Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/_yshu-rNp7oQmwjtcsF8xk6ujhk.roa
File: _yshu-rNp7oQmwjtcsF8xk6ujhk.roa (raw, json)
Hash identifier: p4RPS8/oj3Kf8BP7UwwkIRtqWnRpn/VHAg/H1Vpq3go=
Subject key identifier: FF:2B:21:BB:EA:CD:A7:BA:10:9B:08:ED:72:C1:7C:C6:4E:AE:8E:19
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 019193527E66723A72E00A822DA026188F3E
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/_yshu-rNp7oQmwjtcsF8xk6ujhk.roa
Signing time: Tue 27 Aug 2024 10:12:22 +0000
ROA not before: Tue 27 Aug 2024 10:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51276
IP address blocks: 93.125.70.0/24 maxlen: 24
213.184.247.0/24 maxlen: 24
217.21.50.0/24 maxlen: 24
2a04:2e80:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.mft
rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:52:7e:66:72:3a:72:e0:0a:82:2d:a0:26:18:8f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Aug 27 10:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff2b21bbeacda7ba109b08ed72c17cc64eae8e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:da:03:00:46:7b:58:9a:d7:15:8b:ad:38:d9:
7e:12:00:27:23:97:81:96:7c:21:5b:17:4b:de:a1:
8c:50:81:94:ba:ba:56:3c:b1:eb:37:7e:25:5e:1c:
52:69:15:b6:70:aa:1a:a7:a1:ae:7b:1a:c2:5b:de:
63:0a:5b:a3:90:76:8c:96:01:6b:11:ff:54:52:1c:
7c:21:45:c6:76:07:35:24:15:6f:b4:54:08:5c:59:
f6:8f:d6:41:a0:e0:61:80:ed:35:66:e8:11:3e:fd:
1c:7d:0a:0e:30:29:49:91:3f:b0:d7:7c:c2:bc:51:
6a:1b:bc:9c:95:20:8f:d6:4b:8d:fc:d5:6f:07:a8:
cb:61:3e:8a:41:8d:30:e6:4c:96:9a:ce:ac:09:f0:
2f:ce:3a:2d:da:30:77:8e:55:ba:e6:1f:66:5c:66:
05:eb:c3:01:66:8b:a9:5e:8e:99:92:4c:76:14:f4:
ad:1a:b9:a1:ad:b8:de:b9:c2:c2:a1:65:12:39:dc:
dc:b2:e3:15:be:77:2f:92:ff:14:a6:21:ed:22:5f:
88:0c:8f:b6:8e:e3:f2:e6:87:5f:83:4b:eb:67:59:
24:aa:83:ff:d4:e9:48:20:74:08:f9:04:af:b2:87:
16:5b:a9:d7:23:44:d3:39:3d:37:4b:84:a6:b1:a1:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:2B:21:BB:EA:CD:A7:BA:10:9B:08:ED:72:C1:7C:C6:4E:AE:8E:19
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/_yshu-rNp7oQmwjtcsF8xk6ujhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.125.70.0/24
213.184.247.0/24
217.21.50.0/24
IPv6:
2a04:2e80:8::/48
Signature Algorithm: sha256WithRSAEncryption
05:8d:39:04:5b:dc:ed:4c:d6:da:27:dd:d7:51:eb:c8:6c:2a:
d3:09:af:0f:be:d6:42:e4:10:ef:bc:2c:20:dc:91:1a:89:a3:
86:bc:a6:ad:fe:9c:3a:c7:0f:36:c0:1d:cf:d8:98:1f:8b:2d:
47:82:96:73:77:d4:39:5f:32:55:b0:35:62:03:39:72:8d:23:
ff:29:ca:3f:e9:33:0d:30:41:fb:53:e0:4e:df:9d:35:c5:dc:
9f:93:d5:cb:ac:36:09:1d:c1:15:6f:bf:8d:76:f1:a4:3c:f4:
41:92:32:71:f1:78:7f:7b:f8:95:8a:ce:dc:82:27:f9:35:b2:
9d:54:82:84:3f:c5:9f:41:7b:fb:09:a6:78:a1:4e:fa:aa:f0:
a4:43:86:2f:aa:03:4e:0a:b1:f7:ff:c7:c8:7d:c7:02:14:b3:
93:46:20:39:a5:19:b3:84:40:78:46:ae:ab:8c:63:b8:db:80:
c2:be:83:cc:a5:d1:13:a6:9e:07:37:ef:59:4c:a6:0a:19:0b:
9a:b0:3a:b2:b5:87:fc:ad:af:cf:df:60:11:32:fb:cb:13:df:
cc:b9:45:7e:da:61:56:22:f6:f0:12:6d:6f:e3:f7:8c:37:d2:
e0:b6:2d:d5:5c:b7:a2:b7:ac:26:42:59:37:b5:13:8c:e4:79:
20:0b:30:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 05:17:07 2024 by rpki-client on console-fra.rpki-client.org