Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/fLBWgBT7EpKs_HCHukkQ3Q16-nk.roa
File: fLBWgBT7EpKs_HCHukkQ3Q16-nk.roa (raw, json)
Hash identifier: glhzhEwK/B3doxLnBdNlA+3fHpnL6w7AH7mS+7BMdig=
Subject key identifier: 7C:B0:56:80:14:FB:12:92:AC:FC:70:87:BA:49:10:DD:0D:7A:FA:79
Certificate issuer: /CN=77dbfb3d64eb10c782562a37855b0732bd18eb3f
Certificate serial: 018CC425133A090A88136A50DCDD5E8814B1
Authority key identifier: 77:DB:FB:3D:64:EB:10:C7:82:56:2A:37:85:5B:07:32:BD:18:EB:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9v7PWTrEMeCVio3hVsHMr0Y6z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/fLBWgBT7EpKs_HCHukkQ3Q16-nk.roa
Signing time: Mon 01 Jan 2024 08:30:13 +0000
ROA not before: Mon 01 Jan 2024 08:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43323
IP address blocks: 194.107.16.0/24 maxlen: 24
95.87.96.0/21 maxlen: 21
95.87.97.0/24 maxlen: 24
95.87.98.0/24 maxlen: 24
95.87.96.0/24 maxlen: 24
95.87.100.0/24 maxlen: 24
95.87.101.0/24 maxlen: 24
95.87.99.0/24 maxlen: 24
95.87.102.0/24 maxlen: 24
95.87.103.0/24 maxlen: 24
193.53.165.0/24 maxlen: 24
193.53.166.0/24 maxlen: 24
193.53.164.0/24 maxlen: 24
193.53.164.0/22 maxlen: 22
193.53.167.0/24 maxlen: 24
2a03:4d80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/d9v7PWTrEMeCVio3hVsHMr0Y6z8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/d9v7PWTrEMeCVio3hVsHMr0Y6z8.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9v7PWTrEMeCVio3hVsHMr0Y6z8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:13:3a:09:0a:88:13:6a:50:dc:dd:5e:88:14:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77dbfb3d64eb10c782562a37855b0732bd18eb3f
Validity
Not Before: Jan 1 08:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7cb0568014fb1292acfc7087ba4910dd0d7afa79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:47:9e:a9:33:ef:3c:0f:52:f1:7f:3b:30:f5:
36:4b:c3:87:76:ba:89:83:fc:6a:73:03:79:ad:38:
7d:9c:f4:9b:dd:17:c4:7e:d1:ef:48:26:75:a9:45:
b6:b0:be:da:3f:fe:05:6d:5d:26:84:7a:75:69:84:
65:bb:d8:fd:54:fa:85:c1:cb:82:c5:d3:67:a3:16:
76:44:75:ef:53:8c:a0:e4:23:32:47:8f:d8:37:cc:
9d:f0:d0:74:46:91:2e:4e:10:71:6c:29:7c:4a:da:
5a:c5:a2:c5:5d:00:5d:5c:3c:db:05:2f:0d:f0:19:
3b:39:7b:59:d7:de:06:c7:c8:26:0e:68:a1:73:af:
08:a5:c5:ca:b4:f0:e4:0f:e4:2c:65:35:4c:45:92:
b8:0e:d4:a7:53:a0:de:c8:00:15:6c:f9:35:e5:2a:
06:0f:50:cc:b6:4d:02:8a:1b:07:1d:fa:cd:d3:c6:
f3:fd:30:03:33:83:5a:47:73:08:41:ae:39:06:39:
ae:cd:41:be:a0:ba:8d:30:88:e0:f3:12:a3:6b:10:
5e:c7:60:99:1a:3e:58:1d:d0:3b:15:5b:63:b0:77:
1d:a2:22:88:9e:e7:8c:8d:69:8e:6c:4c:c4:c2:ea:
23:90:f3:b2:c8:24:05:f9:7f:91:45:43:10:7d:9a:
a8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B0:56:80:14:FB:12:92:AC:FC:70:87:BA:49:10:DD:0D:7A:FA:79
X509v3 Authority Key Identifier:
keyid:77:DB:FB:3D:64:EB:10:C7:82:56:2A:37:85:5B:07:32:BD:18:EB:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9v7PWTrEMeCVio3hVsHMr0Y6z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/fLBWgBT7EpKs_HCHukkQ3Q16-nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9e6c48-4bdd-4e60-910a-54b41e4fc63b/1/d9v7PWTrEMeCVio3hVsHMr0Y6z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.87.96.0/21
193.53.164.0/22
194.107.16.0/24
IPv6:
2a03:4d80::/32
Signature Algorithm: sha256WithRSAEncryption
a6:00:2c:9b:a5:31:94:4e:47:ec:b4:96:b2:e6:9f:7c:70:86:
47:84:a0:84:f7:e1:84:b0:58:69:c6:52:a7:1b:ed:0a:92:c6:
1a:32:7b:10:bd:ca:9b:58:c2:43:43:fb:9a:7a:8d:2f:2d:d5:
da:b3:db:e4:e2:23:be:10:d8:5e:0f:ec:40:96:1e:46:a0:91:
41:95:19:b9:ba:ec:b0:61:ee:af:2e:b6:ed:ab:4b:80:04:c9:
dc:a3:13:44:3e:cd:c6:db:42:13:40:e5:4c:21:8b:6a:aa:d7:
ef:09:cf:c9:e3:9e:4d:6a:cd:80:4a:d7:db:4f:4f:7e:20:d0:
fb:ce:3b:ba:55:1c:85:35:df:b8:b7:ed:22:94:5a:a4:01:3a:
64:76:4c:c0:24:d8:63:5b:1e:04:76:34:5d:87:49:db:3b:16:
58:6d:90:8d:e8:fc:da:0a:fb:c4:f0:47:51:0a:72:85:07:4a:
0b:0b:c5:b2:4f:85:63:50:93:df:88:b9:00:4c:a4:b3:31:91:
d2:b3:32:1e:ac:f8:24:cd:cc:f8:d2:d6:7e:1a:da:f4:c3:6b:
00:29:07:14:e1:82:cc:0b:e3:18:cf:94:3f:fa:94:7f:e9:d1:
3e:11:d5:0a:d9:95:38:dd:30:c4:ef:1a:df:1f:c5:f7:72:1b:
55:86:fc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:25:40 2024 by rpki-client on console-ams.rpki-client.org