Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/RJYL095BXPZRuECIDjJxfXjEOA8.roa
File: RJYL095BXPZRuECIDjJxfXjEOA8.roa (raw, json)
Hash identifier: X8MP8WeVxYBtX5YvdfYlzaTq4Qbp1xmhinLiIQL+gTU=
Subject key identifier: 44:96:0B:D3:DE:41:5C:F6:51:B8:40:88:0E:32:71:7D:78:C4:38:0F
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018CC86F566E4A988064925FBFC7DA74A86E
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/RJYL095BXPZRuECIDjJxfXjEOA8.roa
Signing time: Tue 02 Jan 2024 04:29:48 +0000
ROA not before: Tue 02 Jan 2024 04:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208091
IP address blocks: 193.37.69.0/24 maxlen: 24
80.66.88.0/24 maxlen: 24
87.251.67.0/24 maxlen: 24
87.251.75.0/24 maxlen: 24
80.66.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:56:6e:4a:98:80:64:92:5f:bf:c7:da:74:a8:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 2 04:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44960bd3de415cf651b840880e32717d78c4380f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:28:5f:64:7c:69:02:ba:d7:ef:6b:09:49:43:
d3:31:a1:f9:71:31:40:32:6e:2a:f1:9d:f5:50:ae:
40:14:f9:12:bb:0f:61:02:58:a5:2d:a3:9b:33:f1:
8c:e3:0e:5f:95:65:fb:65:2d:9a:85:3f:0d:2b:74:
38:c1:18:8f:eb:1b:cb:0a:b7:43:d9:29:f6:68:da:
1c:08:df:40:43:34:02:d6:6e:27:1b:06:48:3a:31:
d2:ce:72:d1:6e:3a:49:e5:66:48:7d:10:c4:c6:ce:
e9:be:9b:85:85:2d:29:58:27:f0:14:2f:32:63:3a:
82:7c:1a:55:12:69:ae:5e:bd:46:7f:41:99:99:45:
19:b4:7d:60:38:cd:1b:10:43:d8:88:21:16:64:73:
57:04:33:50:50:b9:a2:b2:66:08:7a:d2:e0:6e:66:
1c:b0:c0:8d:92:45:55:e8:f0:2d:79:39:37:20:38:
20:75:03:db:45:88:91:67:88:d1:2b:45:a7:9a:85:
fe:07:26:10:c5:89:8e:73:18:6c:ac:23:20:08:f4:
90:26:e9:93:45:4e:55:25:6c:cf:fa:75:b5:d5:db:
7b:61:8c:90:36:9e:b2:6f:ea:4c:e7:d1:1f:ef:df:
78:66:49:de:08:53:8d:bd:e6:57:8c:0f:08:93:c3:
3c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:96:0B:D3:DE:41:5C:F6:51:B8:40:88:0E:32:71:7D:78:C4:38:0F
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/RJYL095BXPZRuECIDjJxfXjEOA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.76.0/24
80.66.88.0/24
87.251.67.0/24
87.251.75.0/24
193.37.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:72:c5:62:ea:10:a5:b0:13:89:94:50:62:40:21:fc:30:21:
cf:3e:e4:f0:5b:3b:3c:ae:86:a9:30:fe:45:8a:39:36:11:09:
9b:0a:18:60:64:7f:78:7f:07:6a:cf:20:eb:47:83:33:09:39:
df:12:81:76:a1:a0:12:95:5e:06:6b:15:a9:02:bf:7c:5e:bb:
25:64:08:09:55:d3:be:95:1c:61:25:df:50:44:50:45:dc:9e:
0c:a0:31:6c:92:5e:c3:e3:28:e3:b5:a6:4c:8e:8b:66:c6:6b:
bb:1e:23:72:bc:db:c7:ed:d2:83:be:ea:71:3a:8d:64:7c:77:
c0:b4:39:49:79:3a:4c:47:18:cd:36:da:85:5e:06:1d:17:f7:
f7:2d:59:9e:17:dd:a1:f3:56:06:69:db:c4:06:f8:bf:e2:28:
7c:ce:48:cc:42:66:ff:d1:a4:65:72:d0:9e:1d:21:b9:e2:d5:
e1:5d:ce:36:bc:88:f0:b7:cb:99:87:24:f9:a9:b4:68:4b:c6:
d2:d7:18:2f:99:b2:10:1a:cc:15:9d:01:b9:00:c9:be:69:06:
c1:e8:92:f1:ee:28:a8:45:3f:12:67:0b:6e:e3:8b:2c:f2:db:
a2:a8:0f:1c:5c:0a:33:f0:3c:2d:f5:2e:cf:d5:9b:a2:13:b9:
4f:1f:54:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:06:24 2024 by rpki-client on console-ams.rpki-client.org