Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/t13UbevthVKvglY5mfK9lyCgLYw.roa
File: t13UbevthVKvglY5mfK9lyCgLYw.roa (raw, json)
Hash identifier: eaFWZrzGEoJ/fS1kowms/vDsMqgU83+uTJBGm1xsFJk=
Subject key identifier: B7:5D:D4:6D:EB:ED:85:52:AF:82:56:39:99:F2:BD:97:20:A0:2D:8C
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01917A3C11CC7059AD98027E94EA3C973D21
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/t13UbevthVKvglY5mfK9lyCgLYw.roa
Signing time: Thu 22 Aug 2024 13:17:22 +0000
ROA not before: Thu 22 Aug 2024 13:17:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12301
IP address blocks: 79.172.226.0/24 maxlen: 24
79.172.230.0/23 maxlen: 23
87.229.20.0/23 maxlen: 23
87.229.40.0/24 maxlen: 24
87.229.51.0/24 maxlen: 24
87.229.56.0/24 maxlen: 24
95.138.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 20:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:3c:11:cc:70:59:ad:98:02:7e:94:ea:3c:97:3d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Aug 22 13:17:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b75dd46debed8552af82563999f2bd9720a02d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:71:b7:fc:e1:be:40:22:90:97:8d:b5:15:a3:
2c:69:85:a5:c0:b2:6d:6a:ad:79:d4:7f:1b:d3:15:
a7:fd:d6:51:d4:d9:55:12:dc:48:85:30:4d:a6:d3:
74:f9:6d:55:d9:bf:ae:d3:09:87:ff:a5:96:9a:5d:
22:9c:c8:bf:e9:d4:b5:43:a0:7c:42:28:b0:8b:a8:
5a:bc:06:a3:ec:05:54:2e:58:3d:88:9a:65:eb:32:
41:27:b0:a1:c7:da:65:82:b5:a0:b3:4e:c0:ae:3f:
3a:51:14:16:6b:a4:e7:23:85:96:4c:6c:16:33:f5:
61:fd:6d:15:30:60:a2:3d:6a:88:dc:2d:15:16:32:
21:21:57:16:57:42:20:41:83:ad:d3:30:6b:6d:fb:
dd:10:bf:dc:9f:de:5f:2e:ba:ef:98:cf:ae:cd:b7:
49:d7:c3:64:86:6a:24:1e:cf:9a:1d:76:81:46:08:
5b:28:7f:6c:48:1e:6b:69:3c:6c:cd:20:75:7f:f6:
4e:41:68:db:ab:97:d0:39:17:7f:d3:8d:4a:43:45:
e3:48:02:4e:70:7b:a9:1f:82:a5:60:af:ec:bb:32:
9a:0a:bb:28:14:61:fa:4b:30:5a:b3:46:30:b4:31:
04:79:3d:83:cc:ff:08:93:79:de:4c:db:0a:ca:cf:
80:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5D:D4:6D:EB:ED:85:52:AF:82:56:39:99:F2:BD:97:20:A0:2D:8C
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/t13UbevthVKvglY5mfK9lyCgLYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.226.0/24
79.172.230.0/23
87.229.20.0/23
87.229.40.0/24
87.229.51.0/24
87.229.56.0/24
95.138.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:6f:ba:8f:cf:28:e2:b7:57:97:2e:63:e4:b4:da:15:5e:4d:
b2:e2:08:31:ab:1e:65:0f:69:3c:50:cd:7a:c3:34:df:90:41:
3e:65:79:d1:49:46:31:ce:5a:ec:69:64:04:91:4c:04:d8:18:
2b:22:3e:d4:dc:80:13:47:af:7e:4d:cf:cd:eb:25:99:f6:ba:
f9:e2:25:fe:9d:20:08:e2:fe:02:4c:5e:ea:34:3b:dc:e0:a0:
81:6c:c6:bc:8b:42:4a:47:36:2a:08:a9:24:f3:23:e8:e1:2a:
5a:2d:4e:5b:fe:e9:63:d0:04:ac:4f:95:bc:72:5f:91:25:57:
c3:30:59:58:60:fb:1f:3e:73:a6:26:a5:99:0f:06:ae:4c:ed:
39:ce:26:66:29:2e:c4:1e:12:99:3a:59:60:2c:f1:c1:58:8d:
85:fa:c5:56:95:ff:c0:8a:78:83:25:d5:a8:56:d7:46:ba:34:
78:0a:ba:78:22:49:21:7a:d0:e0:80:fa:01:91:a8:63:bf:5b:
0c:93:89:d3:5b:b2:8c:9b:90:68:2b:21:2a:d4:b7:4d:27:38:
07:8c:bb:ea:c0:25:4d:f2:8e:2c:df:df:6f:06:4a:2a:7f:48:
6a:51:23:a1:d3:94:2b:83:db:e0:61:8d:40:84:f0:0f:fc:02:
d3:74:ee:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:37 2024 by rpki-client on console-fra.rpki-client.org