Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/gPDc6ZBxxWe07h-VqJNCFEoqkEM.roa
File: gPDc6ZBxxWe07h-VqJNCFEoqkEM.roa (raw, json)
Hash identifier: Glxj1otzpAMyG4w7myyT5xZf8H3t/k06JaZpYF4bjGU=
Subject key identifier: 80:F0:DC:E9:90:71:C5:67:B4:EE:1F:95:A8:93:42:14:4A:2A:90:43
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 018CC5DC05E1B4249DD3E9B11BF0B6AE90D0
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/gPDc6ZBxxWe07h-VqJNCFEoqkEM.roa
Signing time: Mon 01 Jan 2024 16:29:40 +0000
ROA not before: Mon 01 Jan 2024 16:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58024
IP address blocks: 77.105.145.0/24 maxlen: 24
84.54.46.0/24 maxlen: 24
77.105.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:05:e1:b4:24:9d:d3:e9:b1:1b:f0:b6:ae:90:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Jan 1 16:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80f0dce99071c567b4ee1f95a89342144a2a9043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:28:f3:a1:50:99:b5:e1:d4:99:10:74:ef:
51:1c:1e:67:76:83:33:46:68:f6:4a:3f:c0:1f:1a:
69:b8:cd:75:9e:21:d3:34:7b:3c:1c:f0:cd:8e:b3:
03:09:1e:0a:09:64:28:b0:ef:43:15:52:0d:6d:8d:
5e:d7:cc:ee:f4:92:01:7f:38:e7:20:53:47:ab:85:
ee:c6:75:66:66:b7:74:44:20:dc:42:d4:a5:5f:44:
cc:6d:be:36:c0:e7:df:1e:a0:57:fe:30:17:90:a7:
99:91:e4:63:89:70:86:52:da:c1:e7:62:f4:10:04:
0b:47:ee:0b:a8:5e:ef:8b:a9:cc:ba:0c:89:f4:f8:
7a:7f:bd:f4:c2:2f:8f:5a:d5:f8:f9:5c:7d:e7:ce:
86:f1:79:c0:ff:a9:50:dd:41:e9:90:6a:53:42:67:
31:04:85:17:cd:65:29:75:d7:49:ca:24:92:16:67:
c6:8c:03:2a:fb:5f:2f:f0:2e:1d:34:a0:c0:1e:69:
b7:17:1b:b5:48:d0:19:be:11:a7:6a:b4:d1:af:ab:
9e:86:94:5c:99:99:67:b3:af:c1:4f:6b:9f:f7:be:
7c:4b:0f:07:c6:c9:79:1f:56:cb:cd:87:8f:a3:6e:
31:0e:40:37:e2:16:31:c3:89:af:fd:6a:3d:00:af:
1c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F0:DC:E9:90:71:C5:67:B4:EE:1F:95:A8:93:42:14:4A:2A:90:43
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/gPDc6ZBxxWe07h-VqJNCFEoqkEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.145.0/24
77.105.165.0/24
84.54.46.0/24
Signature Algorithm: sha256WithRSAEncryption
66:0b:42:ab:8c:53:75:e0:8c:2c:a4:5e:0b:d9:2b:f2:cd:61:
c5:09:5e:07:1f:05:83:36:32:3d:81:cc:22:c7:ee:e4:4c:92:
09:88:b5:0e:a2:71:c7:ff:33:f2:9c:a3:43:55:b8:d4:fd:e4:
ee:2f:50:df:dd:70:14:e2:51:be:61:2f:b9:05:e6:f8:ec:ea:
f9:21:10:e1:21:e0:f8:ad:0c:8d:21:b9:a1:9a:7c:f3:c0:b9:
4f:b0:35:35:72:f5:84:5c:0c:9f:c7:64:d3:f0:cd:73:a1:6d:
6e:2b:39:1e:a3:1d:55:a9:96:75:b4:67:9d:1e:d9:3b:d4:5c:
cf:6e:30:bc:22:79:dc:64:c8:c3:b8:ef:28:25:6b:a6:0d:22:
bf:d1:62:0d:dd:29:49:0a:b9:7d:93:41:ae:6b:43:29:66:af:
3a:d2:a1:f9:25:61:6d:ef:f3:1c:08:ca:13:3c:ce:33:6a:a4:
2d:3c:8c:94:4f:52:b9:e0:ed:83:5d:53:d0:6d:71:61:e7:30:
ed:36:24:1c:bd:10:7d:18:cf:e5:a8:41:58:86:2f:41:6d:b7:
e5:c7:dd:01:cb:8a:11:ca:a7:87:d2:a3:1e:19:d0:b1:d8:10:
5d:4f:1f:e4:09:f1:cd:f0:69:dd:da:11:ec:dd:d5:b9:2d:4d:
0a:ef:85:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 02:58:59 2024 by rpki-client on console-fra.rpki-client.org