Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/Zga__slZzntwQS6XLlQxyJWyNJM.roa
File: Zga__slZzntwQS6XLlQxyJWyNJM.roa (raw, json)
Hash identifier: /GHm78NtSPML6xg7obvXznDQQZH/9VkRz5Y4cFUMv/k=
Subject key identifier: 66:06:BF:FE:C9:59:CE:7B:70:41:2E:97:2E:54:31:C8:95:B2:34:93
Certificate issuer: /CN=7879eb9dd62d51afa5012efa1a9d10c66400c445
Certificate serial: 018CC26D4F849CD02FCE17E6697DE401860E
Authority key identifier: 78:79:EB:9D:D6:2D:51:AF:A5:01:2E:FA:1A:9D:10:C6:64:00:C4:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHnrndYtUa-lAS76Gp0QxmQAxEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/Zga__slZzntwQS6XLlQxyJWyNJM.roa
Signing time: Mon 01 Jan 2024 00:29:52 +0000
ROA not before: Mon 01 Jan 2024 00:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199118
IP address blocks: 91.198.250.0/24 maxlen: 24
195.10.208.0/24 maxlen: 24
91.223.20.0/24 maxlen: 24
80.241.56.0/21 maxlen: 24
185.97.172.0/22 maxlen: 24
2001:67c:2050::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/eHnrndYtUa-lAS76Gp0QxmQAxEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/eHnrndYtUa-lAS76Gp0QxmQAxEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHnrndYtUa-lAS76Gp0QxmQAxEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 16:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4f:84:9c:d0:2f:ce:17:e6:69:7d:e4:01:86:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7879eb9dd62d51afa5012efa1a9d10c66400c445
Validity
Not Before: Jan 1 00:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6606bffec959ce7b70412e972e5431c895b23493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7a:a6:d0:a7:e9:15:05:15:07:a7:82:09:81:
c0:97:9a:f1:54:95:75:71:7d:e1:61:63:ce:a2:14:
1a:14:3b:cd:18:da:8f:26:4e:45:17:cb:06:92:89:
8e:2c:74:11:2b:99:46:28:b1:d4:9f:da:d3:9f:09:
51:ab:9b:cf:a7:3e:dd:7e:f1:40:0c:8b:6f:ff:1b:
85:4d:1e:ca:77:ef:50:b5:5f:d8:51:7e:b1:9a:70:
fe:2f:58:51:a0:ec:3b:3a:a6:01:2b:f2:9d:9f:a1:
86:fa:ca:1e:6b:7e:26:8d:bb:01:cc:5a:55:7e:9d:
b1:28:38:28:6a:ab:b2:78:c5:ee:c7:f8:8c:40:89:
3c:9c:3c:a5:54:b6:55:aa:3a:90:d7:f0:79:8b:36:
e3:bb:0c:ba:d8:67:5c:59:87:e8:37:79:c4:89:73:
22:28:15:be:94:7a:34:f5:e8:6f:eb:30:7c:04:6b:
c6:df:0b:53:98:cd:71:e9:ce:bc:46:1a:be:12:d2:
4b:0d:fb:ef:6d:bf:bd:db:88:7b:03:c4:43:58:e5:
6c:1a:3d:96:4e:e6:97:c4:ef:8c:73:f1:20:a6:54:
e5:4d:71:b1:68:8f:6b:7c:e4:07:bf:9c:5f:c4:fb:
01:09:db:4b:6e:d7:cd:76:c9:89:4a:ad:11:73:f2:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:06:BF:FE:C9:59:CE:7B:70:41:2E:97:2E:54:31:C8:95:B2:34:93
X509v3 Authority Key Identifier:
keyid:78:79:EB:9D:D6:2D:51:AF:A5:01:2E:FA:1A:9D:10:C6:64:00:C4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHnrndYtUa-lAS76Gp0QxmQAxEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/Zga__slZzntwQS6XLlQxyJWyNJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/eHnrndYtUa-lAS76Gp0QxmQAxEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.241.56.0/21
91.198.250.0/24
91.223.20.0/24
185.97.172.0/22
195.10.208.0/24
IPv6:
2001:67c:2050::/48
Signature Algorithm: sha256WithRSAEncryption
11:46:98:2a:60:3a:56:41:f1:16:51:09:e3:c7:d7:1d:5f:94:
1d:a8:f7:3c:90:91:ee:57:1a:77:41:e6:45:94:86:a8:f5:cc:
95:04:59:f4:1c:68:ce:7f:6d:84:30:db:ef:09:e9:eb:50:7e:
81:e2:c3:04:c4:ea:1b:08:91:95:c1:0b:65:b5:ac:eb:d1:ba:
22:d3:4b:2f:cb:21:2b:04:41:85:de:c2:84:0c:3f:10:c8:de:
d0:ea:8b:fc:ad:70:ab:0a:c6:01:b7:12:96:e4:c2:19:19:4f:
ca:f0:86:3b:3f:4e:52:e4:06:92:10:47:39:a0:a9:5a:38:19:
9f:1e:13:80:d1:08:d2:be:39:7a:4c:64:05:cb:b9:e5:56:32:
1c:55:13:af:56:a8:e8:1c:75:37:d1:41:31:39:9d:94:51:11:
10:03:d7:2e:16:5f:f1:82:06:4a:e4:1f:a5:c5:0d:8e:b6:bf:
30:8a:6b:34:1c:43:04:d4:9c:8e:4b:07:9c:2d:9d:0f:c2:70:
e9:df:4d:d6:e4:67:7d:3d:9c:eb:57:33:e7:03:ff:2d:b7:e9:
4c:46:63:46:25:27:f6:6e:28:7d:bb:26:df:b5:33:52:1c:df:
74:06:b2:6f:e0:a2:18:a9:af:7e:06:7f:ff:fb:7d:53:dc:11:
7b:2e:01:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:21:15 2024 by rpki-client on console-fra.rpki-client.org