Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/7c9aa3nLERcawQ6xm7xVlifSHVM.roa
File: 7c9aa3nLERcawQ6xm7xVlifSHVM.roa (raw, json)
Hash identifier: jl2UHmI+VncNpfJENfbzZdOXuv+wm4fYatwN/5b326E=
Subject key identifier: ED:CF:5A:6B:79:CB:11:17:1A:C1:0E:B1:9B:BC:55:96:27:D2:1D:53
Certificate issuer: /CN=b9e2dc2340c5309b63eba23cfbe7eed11b74af47
Certificate serial: 018E8A549E2F902B513E4BD6F7D27E6722C5
Authority key identifier: B9:E2:DC:23:40:C5:30:9B:63:EB:A2:3C:FB:E7:EE:D1:1B:74:AF:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueLcI0DFMJtj66I8--fu0Rt0r0c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/7c9aa3nLERcawQ6xm7xVlifSHVM.roa
Signing time: Fri 29 Mar 2024 13:09:44 +0000
ROA not before: Fri 29 Mar 2024 13:09:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21454
IP address blocks: 80.252.224.0/20 maxlen: 24
185.173.236.0/22 maxlen: 24
185.173.237.0/24 maxlen: 24
188.214.198.0/24 maxlen: 24
195.74.75.0/24 maxlen: 24
2a10:5340::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/ueLcI0DFMJtj66I8--fu0Rt0r0c.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/ueLcI0DFMJtj66I8--fu0Rt0r0c.mft
rsync://rpki.ripe.net/repository/DEFAULT/ueLcI0DFMJtj66I8--fu0Rt0r0c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8a:54:9e:2f:90:2b:51:3e:4b:d6:f7:d2:7e:67:22:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e2dc2340c5309b63eba23cfbe7eed11b74af47
Validity
Not Before: Mar 29 13:09:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edcf5a6b79cb11171ac10eb19bbc559627d21d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0f:51:9e:0a:04:16:70:1c:b5:80:f3:31:be:
cb:4e:7c:8c:50:04:b5:de:f7:fb:67:70:7a:7e:8c:
ec:8e:7e:07:97:dd:d4:3d:37:6f:e5:83:0b:da:df:
a7:d2:dd:80:51:10:c9:11:76:f1:1c:9d:e2:61:4d:
b1:78:a4:42:55:fc:2b:f8:3e:a3:79:5a:c3:36:f0:
ce:ad:54:e1:8f:a1:14:6f:10:47:0f:1b:a7:4d:c7:
d9:3f:8a:37:d8:53:02:5b:ee:b1:55:27:13:67:b0:
ed:1c:63:9c:a3:7a:9b:8e:06:d7:ae:4d:2d:32:76:
f0:15:43:8f:43:82:d7:43:d7:01:0a:60:fe:29:08:
a7:1a:c6:4b:da:ae:3a:31:26:2a:f4:e6:cd:bf:64:
3f:f7:d6:eb:69:7c:72:1d:c0:52:30:87:64:1b:34:
3b:7e:30:13:0c:06:07:ee:d9:75:ca:2e:0f:6e:5d:
70:75:e6:3a:53:1d:2d:d0:5f:81:65:36:66:70:6a:
75:ad:a8:74:ac:9c:31:af:40:10:39:ef:14:b7:31:
c6:72:56:6c:28:75:32:63:83:0d:bf:c6:58:dc:82:
6d:a9:6f:ca:34:2f:94:36:16:f4:cf:5c:2d:ce:aa:
0e:2f:e9:fc:b9:85:3c:9e:b1:d8:32:e1:8f:e4:81:
43:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CF:5A:6B:79:CB:11:17:1A:C1:0E:B1:9B:BC:55:96:27:D2:1D:53
X509v3 Authority Key Identifier:
keyid:B9:E2:DC:23:40:C5:30:9B:63:EB:A2:3C:FB:E7:EE:D1:1B:74:AF:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueLcI0DFMJtj66I8--fu0Rt0r0c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/7c9aa3nLERcawQ6xm7xVlifSHVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/ueLcI0DFMJtj66I8--fu0Rt0r0c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.252.224.0/20
185.173.236.0/22
188.214.198.0/24
195.74.75.0/24
IPv6:
2a10:5340::/29
Signature Algorithm: sha256WithRSAEncryption
51:3d:3f:2c:e9:ea:16:58:9e:be:3e:ca:61:e5:8b:36:c7:d4:
96:5b:ec:c2:39:d3:d2:f6:c2:38:b0:11:73:17:43:11:0b:43:
b9:31:98:58:dc:c2:d0:ec:65:9b:25:8a:93:a3:42:e8:1a:45:
e9:67:90:21:7a:a9:b1:ff:a6:31:0e:d0:af:fe:6c:83:e4:14:
88:22:13:8c:97:c5:91:b8:06:ed:02:53:7a:83:21:43:8b:b9:
1e:aa:ef:a5:c2:42:94:6a:15:48:52:3d:63:f1:10:85:14:cd:
6b:3d:55:57:7a:05:e9:7f:8a:5f:2a:f2:19:bb:65:58:cc:15:
25:02:44:9d:22:ee:e6:4e:c8:be:cc:f1:89:99:b7:3e:3a:0e:
c7:af:2a:a2:8c:db:be:1e:43:53:6b:7b:01:ed:04:bb:26:df:
f9:7d:52:04:4f:df:90:89:84:05:de:69:e4:7a:4d:13:f4:74:
bf:44:9b:d8:ac:57:f0:07:de:08:7d:8e:25:e4:c8:c9:b0:26:
55:9b:09:06:27:6e:47:bd:4b:50:3c:cf:c3:2e:fa:43:6d:2b:
ed:68:5c:49:cd:10:a0:10:29:ed:90:69:af:cb:59:b1:17:dd:
b3:03:c0:d8:02:8e:15:58:07:d6:53:8d:24:8f:e4:54:c7:0b:
32:9f:eb:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 03:26:56 2024 by rpki-client on console-ams.rpki-client.org