Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/BxPL5YUQ99q4Mn9eHIzQ6k_Hwtg.roa
File: BxPL5YUQ99q4Mn9eHIzQ6k_Hwtg.roa (raw, json)
Hash identifier: bOJ2h096hnglEh/dZDofZ/WwvW4mfvHO3cKWHNVZICQ=
Subject key identifier: 07:13:CB:E5:85:10:F7:DA:B8:32:7F:5E:1C:8C:D0:EA:4F:C7:C2:D8
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018CC9BC09105FE2FF84343F87E2891B68A5
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/BxPL5YUQ99q4Mn9eHIzQ6k_Hwtg.roa
Signing time: Tue 02 Jan 2024 10:33:12 +0000
ROA not before: Tue 02 Jan 2024 10:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 77.91.70.0/24 maxlen: 24
77.91.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 May 2024 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:09:10:5f:e2:ff:84:34:3f:87:e2:89:1b:68:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jan 2 10:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0713cbe58510f7dab8327f5e1c8cd0ea4fc7c2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a0:99:13:c0:8b:a3:a5:64:c5:e3:60:3e:c4:
96:ff:06:67:e8:cd:37:0d:86:ca:48:12:10:37:c6:
84:eb:27:2e:a7:85:5f:8c:35:96:6c:cd:f7:0b:01:
e0:02:5d:a3:ae:81:af:40:76:1b:21:40:a7:f4:ea:
52:3c:3d:0d:c4:cf:34:44:da:af:39:c5:1d:b9:7e:
29:d4:02:97:65:57:3c:ac:32:65:13:f7:a3:d9:76:
ef:28:d5:6b:a5:84:18:74:61:f0:0b:59:1f:62:4b:
85:cf:66:91:54:53:62:36:0a:e2:c0:a5:6d:8a:22:
4f:ca:b2:d9:d9:9e:46:49:8b:d4:c9:5d:6f:32:82:
a7:78:e4:61:9a:5e:a6:cd:ff:5d:61:fb:c0:c5:ee:
4d:b2:ae:04:e8:ae:b2:02:16:b0:f3:fb:16:7f:82:
d2:3f:13:3a:4d:71:ea:eb:cb:7c:14:a7:0a:0b:82:
2e:a1:ba:0a:77:22:63:bb:d4:f6:85:58:c7:10:a5:
ae:44:11:8f:80:86:51:cc:9d:37:d3:fe:aa:62:1b:
23:59:40:fd:4d:6e:92:ff:35:d4:c8:23:b7:a5:bd:
91:0a:cb:c5:d4:f0:da:e7:34:98:b6:f7:07:1e:72:
00:d0:7f:f6:e9:1f:d7:28:d9:f9:87:b7:6e:c6:f2:
8c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:13:CB:E5:85:10:F7:DA:B8:32:7F:5E:1C:8C:D0:EA:4F:C7:C2:D8
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/BxPL5YUQ99q4Mn9eHIzQ6k_Hwtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.70.0/24
77.91.78.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:f2:4f:f4:ec:b8:14:ed:02:e7:82:32:1f:1d:24:6b:ac:04:
72:98:a2:d8:f3:65:3d:88:d6:b2:23:d5:58:04:aa:83:cf:96:
3f:92:5e:c2:72:30:e9:aa:cc:3d:8f:c7:d3:69:99:e2:8f:40:
d5:59:8d:50:90:db:50:3d:c6:df:84:45:e5:f2:e9:d7:05:e5:
fa:ba:54:36:8e:be:b5:41:d7:6f:0d:9c:84:d0:58:f7:b7:38:
74:fd:68:de:57:4c:20:3a:a5:25:b8:14:a6:63:17:3c:5a:b0:
12:c3:6a:6d:00:4d:ed:59:38:58:70:5f:d1:f7:c6:ae:72:eb:
e8:22:a0:99:5a:4b:c5:31:8e:12:18:4e:44:16:6a:5d:8d:dc:
a8:42:2c:8d:88:d2:2b:4b:b0:37:41:5a:5a:a7:1c:67:87:ee:
44:2d:bb:c0:0c:0c:6a:5a:42:bc:dc:a0:67:66:ef:3b:26:c7:
b8:ce:6a:e6:1f:ec:98:18:f4:f9:4b:13:61:04:d9:7d:18:c2:
ae:f9:64:c2:e8:d2:3a:4c:61:71:ee:3c:5e:e2:a1:e3:75:77:
e8:01:00:9a:93:55:c9:33:fa:76:17:c8:d4:89:21:a8:da:f8:
ec:40:be:cf:73:16:7c:48:d4:fc:01:8e:4c:44:6d:2d:00:5d:
2b:5d:f6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 12:24:53 2024 by rpki-client on console-ams.rpki-client.org