Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/f2s1wBOEuzL-F4O06Rwc8qEuX9Y.roa
File: f2s1wBOEuzL-F4O06Rwc8qEuX9Y.roa (raw, json)
Hash identifier: 9felSVqlmzMCQEpIbnqP5e4A3V39v8OE1eWJTt54Awo=
Subject key identifier: 7F:6B:35:C0:13:84:BB:32:FE:17:83:B4:E9:1C:1C:F2:A1:2E:5F:D6
Certificate issuer: /CN=682c842dfa2a1e714727bccb95f165347103f277
Certificate serial: 018CC8DF565E73D714D2C4F763AE33291A76
Authority key identifier: 68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/f2s1wBOEuzL-F4O06Rwc8qEuX9Y.roa
Signing time: Tue 02 Jan 2024 06:32:08 +0000
ROA not before: Tue 02 Jan 2024 06:32:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59835
IP address blocks: 77.80.128.0/17 maxlen: 17
77.80.253.0/24 maxlen: 24
77.80.254.0/24 maxlen: 24
77.80.255.0/24 maxlen: 24
185.69.168.0/24 maxlen: 24
2a05:2240::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:56:5e:73:d7:14:d2:c4:f7:63:ae:33:29:1a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=682c842dfa2a1e714727bccb95f165347103f277
Validity
Not Before: Jan 2 06:32:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f6b35c01384bb32fe1783b4e91c1cf2a12e5fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:80:23:95:e9:f6:ff:74:2d:97:ec:be:ab:
d0:53:18:04:a8:0d:6d:6c:df:11:18:2e:57:67:2e:
85:44:7f:f0:56:ca:79:36:f2:64:29:4a:69:e5:af:
42:73:fa:9b:0c:d5:35:9d:8f:86:95:b8:1b:06:7f:
37:bd:76:0d:68:4a:db:8a:a6:c4:58:18:ad:ae:0a:
d6:75:ba:1b:1f:24:b7:61:c9:fb:08:d9:06:5b:77:
7e:5d:d4:35:72:99:96:75:30:8e:1e:4e:95:68:28:
d6:d1:91:7a:d9:ee:2f:f3:1b:a6:3a:d0:85:a1:b7:
1c:3f:f9:e6:c0:35:98:2f:11:6e:b6:80:30:10:1c:
ea:5f:b1:dc:47:a6:2c:08:a8:99:11:bd:6a:e9:19:
60:46:f9:c5:f6:25:2c:0f:68:4c:ee:98:84:6a:2d:
bc:99:83:48:3e:74:d7:03:31:5e:c1:18:d8:6a:3b:
c1:27:0e:1c:dd:75:0e:70:77:46:76:b4:83:62:16:
dd:f9:ec:ac:f9:76:02:fc:3d:b5:bf:4c:f5:21:d9:
24:d3:17:9b:af:90:6a:73:7a:ab:50:f7:47:23:63:
6b:70:b8:1a:11:d2:03:27:2e:43:a9:fe:95:13:64:
3a:a0:79:f4:14:b7:b5:65:83:e8:40:68:19:73:4b:
d3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6B:35:C0:13:84:BB:32:FE:17:83:B4:E9:1C:1C:F2:A1:2E:5F:D6
X509v3 Authority Key Identifier:
keyid:68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/f2s1wBOEuzL-F4O06Rwc8qEuX9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.80.128.0/17
185.69.168.0/24
IPv6:
2a05:2240::/32
Signature Algorithm: sha256WithRSAEncryption
51:9c:bf:28:38:26:b4:ee:d2:26:9f:ec:4e:84:e1:5a:63:5b:
de:7f:4a:50:17:aa:b0:85:2d:df:fc:5d:05:04:cf:80:04:e1:
dd:95:f4:33:ec:2e:f6:59:2e:a2:77:aa:83:ea:f7:19:96:a7:
6c:7c:89:83:e5:4f:90:df:63:bb:39:ee:f5:02:fa:b6:3b:61:
fd:6f:79:c6:d6:e2:b2:22:61:58:75:31:e9:9f:02:88:14:ae:
e4:bd:15:9a:b8:21:94:39:b3:f7:ef:ee:81:df:6c:24:e1:dc:
fe:d1:8c:2c:af:64:3e:f4:89:81:f9:bf:4f:5a:04:d8:b0:27:
68:3d:6d:2b:eb:99:88:b3:09:a0:16:87:2a:1c:99:5e:dd:be:
84:07:96:a7:bc:a4:75:75:c4:c6:b4:91:be:44:aa:2f:f7:39:
43:6e:42:03:56:a8:9e:da:0a:38:74:8e:ad:3a:a9:23:d5:05:
ce:7e:cf:12:5a:5b:4a:63:d5:13:c8:7c:29:e2:24:1d:04:50:
e1:20:e3:dd:66:7e:1d:45:b7:35:9c:31:0f:6f:75:3e:13:6d:
78:8b:14:5a:ae:d9:5b:23:eb:f5:da:e8:2f:4d:73:53:d2:83:
cd:fd:b5:83:41:72:53:43:fb:b4:f7:8b:25:23:c1:91:47:f8:
b2:59:31:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:39:40 2024 by rpki-client on console-ams.rpki-client.org