Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/6DUQ869KtkAddqX5BJXWzU-Oo10.roa
File: 6DUQ869KtkAddqX5BJXWzU-Oo10.roa (raw, json)
Hash identifier: WfIQW1ZM7y3p2JXQIQ//Q6GHkYgKlFlbBYjXoY3Ffm4=
Subject key identifier: E8:35:10:F3:AF:4A:B6:40:1D:76:A5:F9:04:95:D6:CD:4F:8E:A3:5D
Certificate issuer: /CN=ded353e2f5d318c348772a8ff105aa70719e4135
Certificate serial: 018D403686BA71DA85F15D65225A52DDBB0A
Authority key identifier: DE:D3:53:E2:F5:D3:18:C3:48:77:2A:8F:F1:05:AA:70:71:9E:41:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tNT4vXTGMNIdyqP8QWqcHGeQTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/6DUQ869KtkAddqX5BJXWzU-Oo10.roa
Signing time: Thu 25 Jan 2024 10:42:11 +0000
ROA not before: Thu 25 Jan 2024 10:42:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25627
IP address blocks: 79.170.64.0/22 maxlen: 22
79.170.64.0/23 maxlen: 23
79.170.66.0/23 maxlen: 23
79.170.68.0/22 maxlen: 22
79.170.68.0/23 maxlen: 23
79.170.70.0/23 maxlen: 23
79.170.70.0/24 maxlen: 24
79.170.71.0/24 maxlen: 24
87.237.80.0/23 maxlen: 23
87.237.80.0/24 maxlen: 24
87.237.81.0/24 maxlen: 24
87.237.82.0/23 maxlen: 23
87.237.82.0/24 maxlen: 24
87.237.83.0/24 maxlen: 24
87.237.84.0/22 maxlen: 22
87.237.84.0/24 maxlen: 24
87.237.86.0/24 maxlen: 24
87.237.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/3tNT4vXTGMNIdyqP8QWqcHGeQTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/3tNT4vXTGMNIdyqP8QWqcHGeQTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3tNT4vXTGMNIdyqP8QWqcHGeQTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 10:03:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:40:36:86:ba:71:da:85:f1:5d:65:22:5a:52:dd:bb:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded353e2f5d318c348772a8ff105aa70719e4135
Validity
Not Before: Jan 25 10:42:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e83510f3af4ab6401d76a5f90495d6cd4f8ea35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3e:f7:7d:64:55:7a:c4:ea:38:38:ca:75:af:
f7:01:dc:cc:46:83:8e:dc:bf:05:c8:60:17:02:97:
5d:ad:e5:87:52:8e:9d:3a:c8:d5:0e:ac:f0:be:16:
9d:10:1c:3d:46:a8:c1:cc:1d:04:1e:ad:b5:26:c4:
16:18:c8:e2:c2:85:35:77:69:e4:d3:36:ed:73:c6:
43:da:f7:23:2c:4c:42:d0:98:ce:2c:c7:48:c6:91:
7d:f4:46:c7:48:45:ad:03:b8:d5:a2:b3:52:98:64:
ff:a6:16:86:8a:f5:29:f5:d7:d0:7d:36:b5:46:01:
ca:92:40:ef:23:3c:a7:6f:2c:f8:4b:78:82:07:d8:
35:98:ec:09:1e:97:5e:91:a6:68:6f:f8:bf:a2:f8:
a1:4c:1c:b5:11:ce:b4:4e:fb:82:9f:a2:f0:27:dd:
55:cf:24:d8:6d:2b:69:cb:ef:dd:ec:1f:82:0e:0c:
64:bb:a0:3a:bf:44:64:99:26:3f:85:0b:0d:85:b9:
e2:f5:f5:17:fa:9e:69:25:42:e8:16:21:53:e4:41:
be:dd:14:ba:96:e6:bd:cb:4c:31:34:4d:a8:09:e2:
d3:49:86:05:7b:5e:2a:e6:8e:21:e0:cb:1e:b6:82:
25:99:3f:47:a0:a9:06:8e:ae:49:f2:8d:b1:96:d1:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:35:10:F3:AF:4A:B6:40:1D:76:A5:F9:04:95:D6:CD:4F:8E:A3:5D
X509v3 Authority Key Identifier:
keyid:DE:D3:53:E2:F5:D3:18:C3:48:77:2A:8F:F1:05:AA:70:71:9E:41:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tNT4vXTGMNIdyqP8QWqcHGeQTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/6DUQ869KtkAddqX5BJXWzU-Oo10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cbacce-efbf-4f32-8d88-4e85dabd6474/1/3tNT4vXTGMNIdyqP8QWqcHGeQTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.64.0/21
87.237.80.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:65:67:79:ad:4a:f3:73:9d:50:0a:87:72:97:ec:82:e5:50:
af:75:a6:0b:8c:e8:99:80:e3:09:4d:1b:dc:49:27:b5:1b:c9:
7d:d4:30:5c:e0:37:6a:4c:9f:49:41:80:9f:4f:c2:5d:fc:05:
6b:71:73:18:a6:13:9e:08:b0:11:aa:b5:6c:43:62:3c:da:dc:
1e:73:3e:8b:99:c3:32:8d:7e:fc:8b:c1:d3:0a:3b:1f:d1:6d:
b9:a9:ae:30:7c:71:97:70:c4:fe:ed:96:f3:a1:34:a0:c7:02:
d2:e4:69:c9:c4:3d:54:bc:a7:9c:30:a5:34:55:09:9d:e7:c1:
8d:42:c8:8a:c1:b8:20:f5:81:46:c2:78:88:24:ff:7c:51:e9:
86:48:43:a2:53:7f:e0:1a:79:89:0e:0d:ab:15:9c:e9:d7:8b:
37:55:c1:27:ff:96:bf:c2:49:05:60:e6:66:44:80:c5:cd:fc:
a5:c3:99:0a:52:5b:e3:d3:ca:ef:cd:56:39:54:98:22:1d:43:
9e:1e:c9:0a:ae:79:02:06:a6:ca:3a:ff:49:17:78:1e:10:e1:
6b:7a:87:40:83:56:6e:1f:3d:63:cb:97:c9:d6:50:79:5f:7e:
7f:0c:71:ce:79:8d:1c:02:d9:04:b6:ea:06:6f:18:ad:38:ad:
8b:de:b5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 17:22:37 2024 by rpki-client on console-fra.rpki-client.org