:b2:d1:82:
5f:4c:b4:7b:2c:5b:e5:93:80:73:48:b7:8f:72:95:57:41:a2:
fd:b0:8e:9f:06:4f:2c:10:20:01:41:11:0f:83:04:ed:1f:00:
46:fd:92:c5:e6:ed:9f:72:8b:f7:60:58:14:f1:28:0c:0f:7b:
65:5f:66:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:02:25 2024 by rpki-client on console-ams.rpki-client.org