Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/db4kBiAipJIUtwCfn-5fb_X4nPc.roa
File: db4kBiAipJIUtwCfn-5fb_X4nPc.roa (raw, json)
Hash identifier: 6g7n76jOlzbcdcsvuZQN/WI+ijGLbVsct/NdqyMTnZk=
Subject key identifier: 75:BE:24:06:20:22:A4:92:14:B7:00:9F:9F:EE:5F:6F:F5:F8:9C:F7
Certificate issuer: /CN=d6108a485dfaf06a931f543c085a009c6aea2d9c
Certificate serial: 018CCA2B9DC73C0D5CDFA7039E982744F9B4
Authority key identifier: D6:10:8A:48:5D:FA:F0:6A:93:1F:54:3C:08:5A:00:9C:6A:EA:2D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hCKSF368GqTH1Q8CFoAnGrqLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/db4kBiAipJIUtwCfn-5fb_X4nPc.roa
Signing time: Tue 02 Jan 2024 12:35:05 +0000
ROA not before: Tue 02 Jan 2024 12:35:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400513
IP address blocks: 80.77.92.0/22 maxlen: 22
80.77.93.0/24 maxlen: 24
88.214.192.0/24 maxlen: 24
88.214.197.0/24 maxlen: 24
88.214.196.0/24 maxlen: 24
88.214.200.0/24 maxlen: 24
88.214.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/1hCKSF368GqTH1Q8CFoAnGrqLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/1hCKSF368GqTH1Q8CFoAnGrqLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1hCKSF368GqTH1Q8CFoAnGrqLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:9d:c7:3c:0d:5c:df:a7:03:9e:98:27:44:f9:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6108a485dfaf06a931f543c085a009c6aea2d9c
Validity
Not Before: Jan 2 12:35:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75be24062022a49214b7009f9fee5f6ff5f89cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:d9:15:8b:c0:2e:6b:42:2a:a1:93:eb:3c:
b2:43:2e:57:fa:19:0c:60:bd:d2:25:80:70:48:4b:
0f:57:58:fc:63:2d:96:56:7a:82:c7:a7:5d:bb:97:
f3:14:43:91:71:9b:be:3f:37:13:b9:16:b0:28:44:
ce:e4:4e:31:a3:bc:08:4f:cc:f6:24:f5:ce:7e:d9:
10:88:ba:a2:40:23:9f:65:c2:45:b5:bc:24:5d:83:
a4:ed:5c:61:99:f2:05:9c:c4:1c:55:2c:6e:cb:08:
2a:7e:f6:05:64:a5:65:6a:3a:79:a9:9e:2b:86:df:
9c:0a:79:36:9e:2a:e6:a9:96:64:fd:64:99:6c:58:
50:55:e8:8a:1a:60:a8:9e:fe:07:0e:9e:a7:84:e6:
5f:0f:4e:09:37:7a:20:d0:c8:ac:2e:c1:25:df:36:
4e:cb:13:39:be:9f:bc:a9:dd:e7:9a:62:17:d7:3d:
39:c1:8f:b6:aa:66:cd:a9:f0:51:ee:ac:26:13:75:
35:e6:5e:d0:72:bc:18:52:23:71:47:b2:a3:03:05:
f0:94:13:94:0a:37:34:d6:78:de:87:6f:d4:5c:2b:
a3:b5:18:8b:03:b0:82:3a:4c:2e:a2:7f:41:28:3d:
39:0c:29:ff:3a:35:95:fb:03:f4:2d:33:32:23:2d:
d6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BE:24:06:20:22:A4:92:14:B7:00:9F:9F:EE:5F:6F:F5:F8:9C:F7
X509v3 Authority Key Identifier:
keyid:D6:10:8A:48:5D:FA:F0:6A:93:1F:54:3C:08:5A:00:9C:6A:EA:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hCKSF368GqTH1Q8CFoAnGrqLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/db4kBiAipJIUtwCfn-5fb_X4nPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/1hCKSF368GqTH1Q8CFoAnGrqLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.92.0/22
88.214.192.0/24
88.214.196.0/23
88.214.200.0/24
88.214.203.0/24
Signature Algorithm: sha256WithRSAEncryption
16:39:43:e1:39:d5:5d:77:7e:9d:81:0f:41:d1:00:bf:98:29:
6d:90:18:a0:06:aa:39:d6:59:dc:ff:05:6c:d6:5b:75:4e:5f:
c4:74:9f:a2:4a:d1:c9:65:ca:5c:ff:c8:18:37:e5:93:64:07:
56:1e:cf:0d:92:4f:7c:56:a9:51:5f:d2:18:bb:ab:d9:ce:e1:
f2:e6:5d:9e:ef:e3:42:14:82:21:6c:79:23:5f:4c:79:89:1b:
73:e1:f8:4f:b9:6a:93:2d:66:05:50:45:63:3b:e5:af:fd:43:
de:b8:11:9c:9c:94:6b:a0:e6:aa:0c:23:94:39:66:19:1f:1a:
66:ab:b6:39:6d:a8:c2:36:ac:96:44:4b:35:0a:8a:e9:0d:c2:
c7:85:30:22:2f:bb:e3:7f:af:2d:bc:89:42:35:4f:63:90:b6:
a9:a2:67:61:fb:97:fc:79:d5:5e:19:d7:99:09:d4:f8:24:1d:
df:ab:2d:e8:9f:2a:e3:79:fa:c1:23:95:b0:27:83:f1:17:72:
26:02:94:d0:df:15:58:aa:ab:1b:64:91:cc:f6:63:4d:d6:7b:
55:09:80:0c:21:0e:1c:69:9a:3d:d1:96:24:12:48:06:52:bd:
1b:fe:f0:3d:90:0e:d8:72:02:75:2d:04:11:a3:3c:12:9e:f4:
7c:9e:d1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 22:06:11 2024 by rpki-client on console-fra.rpki-client.org