Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/fUGeKQXOKzwjyVC8UvCswLnCeVA.roa
File: fUGeKQXOKzwjyVC8UvCswLnCeVA.roa (raw, json)
Hash identifier: TmaHxUDu2e3mfh6kluBdtU4iDe4GTcquNdFJL2kDDcU=
Subject key identifier: 7D:41:9E:29:05:CE:2B:3C:23:C9:50:BC:52:F0:AC:C0:B9:C2:79:50
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 0191085F3D5067EE70138F0650154E29D57A
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/fUGeKQXOKzwjyVC8UvCswLnCeVA.roa
Signing time: Wed 31 Jul 2024 10:39:04 +0000
ROA not before: Wed 31 Jul 2024 10:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8267
IP address blocks: 149.156.0.0/16 maxlen: 16
185.92.50.0/24 maxlen: 24
193.193.64.0/21 maxlen: 21
195.150.224.0/19 maxlen: 19
2001:6d8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:5f:3d:50:67:ee:70:13:8f:06:50:15:4e:29:d5:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jul 31 10:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d419e2905ce2b3c23c950bc52f0acc0b9c27950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4b:70:85:0a:29:da:7b:fe:ab:4f:a7:12:9d:
03:9d:d6:2a:5d:0b:4f:e0:e3:49:57:c4:21:b9:51:
85:13:37:b7:64:37:58:2f:9b:df:7a:55:8f:c7:24:
eb:20:c7:ed:89:86:7a:3a:8b:b9:9b:c5:8f:61:12:
b8:8a:b9:24:56:0a:e1:88:6c:25:8b:18:1c:12:1d:
54:14:48:ae:43:33:98:c1:27:07:0b:8a:8a:9f:99:
0e:48:9a:89:f2:89:5f:31:10:96:a2:f5:ce:81:54:
66:14:10:7a:ba:6d:8a:a3:89:d3:73:f2:2f:32:45:
d9:f6:46:db:5b:5d:cd:37:41:ed:62:85:5c:e9:d5:
d1:0d:83:2d:c0:8a:66:21:c8:77:c4:ed:90:c0:51:
7a:38:8f:47:d4:7b:d4:8e:1f:05:75:c6:51:68:0e:
5b:56:11:13:17:45:5a:49:ef:ae:4b:24:6d:b5:5c:
17:45:14:da:11:98:70:c4:92:d3:d8:cb:80:6f:df:
ac:3f:f0:0c:70:70:0b:f4:f4:49:5f:2a:e7:41:b9:
f0:e3:16:74:9c:5d:af:88:72:ed:17:d2:cb:f8:3e:
b9:af:a9:43:a3:03:e7:94:f0:b7:8f:1d:83:60:df:
18:eb:ea:a2:40:4b:67:0f:f5:1d:e3:0b:8d:e6:bb:
cd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:41:9E:29:05:CE:2B:3C:23:C9:50:BC:52:F0:AC:C0:B9:C2:79:50
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/fUGeKQXOKzwjyVC8UvCswLnCeVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.156.0.0/16
185.92.50.0/24
193.193.64.0/21
195.150.224.0/19
IPv6:
2001:6d8::/32
Signature Algorithm: sha256WithRSAEncryption
61:cc:64:9c:54:f0:f5:f9:00:4a:6d:ab:b1:db:e9:46:ad:ae:
48:d7:42:45:bf:fa:95:5e:ca:08:9f:c4:a6:01:09:89:e2:87:
56:e5:c4:bc:db:9a:d1:f0:70:d3:13:83:cc:f0:ff:83:7d:f5:
1e:55:65:e3:b5:8a:ca:76:fb:d7:74:e4:40:b0:96:d3:cb:34:
8f:cf:a6:38:1c:d5:8b:40:71:84:b3:f6:29:8c:1c:19:dd:1e:
90:50:47:81:f4:6a:56:29:21:cd:c8:15:76:46:d3:68:65:5d:
84:43:98:25:95:e4:73:14:95:02:1f:91:cc:f3:62:de:53:39:
9f:63:5f:bc:c6:9b:46:08:46:3e:1a:81:59:d1:e1:37:62:07:
cd:e7:cc:de:45:d9:eb:36:e4:c8:1e:1e:74:2a:ad:37:30:80:
2a:d7:ec:7b:00:5e:90:a7:e9:73:cd:74:9f:84:14:11:44:78:
20:7c:e4:da:54:4e:57:37:e4:10:4d:e8:f4:77:79:fc:80:c9:
55:77:5d:7e:c5:16:93:44:0c:61:fa:c4:0e:65:81:30:ed:b9:
96:43:da:99:9a:68:eb:14:26:ff:e9:d2:d2:74:15:1e:4a:ae:
ab:02:f0:55:a0:0e:e1:e9:52:38:48:b6:71:ff:c2:6b:07:42:
3c:d0:a8:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:01:12 2024 by rpki-client on console-fra.rpki-client.org