Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/S7ZyQkVf4m0v3orcylYXFlCmn9Y.roa
File: S7ZyQkVf4m0v3orcylYXFlCmn9Y.roa (raw, json)
Hash identifier: fwpsgybcFimiS9wHEouaxMWh/X0cpPM8W/FLYIoPNuc=
Subject key identifier: 4B:B6:72:42:45:5F:E2:6D:2F:DE:8A:DC:CA:56:17:16:50:A6:9F:D6
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 0191DBC1114DF3234426F6E29CB1B2AE4E31
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/S7ZyQkVf4m0v3orcylYXFlCmn9Y.roa
Signing time: Tue 10 Sep 2024 11:45:48 +0000
ROA not before: Tue 10 Sep 2024 11:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215376
IP address blocks: 77.221.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:c1:11:4d:f3:23:44:26:f6:e2:9c:b1:b2:ae:4e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: Sep 10 11:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bb67242455fe26d2fde8adcca56171650a69fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:cd:48:ef:fa:14:2d:44:c7:4c:fc:be:97:
89:1c:8f:b3:15:3c:33:4c:3e:58:5d:bc:70:a5:2f:
9a:f5:6e:5d:17:e5:40:a0:70:07:4b:81:bc:b3:20:
66:44:49:3c:f8:f6:54:7f:99:2a:8f:1d:3e:a2:5f:
2c:30:b8:d4:fb:82:0e:6f:91:fd:93:39:04:fa:ed:
db:97:6f:d7:bb:f0:0d:06:fd:d8:0d:6b:e0:6e:49:
a5:52:21:2f:f1:14:4c:93:5c:ea:c8:36:d6:68:50:
af:a7:b1:2d:eb:dd:e0:69:13:d1:03:cf:ed:3d:49:
3e:64:ee:7b:31:30:a8:d2:84:f6:da:62:54:ec:62:
51:db:4a:a0:1c:25:82:a8:17:25:ae:b8:29:b5:01:
00:c3:24:44:a3:e4:0d:9f:72:3d:09:ec:5a:bd:f9:
dc:29:9a:dc:ac:29:3e:4f:44:b0:99:f8:a7:b0:82:
42:7c:b2:ae:b0:3a:b5:b5:1e:90:0c:b7:c5:c9:97:
af:6b:e6:b3:1a:d1:32:76:e5:3a:7e:78:fe:b2:28:
c0:d0:3f:c0:8d:10:e8:f6:13:ac:74:80:1c:2f:4a:
58:ec:33:4b:07:df:4a:e5:3c:9e:53:35:6b:c0:8d:
3b:62:87:ec:be:e3:68:e8:59:dd:c2:47:02:5c:0c:
12:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B6:72:42:45:5F:E2:6D:2F:DE:8A:DC:CA:56:17:16:50:A6:9F:D6
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/S7ZyQkVf4m0v3orcylYXFlCmn9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.134.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f7:60:14:f4:96:75:77:22:de:8b:9c:88:8c:f4:2b:b3:07:
f1:10:f1:d1:fc:9d:fc:df:e4:71:89:fb:c1:f9:6f:44:04:41:
7d:de:10:b6:14:c4:d6:3e:98:ce:a7:bb:49:f6:6d:c5:bd:a5:
ee:b1:89:39:6c:ad:00:d2:75:9b:73:4a:64:64:a5:93:44:b0:
35:93:14:19:ea:79:93:36:7b:a8:da:bf:cd:dd:24:cb:30:55:
3f:b5:da:d2:14:96:78:30:f8:57:02:f4:70:d5:fb:c2:ce:b1:
3e:20:ec:b0:ac:0d:f7:c4:c1:2b:d3:4d:36:8e:fa:04:29:38:
0b:89:2a:38:a1:62:59:02:80:0c:4c:cd:d2:95:b5:34:22:7c:
b1:97:b9:3a:38:02:26:1a:29:d8:bc:e6:7e:f9:aa:fa:64:5e:
2e:4a:2f:e0:5e:d4:6a:5a:71:4e:c8:f3:0d:f8:72:d4:45:d9:
18:3d:1d:35:42:e7:27:6e:d2:e7:e6:94:d5:14:39:09:8c:30:
d6:37:92:e4:92:88:8d:0c:b9:07:80:da:99:e0:ad:12:b0:d1:
8b:46:6f:cb:f0:40:52:1d:27:6a:bb:04:29:ba:61:59:8b:7f:
d5:e5:ee:c5:fd:2a:03:b7:08:97:d7:26:b1:e2:9c:83:90:dc:
1e:8f:98:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:00:57 2024 by rpki-client on console-ams.rpki-client.org