Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GDKKiYjpdaJ1az5DPJeVVF2taCM.roa
File: GDKKiYjpdaJ1az5DPJeVVF2taCM.roa (raw, json)
Hash identifier: zr/VKXrUEXEa5CH3RzVFQap8ht5WUcPQfI9WnAMb6fM=
Subject key identifier: 18:32:8A:89:88:E9:75:A2:75:6B:3E:43:3C:97:95:54:5D:AD:68:23
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 0192071682CBB92CD02117FEB1AD3B2D0032
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GDKKiYjpdaJ1az5DPJeVVF2taCM.roa
Signing time: Wed 18 Sep 2024 21:42:48 +0000
ROA not before: Wed 18 Sep 2024 21:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20764
IP address blocks: 79.141.208.0/20 maxlen: 20
80.64.96.0/20 maxlen: 20
80.64.97.0/24 maxlen: 24
80.64.98.28/32 maxlen: 32
80.64.99.0/24 maxlen: 24
80.64.102.0/24 maxlen: 24
80.64.103.0/24 maxlen: 24
80.64.104.0/24 maxlen: 24
80.64.105.0/24 maxlen: 24
80.64.108.0/24 maxlen: 24
80.64.109.0/24 maxlen: 24
81.27.240.0/20 maxlen: 20
81.27.241.0/24 maxlen: 24
81.27.252.0/24 maxlen: 24
81.27.253.0/24 maxlen: 24
185.5.160.0/22 maxlen: 22
2a00:1c28::/29 maxlen: 29
2a00:1c28::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:07:16:82:cb:b9:2c:d0:21:17:fe:b1:ad:3b:2d:00:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Sep 18 21:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18328a8988e975a2756b3e433c9795545dad6823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:67:42:e7:31:9e:7f:39:96:9c:09:d6:80:27:
0a:9b:2a:df:02:1f:76:eb:2f:d6:fc:40:d2:2d:b9:
ed:c5:fa:26:54:92:f2:bb:b5:df:69:61:a6:8e:91:
e3:04:23:b2:34:8d:a1:f9:d3:e3:9c:1a:4a:56:b0:
42:3a:72:f0:6d:6a:1d:9a:46:62:75:b2:13:d9:78:
62:21:91:5c:64:6f:1d:72:4b:d1:a1:19:45:78:e1:
4e:88:65:15:e8:8b:5e:ce:09:5e:28:15:82:10:ec:
e3:cf:82:41:f8:f0:c2:7f:c9:82:c2:5f:35:f5:b5:
27:80:5b:6b:7d:7d:c6:a5:e1:d8:be:c4:79:79:c8:
21:c0:b0:21:d9:1c:0d:39:8a:96:e7:16:ed:b5:99:
6d:47:66:b3:a8:21:9c:8c:f4:60:d6:2a:ec:9c:a6:
a3:9b:76:99:27:a4:69:5d:13:d1:cb:5b:f1:3b:b5:
08:51:3f:3a:71:d9:9e:6d:f7:13:59:9a:e4:de:99:
a2:ac:73:d8:30:22:70:1e:2f:c4:7e:97:d8:b0:71:
7a:f8:17:62:5a:85:f9:3b:3a:f9:76:95:15:a8:ad:
be:b2:09:bf:99:79:09:21:b9:52:79:49:13:16:04:
50:2b:6e:19:8c:5e:f9:86:e8:d8:0c:74:3e:3c:38:
9b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:32:8A:89:88:E9:75:A2:75:6B:3E:43:3C:97:95:54:5D:AD:68:23
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/GDKKiYjpdaJ1az5DPJeVVF2taCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.208.0/20
80.64.96.0/20
81.27.240.0/20
185.5.160.0/22
IPv6:
2a00:1c28::/29
Signature Algorithm: sha256WithRSAEncryption
05:73:00:35:8a:d0:d2:52:62:44:1c:d7:91:27:01:48:e6:be:
52:67:e9:2f:0d:89:1a:a3:08:c3:5a:1b:fa:2b:56:7d:0c:a1:
00:4a:01:f7:2e:c3:a7:09:d3:27:1a:af:91:89:8f:ab:88:29:
a9:44:7a:35:d9:42:ba:be:76:23:e4:5f:2c:32:d8:03:ce:75:
a3:0b:c3:08:b7:8d:e7:44:59:d5:a7:3e:8d:cf:cd:42:ae:98:
fa:82:06:9a:f0:0d:7d:be:77:d1:c1:90:32:c8:09:26:06:2e:
02:7f:fd:d3:b2:5d:25:3d:5c:66:cc:9c:46:94:2e:a5:8b:53:
b1:21:fa:28:bb:db:a6:a5:01:ad:be:ce:d4:c8:48:bd:79:d6:
4c:da:aa:cf:dd:cb:b3:f8:19:f7:28:25:13:b1:5c:1a:98:a3:
81:23:da:8d:f4:5d:59:e7:d5:c5:c8:e7:17:c8:28:69:0d:1f:
ea:6c:31:cb:98:6d:66:9d:7b:2e:47:92:bb:b2:13:3d:6a:17:
b2:f9:33:cf:7f:6f:88:ad:a5:27:60:42:8c:4d:fd:21:c2:65:
31:41:b3:a2:4d:d4:4b:7d:96:78:ce:3a:f6:7c:ec:7f:14:4c:
38:9a:c8:8c:b9:00:07:96:cd:93:34:26:ed:a5:17:29:15:02:
aa:dd:51:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:12:11 2024 by rpki-client on console-fra.rpki-client.org