Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/zvvINv-80HeMmf19dbKkJSjgi4Y.roa
File: zvvINv-80HeMmf19dbKkJSjgi4Y.roa (raw, json)
Hash identifier: AJAkIoi4h8bxxPA9pdJFJnFljj7J86EkL1jBIKM6ceY=
Subject key identifier: CE:FB:C8:36:FF:BC:D0:77:8C:99:FD:7D:75:B2:A4:25:28:E0:8B:86
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0193626387D1B585BBAB9E6AC7D3B78DC76D
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/zvvINv-80HeMmf19dbKkJSjgi4Y.roa
Signing time: Mon 25 Nov 2024 08:15:10 +0000
ROA not before: Mon 25 Nov 2024 08:15:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42216
IP address blocks: 77.92.142.0/24 maxlen: 24
77.92.143.0/24 maxlen: 24
77.92.152.0/24 maxlen: 24
78.135.86.0/24 maxlen: 24
188.132.206.0/24 maxlen: 24
188.132.207.0/24 maxlen: 24
2a10:9440:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 17:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:63:87:d1:b5:85:bb:ab:9e:6a:c7:d3:b7:8d:c7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 25 08:15:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cefbc836ffbcd0778c99fd7d75b2a42528e08b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0a:ee:16:e0:1e:78:b9:d9:ee:8a:05:9f:66:
b6:5c:ab:6a:8f:b6:1b:9b:6d:ec:76:4a:bd:b2:92:
d4:4d:1a:63:2b:38:5d:68:59:3c:cc:6e:0e:8e:46:
58:89:45:10:61:02:c9:f4:5c:4c:50:aa:3a:29:72:
18:6c:65:56:e7:39:d6:60:86:2f:96:4f:c9:43:8c:
09:d0:d9:ed:46:39:8a:39:63:8a:39:17:01:10:b9:
e3:2c:55:9c:7b:82:fd:b3:f4:2f:e2:50:cd:ff:ca:
3b:1a:5c:0e:68:69:60:64:5c:e3:44:90:b6:5e:5f:
ef:71:cc:8a:7f:4e:39:e5:68:06:31:81:94:9d:67:
ef:0b:14:2f:e6:eb:d6:0e:28:c6:4b:e4:e0:b0:8a:
b2:61:55:10:6d:54:5f:47:40:4b:f1:9b:9d:91:a9:
62:16:25:f2:86:90:04:d8:a4:bd:3c:f9:c1:36:96:
b0:df:ef:87:74:cc:69:ef:32:ec:4f:eb:27:b7:58:
26:60:c6:6d:62:1a:80:9e:b2:48:82:ac:a4:aa:30:
78:a7:1c:1b:48:32:4f:b6:87:9e:69:39:c1:54:df:
9d:3e:cb:e3:63:1d:7a:cd:87:70:29:ec:f6:f6:9f:
be:18:24:c6:0b:88:10:80:6e:ed:a4:3c:ea:59:46:
91:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FB:C8:36:FF:BC:D0:77:8C:99:FD:7D:75:B2:A4:25:28:E0:8B:86
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/zvvINv-80HeMmf19dbKkJSjgi4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.142.0/23
77.92.152.0/24
78.135.86.0/24
188.132.206.0/23
IPv6:
2a10:9440:1::/48
Signature Algorithm: sha256WithRSAEncryption
7d:01:53:5a:a4:fc:1d:0e:6f:9c:a5:5d:ff:33:31:bd:76:bf:
ca:46:ad:3a:f3:c1:ec:40:b1:1e:8f:d2:e2:06:cc:cc:f7:10:
92:27:97:f2:4c:e2:e2:1d:ee:17:80:e1:4a:38:59:1a:0e:af:
df:7e:3a:2e:1e:a7:16:71:ae:be:88:60:ff:60:b1:50:0c:99:
d5:75:24:17:ce:d8:c6:95:a1:e0:d6:79:42:f0:dc:6f:69:90:
73:9e:58:a6:af:48:37:15:d1:c1:df:28:4d:d9:fc:33:e6:17:
b7:8c:14:c6:4e:2c:74:72:08:a4:82:1e:20:23:43:69:a2:ef:
42:e1:9f:25:fc:fa:cf:2b:06:6e:85:b8:51:7f:b2:53:56:42:
e4:f5:4f:e0:5f:17:9d:53:96:2c:bb:dc:b0:c3:e8:3c:eb:ed:
5c:e3:4e:5a:4f:2d:04:30:df:af:b0:c9:4c:72:74:a0:dc:f9:
fb:71:4c:5a:42:59:84:1d:0f:08:cb:2b:c7:fa:0a:b8:f3:6f:
5f:f4:17:52:08:66:4b:54:b8:f7:c7:6c:90:7e:9a:b5:4a:19:
95:b9:f6:78:01:4d:19:17:c5:21:19:07:73:57:85:bd:31:78:
d1:48:80:5f:76:dd:dd:b2:3f:cd:68:a6:0b:8d:6a:c3:9f:3d:
f6:d6:d0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 02:57:06 2024 by rpki-client on console-fra.rpki-client.org