Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/asvgCYDhXw9V_nwgZ9da37RElEA.roa
File: asvgCYDhXw9V_nwgZ9da37RElEA.roa (raw, json)
Hash identifier: RLU1pYZrS5W8iaPy0vVus0Pxxw05ody4RVkhGZCFdGQ=
Subject key identifier: 6A:CB:E0:09:80:E1:5F:0F:55:FE:7C:20:67:D7:5A:DF:B4:44:94:40
Certificate issuer: /CN=7b8254253dc0213fe58a7aff4b82463e47978063
Certificate serial: 018CC7270FB75238C9D57CA8E127B202E264
Authority key identifier: 7B:82:54:25:3D:C0:21:3F:E5:8A:7A:FF:4B:82:46:3E:47:97:80:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/asvgCYDhXw9V_nwgZ9da37RElEA.roa
Signing time: Mon 01 Jan 2024 22:31:14 +0000
ROA not before: Mon 01 Jan 2024 22:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213118
IP address blocks: 79.142.40.0/23 maxlen: 23
94.154.125.0/24 maxlen: 24
2a11:fd40:1000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:0f:b7:52:38:c9:d5:7c:a8:e1:27:b2:02:e2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b8254253dc0213fe58a7aff4b82463e47978063
Validity
Not Before: Jan 1 22:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6acbe00980e15f0f55fe7c2067d75adfb4449440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1b:e2:6d:ca:e0:84:cb:6d:5e:fa:a7:49:77:
00:b5:c0:cf:d5:ee:00:3a:93:23:f0:0a:75:42:88:
d2:85:56:61:5e:7f:98:eb:58:13:af:d9:4b:21:93:
14:7f:2f:ac:dc:cb:0e:e6:e3:41:4b:23:12:91:41:
0d:90:4a:ea:4a:09:0e:21:39:6a:17:a1:c0:ae:8d:
88:49:a0:f6:fb:ed:c8:c7:16:c4:f4:1f:d4:fb:39:
35:7d:e4:2a:59:aa:6e:fa:36:a4:62:53:45:9e:0e:
79:9a:6f:dd:8a:83:e4:82:a8:90:45:32:99:2d:99:
60:e6:8a:da:60:ce:40:a5:55:9b:3e:32:ab:a7:f1:
f7:3c:0e:b8:a4:8f:64:28:63:8f:01:05:cc:23:f3:
cf:35:ad:67:fd:ec:12:99:18:c7:c5:ac:d2:84:4a:
d0:e8:33:e5:7d:85:c5:a3:83:fc:fd:5b:dd:67:d5:
f0:93:94:a1:f8:b9:54:0a:36:68:a8:a8:4c:64:4a:
79:35:30:6c:8f:71:c9:b2:d9:be:1b:da:73:5a:39:
cb:83:92:db:a9:9b:4c:d4:28:a6:41:95:5b:47:10:
91:df:79:40:c9:26:4d:83:bb:7c:ab:15:d7:3c:98:
25:f6:e5:de:ea:d8:c1:8b:22:6d:e9:b9:b5:63:e4:
9e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CB:E0:09:80:E1:5F:0F:55:FE:7C:20:67:D7:5A:DF:B4:44:94:40
X509v3 Authority Key Identifier:
keyid:7B:82:54:25:3D:C0:21:3F:E5:8A:7A:FF:4B:82:46:3E:47:97:80:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/asvgCYDhXw9V_nwgZ9da37RElEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.40.0/23
94.154.125.0/24
IPv6:
2a11:fd40:1000::/36
Signature Algorithm: sha256WithRSAEncryption
2f:6f:cb:a1:ef:92:7a:c2:4b:49:c7:db:e1:6a:b7:36:64:45:
98:f3:19:45:cf:a1:e8:d1:f9:88:30:aa:dd:f4:1b:4d:fe:57:
f3:39:f4:a1:39:63:6b:39:4c:be:19:e3:39:72:7e:cc:7d:05:
a8:07:6b:15:91:81:ad:08:3f:07:b1:bb:e5:12:97:06:2b:a1:
cb:47:ac:b8:b7:a0:34:57:09:01:1e:77:7d:a8:37:a6:4b:38:
31:5f:1f:bd:35:dc:f2:b7:f6:2e:ff:12:16:7a:02:15:94:ee:
68:c6:24:a9:61:81:c0:65:89:ae:79:20:bc:ac:f3:cd:72:7f:
b7:c6:0f:55:0b:6a:30:bc:e5:5d:0b:ea:d0:cb:87:9f:de:9d:
3a:2c:ce:ac:21:9e:9b:a0:b5:1d:50:4d:33:1a:76:96:e7:58:
bc:e5:d8:a4:7a:ab:ee:1b:f7:f0:45:31:f5:d7:48:c5:60:73:
24:ca:83:c5:94:81:b9:08:7c:be:38:6d:e7:89:2e:49:3b:0b:
7b:1e:c2:b5:0f:cd:34:f2:d1:68:82:c4:b3:3a:ce:72:43:ee:
9d:40:8e:81:ad:b0:43:58:d0:e7:dc:4c:04:fc:e8:04:f3:aa:
7e:8e:bb:53:7b:76:32:99:67:87:45:77:bd:fb:2f:97:23:fa:
da:a5:52:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:34 2024 by rpki-client on console-ams.rpki-client.org