Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/7hOh06cPbbib2BEMrnh3modZN7E.roa
File: 7hOh06cPbbib2BEMrnh3modZN7E.roa (raw, json)
Hash identifier: iwNo3FuPeoWzbeccqKj6goRlvOXcb32WMovS0OwTWiQ=
Subject key identifier: EE:13:A1:D3:A7:0F:6D:B8:9B:D8:11:0C:AE:78:77:9A:87:59:37:B1
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018CC7943EA3D0A4E4D6CA9405B56EA7FBED
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/7hOh06cPbbib2BEMrnh3modZN7E.roa
Signing time: Tue 02 Jan 2024 00:30:30 +0000
ROA not before: Tue 02 Jan 2024 00:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8866
IP address blocks: 87.119.104.0/23 maxlen: 23
87.119.100.0/22 maxlen: 22
87.119.127.0/24 maxlen: 24
87.119.64.0/21 maxlen: 21
77.77.164.0/22 maxlen: 22
77.77.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 10:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:3e:a3:d0:a4:e4:d6:ca:94:05:b5:6e:a7:fb:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 00:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee13a1d3a70f6db89bd8110cae78779a875937b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:25:23:7e:d7:b6:bd:65:a7:f9:dc:77:77:
f0:af:d5:bf:82:a8:54:00:73:29:fa:21:f6:ea:8b:
97:9c:c2:7c:ab:8c:70:b2:69:fc:63:00:56:f3:40:
99:a8:6c:e4:ee:ab:1d:10:0e:d8:2e:d4:7c:f8:48:
c8:a8:07:b1:21:04:87:7c:bc:ad:ce:54:51:e3:f2:
d6:f2:b0:4e:46:0d:f8:dc:24:22:49:ca:b6:00:34:
9d:76:77:3c:6b:90:52:36:4b:8a:33:9c:45:9c:97:
13:d8:7a:e9:52:7e:d3:f7:e4:a5:a8:a6:da:0f:d6:
b5:37:74:e4:20:5d:da:98:25:9c:9c:73:8f:18:4e:
d9:28:41:82:9d:b5:13:b6:5f:53:c8:d6:9d:41:f9:
4c:ba:2a:4a:9a:b1:4a:96:08:c0:59:e2:c1:e8:50:
7f:97:2f:6c:9d:93:93:53:84:aa:13:58:ea:c4:5f:
b9:59:3f:f3:0d:b6:b7:c7:d3:e9:c5:52:c3:74:14:
2b:22:b4:15:12:05:89:22:46:d4:d7:de:eb:98:16:
5e:f5:ac:02:66:37:a0:1c:33:cd:a6:7b:56:44:93:
8d:78:05:81:90:4a:0b:92:56:de:3d:6d:b6:57:4f:
11:a8:3e:35:f0:68:fc:88:eb:0e:80:18:4a:7f:0f:
48:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:13:A1:D3:A7:0F:6D:B8:9B:D8:11:0C:AE:78:77:9A:87:59:37:B1
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/7hOh06cPbbib2BEMrnh3modZN7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.77.164.0/22
87.119.64.0/21
87.119.100.0-87.119.105.255
87.119.127.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:f9:0b:1c:f6:74:80:04:3d:67:e9:59:82:f2:ad:0e:f2:b4:
10:01:c2:f4:78:25:ed:27:58:f9:b2:2f:ae:98:4b:31:73:75:
92:b8:4a:68:a9:9c:0c:92:f7:2e:a1:b2:b9:84:e4:47:be:62:
0a:9e:b5:b4:0b:99:5d:1c:8f:29:b9:40:af:58:c0:6f:ff:1f:
84:33:7b:30:1a:95:35:13:13:5b:ea:de:e5:5d:f7:11:e0:e2:
cb:04:b2:bf:41:23:ab:22:e9:58:f1:83:e3:58:39:8d:5e:0c:
62:b8:66:27:17:a3:62:ef:c7:62:cb:42:a4:b8:38:4e:b7:b1:
52:ea:01:a0:e8:e1:f3:db:bf:81:7f:a4:00:aa:8b:f5:79:d0:
7e:28:3d:0c:10:5e:7f:e8:61:3e:39:c6:92:f2:4e:88:33:3e:
39:94:f5:e8:6e:b8:52:f1:30:4e:bc:1d:55:03:e0:51:bb:26:
5e:f5:c4:88:53:d1:38:d9:d6:5c:6a:d4:ef:01:2b:2b:23:b9:
5d:e6:7d:11:aa:f6:10:b7:90:96:8b:ca:2b:32:95:f7:bd:2a:
92:80:30:9d:46:07:7f:1b:23:bc:c0:25:da:ba:c2:a2:8b:28:
43:e4:e5:27:35:c5:75:3a:1f:f5:de:b6:dc:28:94:cd:92:21:
bc:8a:08:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:41:47 2024 by rpki-client on console-ams.rpki-client.org