Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/BCD_QeggO8YLj0FeGikAz0Q1Ke8.roa
File: BCD_QeggO8YLj0FeGikAz0Q1Ke8.roa (raw, json)
Hash identifier: SqG3mJnwcthblZGAjGdzMIIK3kH/AqGxibYjohZB8kw=
Subject key identifier: 04:20:FF:41:E8:20:3B:C6:0B:8F:41:5E:1A:29:00:CF:44:35:29:EF
Certificate issuer: /CN=18d801de9fe8a6680758817823ae36ba065c610d
Certificate serial: 018CC5014F50823471E491C3303B7D0CE568
Authority key identifier: 18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/BCD_QeggO8YLj0FeGikAz0Q1Ke8.roa
Signing time: Mon 01 Jan 2024 12:30:46 +0000
ROA not before: Mon 01 Jan 2024 12:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15945
IP address blocks: 213.206.160.0/19 maxlen: 19
77.72.216.0/21 maxlen: 22
193.31.52.0/22 maxlen: 24
213.183.64.0/19 maxlen: 24
2a02:24d8:ffff::/48 maxlen: 48
2a02:24d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:4f:50:82:34:71:e4:91:c3:30:3b:7d:0c:e5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18d801de9fe8a6680758817823ae36ba065c610d
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0420ff41e8203bc60b8f415e1a2900cf443529ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:77:de:f6:92:67:d3:7a:3f:04:13:59:25:19:
fc:a0:0e:ca:69:b9:69:77:0c:9d:b1:27:97:04:01:
d4:19:81:b9:f6:b0:35:e1:da:df:99:9d:7a:bc:e9:
00:09:4a:87:ec:67:a2:dc:20:66:a7:18:e8:e3:0a:
2c:79:69:69:6e:a8:90:7a:2f:bf:63:7b:30:65:8f:
78:48:c4:de:e0:63:bc:83:1b:bf:30:1c:78:5d:88:
ff:f6:fb:67:d3:4d:f4:b4:ea:f7:a5:b3:39:55:8a:
18:43:fd:94:ab:a4:ea:ab:f0:92:c4:8c:ec:14:43:
16:f4:61:41:24:1a:f6:ce:de:c0:e8:61:ff:de:da:
97:e2:dc:e5:a5:a0:cf:b3:55:11:93:dd:b3:14:ec:
be:be:f7:28:05:dd:d6:6a:89:dc:d1:7e:41:b5:4b:
c5:57:23:3d:7d:4f:31:3b:3b:4d:74:45:2d:9a:8a:
7c:4d:b4:40:4f:83:e3:3d:cf:2d:0c:be:57:a0:af:
1e:07:6d:ba:db:7e:a6:84:68:fd:2e:b7:96:2e:69:
e5:ad:93:f7:bc:5c:96:4b:5e:a6:d3:b6:a2:1f:72:
cd:75:c6:30:7f:d6:8b:c2:74:e1:99:79:9c:19:7f:
35:ae:34:36:77:ce:96:67:37:49:15:c4:f4:cf:18:
83:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:20:FF:41:E8:20:3B:C6:0B:8F:41:5E:1A:29:00:CF:44:35:29:EF
X509v3 Authority Key Identifier:
keyid:18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/BCD_QeggO8YLj0FeGikAz0Q1Ke8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.216.0/21
193.31.52.0/22
213.183.64.0/19
213.206.160.0/19
IPv6:
2a02:24d8::/32
Signature Algorithm: sha256WithRSAEncryption
9d:c0:b8:cc:3d:2c:cb:60:3b:93:82:d0:5a:66:2a:44:a5:81:
93:60:1f:8b:55:7d:f6:cd:f1:b8:49:27:c7:9b:c9:24:3c:7b:
9e:84:1d:8d:8e:e8:87:c4:b8:89:3b:d1:39:fa:9a:67:73:53:
93:ca:ce:21:9c:8e:38:4a:a2:c3:80:bb:27:3e:70:0b:95:f8:
fc:d8:bb:76:41:26:aa:a6:46:ec:a1:88:35:8e:b3:19:31:09:
7a:27:ad:a6:4b:49:42:62:e2:a7:90:ae:6d:d3:a6:64:76:45:
f9:13:f4:3a:0e:ae:d7:51:bd:fa:93:dd:be:67:ee:ed:da:63:
96:6d:e4:af:dd:97:be:61:5e:23:f1:ee:14:c4:c7:1d:b2:48:
1b:e5:68:41:fe:df:15:aa:8b:2e:95:23:f8:8d:bb:94:af:04:
62:77:9b:1e:20:90:6b:25:e1:c9:e2:8f:7a:75:f2:8a:89:5d:
b8:ec:1f:bd:e6:3c:0b:bd:88:10:31:3c:75:db:df:0b:98:7c:
b2:77:26:cd:58:ad:d8:4a:ce:41:38:88:15:75:f4:bd:b2:4e:
d4:e9:bc:f8:e9:15:76:69:ff:f1:9a:78:76:c1:9e:7a:2f:e0:
e3:0b:db:71:f1:ad:39:54:30:5a:35:06:79:5d:fb:f5:06:f1:
5a:10:38:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:23:19 2024 by rpki-client on console-fra.rpki-client.org