Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/vIe68Carr-NYsVnhvUYmCHD_bHE.roa
File: vIe68Carr-NYsVnhvUYmCHD_bHE.roa (raw, json)
Hash identifier: YGJhp6RfN/ZMqu0w7pzTRlXaoGhpwDcFPx3igoTVXiI=
Subject key identifier: BC:87:BA:F0:26:AB:AF:E3:58:B1:59:E1:BD:46:26:08:70:FF:6C:71
Certificate issuer: /CN=c1bb082d86f507bffadf9192aa676ab7da270d42
Certificate serial: 0192E30139F34574898A69EDC5805C7E3416
Authority key identifier: C1:BB:08:2D:86:F5:07:BF:FA:DF:91:92:AA:67:6A:B7:DA:27:0D:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wbsILYb1B7_635GSqmdqt9onDUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/vIe68Carr-NYsVnhvUYmCHD_bHE.roa
Signing time: Thu 31 Oct 2024 14:36:01 +0000
ROA not before: Thu 31 Oct 2024 14:36:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42903
IP address blocks: 77.75.80.0/21 maxlen: 21
159.253.88.0/21 maxlen: 21
185.193.120.0/22 maxlen: 22
2a03:1100::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/wbsILYb1B7_635GSqmdqt9onDUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/wbsILYb1B7_635GSqmdqt9onDUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/wbsILYb1B7_635GSqmdqt9onDUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e3:01:39:f3:45:74:89:8a:69:ed:c5:80:5c:7e:34:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bb082d86f507bffadf9192aa676ab7da270d42
Validity
Not Before: Oct 31 14:36:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc87baf026abafe358b159e1bd46260870ff6c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:73:72:ee:97:e5:bf:80:6f:3e:aa:16:f4:ed:
47:b4:15:58:7f:3b:cd:db:29:db:d4:c3:d8:93:9c:
a2:a6:c2:dd:9e:38:6c:f2:81:a6:af:dc:77:2b:0a:
02:08:6a:20:9c:6d:58:bb:34:da:dc:46:93:a9:53:
01:5f:0a:48:c2:13:28:1d:bb:57:b6:b1:b1:66:94:
61:d1:34:74:b0:67:b2:f1:61:fc:00:69:54:91:42:
97:3f:01:e9:18:9b:c6:4a:f8:3d:7a:5c:fa:93:15:
9c:61:b9:ee:bd:70:99:45:21:5d:1c:9b:b6:14:71:
5a:04:d3:73:ff:6a:e1:e9:1c:5f:bd:75:28:eb:f8:
0c:c6:a5:e7:db:cb:20:db:bc:38:73:43:3d:70:27:
49:cb:38:a5:ce:dc:44:3a:10:a6:f2:29:15:c1:19:
1d:e5:82:27:89:71:fd:54:1f:ba:d0:45:e0:44:e7:
48:32:88:e5:64:73:2f:0d:54:f0:d5:b2:ab:bc:89:
f1:f6:d2:d3:ea:97:af:a9:2b:0e:f5:6f:cc:31:5d:
12:04:62:60:54:ae:81:47:cf:72:ef:9a:fa:e4:62:
e5:17:1f:98:cd:f4:2d:36:d7:80:16:dd:1a:a2:de:
00:06:1a:05:fe:29:20:c9:5f:74:bf:49:87:e2:3e:
44:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:87:BA:F0:26:AB:AF:E3:58:B1:59:E1:BD:46:26:08:70:FF:6C:71
X509v3 Authority Key Identifier:
keyid:C1:BB:08:2D:86:F5:07:BF:FA:DF:91:92:AA:67:6A:B7:DA:27:0D:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wbsILYb1B7_635GSqmdqt9onDUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/vIe68Carr-NYsVnhvUYmCHD_bHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/ae40f1-4afd-439d-86c2-e87c9f4ba97d/1/wbsILYb1B7_635GSqmdqt9onDUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.80.0/21
159.253.88.0/21
185.193.120.0/22
IPv6:
2a03:1100::/32
Signature Algorithm: sha256WithRSAEncryption
a4:51:53:4e:2e:73:5d:d4:cd:65:91:94:61:4f:fb:58:33:c2:
43:f2:91:ca:42:38:68:c0:7d:b0:20:e8:b9:0e:62:e1:08:6c:
5b:1a:8b:73:0a:3e:5e:f5:a4:13:99:ee:8b:d4:af:3f:19:b3:
d6:df:20:9a:e9:49:45:49:cd:9f:b1:0a:46:2d:7c:e3:66:b5:
2a:a9:26:70:05:f4:b7:25:2a:cc:c9:d1:62:fd:d5:0d:aa:2f:
2d:18:a5:37:45:de:d4:85:2a:f6:e5:6d:72:b3:1a:fc:db:0b:
07:95:b5:ad:e9:13:40:cc:8a:9a:72:bd:b8:94:77:86:52:e0:
8a:d4:49:fd:3f:38:4d:ce:b5:ee:66:7b:6d:39:e7:fe:ea:e2:
0a:fd:92:1a:3a:38:29:d4:ad:3a:3e:0d:30:8d:52:21:7b:b6:
05:e6:a4:5f:8c:2b:15:4c:03:81:ee:24:e8:40:a8:20:47:eb:
30:6a:19:85:46:09:38:ff:5b:f1:fb:1f:c0:02:b0:0b:51:fc:
2a:48:08:b6:8f:4e:ad:fd:21:4d:34:2d:2f:d1:78:2a:7f:91:
ef:fc:78:53:83:9f:48:a9:99:ae:11:61:07:ac:b6:98:5f:64:
72:d9:16:70:7f:b2:7f:57:b2:8b:ab:57:78:d5:97:58:6b:91:
4b:96:be:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:00:53 2024 by rpki-client on console-fra.rpki-client.org