Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/gN92ENBP33WLQRyC_ShkeEohd_c.roa
File: gN92ENBP33WLQRyC_ShkeEohd_c.roa (raw, json)
Hash identifier: BeTrIdKjPkGBaFPNzYj1QV4i8SIvrQ6ytYNYI82Y2IU=
Subject key identifier: 80:DF:76:10:D0:4F:DF:75:8B:41:1C:82:FD:28:64:78:4A:21:77:F7
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 018CC6B7BD566AE0DC45C2626C48391E4CE2
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/gN92ENBP33WLQRyC_ShkeEohd_c.roa
Signing time: Mon 01 Jan 2024 20:29:39 +0000
ROA not before: Mon 01 Jan 2024 20:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20733
IP address blocks: 147.78.117.0/24 maxlen: 24
147.78.116.0/24 maxlen: 24
147.78.116.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:bd:56:6a:e0:dc:45:c2:62:6c:48:39:1e:4c:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 1 20:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80df7610d04fdf758b411c82fd2864784a2177f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:4e:39:60:cd:78:31:68:27:71:a3:14:b4:89:
6a:dc:27:b5:71:cb:ed:cd:8f:18:41:e4:7c:df:92:
f0:fe:b4:f4:2c:fe:25:be:d2:45:8c:0f:27:f7:30:
8e:be:d0:da:ef:5d:c3:d8:16:b8:a2:d1:2a:a4:ae:
e0:5c:80:8f:fe:b0:39:dc:20:47:22:f0:6c:07:83:
2c:f4:44:9e:7f:66:8a:22:be:a0:a5:de:17:8d:43:
64:4c:32:dd:fc:b7:1c:43:f6:d3:25:32:be:a6:8a:
fd:83:13:09:0b:f1:de:7d:2d:94:c1:ef:7a:1a:4a:
d0:f6:e0:8a:87:6e:7d:57:3f:7b:25:db:67:5f:80:
f2:b2:91:ea:be:3c:55:82:c3:c0:7b:7b:1d:aa:a0:
d6:cc:f5:32:c4:bb:29:8e:66:4c:b8:66:b7:e5:eb:
4d:a3:db:91:0c:b2:be:8f:5b:38:45:85:78:c7:c3:
26:ad:e2:3e:49:ae:21:cf:03:aa:9d:5a:72:c2:ba:
b6:73:8e:cc:35:30:e5:f4:22:fe:0f:c8:32:69:26:
3d:73:3a:17:e9:f1:fb:4c:35:91:b5:d7:88:c1:cb:
07:8f:49:7a:ac:79:11:93:08:d2:01:cd:58:fe:23:
58:66:2a:78:0b:4e:e2:20:3f:4a:bb:93:c1:0d:c2:
a1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DF:76:10:D0:4F:DF:75:8B:41:1C:82:FD:28:64:78:4A:21:77:F7
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/gN92ENBP33WLQRyC_ShkeEohd_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.116.0/23
Signature Algorithm: sha256WithRSAEncryption
01:b8:d7:fd:c2:b1:9a:89:71:eb:aa:cc:ec:9f:08:5a:06:ea:
a4:6b:6d:4a:aa:28:70:da:d4:6d:e8:6c:81:f3:92:f8:78:55:
9c:09:a1:2f:7c:97:0f:04:41:94:56:8e:3e:44:1c:71:68:93:
74:76:4f:f8:a4:7a:c7:50:f3:b5:ca:75:a8:6b:97:8c:34:be:
0f:0f:1b:63:d4:c9:ad:31:ee:99:ac:3d:c3:f4:e3:39:1a:40:
f4:3b:36:0f:35:1f:35:b7:9e:c5:b5:bb:e0:ff:c6:6c:ca:f5:
4e:af:21:69:99:10:da:5f:b2:12:4f:04:dd:4d:df:c6:26:e4:
38:48:66:86:e7:27:58:b1:52:6a:e9:49:0b:62:ce:a6:de:4c:
75:03:1a:cc:9e:1c:b4:cc:bc:66:1a:4d:44:37:33:28:24:ce:
8d:e8:0f:e6:d4:62:32:7e:bd:c8:8d:2b:05:4e:90:25:91:af:
2f:ea:f8:28:0c:9a:63:82:4c:22:27:51:ce:1e:9d:f0:1d:17:
92:2c:be:c2:93:23:f4:84:ff:d2:5d:1b:71:2f:ce:84:9f:08:
0b:c2:f9:14:4d:ac:a9:63:04:fd:5a:a3:ed:18:03:11:1c:11:
58:ee:b7:13:fa:0d:52:0c:b9:70:ed:e3:4e:70:eb:86:e3:0d:
5b:fe:6e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:08:43 2024 by rpki-client on console-ams.rpki-client.org