Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/fBJa6jEAErgFwlyc-uEkirqtg-g.roa
File: fBJa6jEAErgFwlyc-uEkirqtg-g.roa (raw, json)
Hash identifier: BuPN0Apd8w3qJ7VAh10CzBVQleQnhTi+pIYNMhFZf6Q=
Subject key identifier: 7C:12:5A:EA:31:00:12:B8:05:C2:5C:9C:FA:E1:24:8A:BA:AD:83:E8
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 018CC26D62DAD65C67B29D0D088F171F74EA
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/fBJa6jEAErgFwlyc-uEkirqtg-g.roa
Signing time: Mon 01 Jan 2024 00:29:57 +0000
ROA not before: Mon 01 Jan 2024 00:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57670
IP address blocks: 176.105.164.0/24 maxlen: 24
176.105.166.0/24 maxlen: 24
176.105.160.0/19 maxlen: 19
176.105.162.0/24 maxlen: 24
176.105.161.0/24 maxlen: 24
176.105.171.0/24 maxlen: 24
176.105.170.0/24 maxlen: 24
176.105.172.0/24 maxlen: 24
176.105.169.0/24 maxlen: 24
176.105.168.0/24 maxlen: 24
176.105.173.0/24 maxlen: 24
176.105.178.0/24 maxlen: 24
176.105.177.0/24 maxlen: 24
176.105.179.0/24 maxlen: 24
176.105.174.0/24 maxlen: 24
176.105.176.0/24 maxlen: 24
176.105.175.0/24 maxlen: 24
176.105.185.0/24 maxlen: 24
176.105.184.0/24 maxlen: 24
176.105.186.0/24 maxlen: 24
176.105.181.0/24 maxlen: 24
176.105.183.0/24 maxlen: 24
176.105.182.0/24 maxlen: 24
176.105.180.0/24 maxlen: 24
176.105.187.0/24 maxlen: 24
176.105.191.0/24 maxlen: 24
176.105.188.0/24 maxlen: 24
176.105.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:62:da:d6:5c:67:b2:9d:0d:08:8f:17:1f:74:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: Jan 1 00:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c125aea310012b805c25c9cfae1248abaad83e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:6e:a9:2a:1c:2a:d7:c6:27:74:42:8e:5d:
a8:14:57:92:7d:50:67:6a:aa:90:5e:85:70:63:1b:
b6:1b:01:dc:e5:04:4a:46:30:21:49:6f:33:c2:ea:
19:0f:56:c4:eb:11:e4:44:05:92:eb:f4:f3:c3:35:
9d:e9:d6:4e:7b:91:53:d3:64:da:fc:37:13:96:2b:
8d:f9:b6:b0:2c:77:5e:70:a9:c3:e5:9d:23:37:cb:
7e:d0:c0:ef:93:7d:b5:18:5a:93:e3:e6:6f:d3:15:
41:39:3e:93:fe:3f:40:b2:a8:81:f0:4d:d0:24:5f:
4b:90:ba:12:74:6f:1f:1a:96:64:73:6b:b9:e5:54:
d1:24:4e:8f:ac:7e:60:79:0a:07:58:6c:8e:70:e1:
71:1f:bb:f2:66:54:65:f6:9f:ba:20:25:e3:6d:ea:
a5:4f:19:2d:39:aa:de:84:1f:44:b5:eb:cd:0f:70:
e7:22:58:71:7c:60:07:04:ea:71:79:ae:5b:09:01:
e2:20:be:7e:81:d5:10:08:7c:92:88:92:d1:09:dc:
95:a1:8b:30:79:d0:e9:05:41:59:5a:6a:b8:c2:b1:
fb:6e:de:67:03:4d:09:26:a1:86:20:b7:f7:5b:2d:
59:d9:61:fa:2d:4e:c0:a9:6c:d9:4e:86:88:c8:bd:
de:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:12:5A:EA:31:00:12:B8:05:C2:5C:9C:FA:E1:24:8A:BA:AD:83:E8
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/fBJa6jEAErgFwlyc-uEkirqtg-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.160.0/19
Signature Algorithm: sha256WithRSAEncryption
94:78:2b:81:c9:62:31:a8:56:53:a4:c1:66:88:be:98:db:86:
fd:4d:ac:6c:8c:6c:51:ee:8c:4f:1c:18:88:cf:ad:20:d1:9a:
90:92:59:c4:d8:1b:61:9e:3c:07:17:77:e2:fe:fd:7a:82:97:
e7:5e:eb:7e:e9:b0:69:61:c5:04:96:61:35:be:e8:fa:04:59:
c6:eb:a5:31:55:8c:ca:54:4d:90:37:7d:51:23:da:41:2d:a4:
88:0e:92:a8:a0:f6:b9:60:a5:ce:8f:b7:6c:e3:09:a4:5c:3e:
8f:d1:3e:59:e5:aa:e8:5b:09:38:af:8d:a3:aa:41:fa:e2:cd:
06:5b:da:67:6e:c4:35:e1:fb:61:ef:51:f7:f4:c5:70:be:17:
ae:58:10:79:a3:84:72:41:6f:52:9e:7d:29:9f:a0:23:74:2a:
d6:34:1c:97:4f:ea:5e:d7:e1:43:2b:6e:bb:db:48:fa:3e:f5:
79:f7:7c:fe:22:08:0e:92:92:d7:cf:c7:23:f4:96:35:5d:a3:
34:b0:13:a4:0a:29:ae:dd:ca:02:5d:7d:75:e4:e3:d5:81:82:
37:08:fb:34:85:a3:e1:c7:02:72:59:c8:dd:d1:14:d4:fe:c3:
eb:81:c2:ff:16:3c:d7:ca:14:03:e5:d1:b7:c3:6b:e1:62:79:
ff:e1:2b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:43:30 2024 by rpki-client on console-ams.rpki-client.org