Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/fyh38QnTXinc81ltIrppdzbNquo.roa
File: fyh38QnTXinc81ltIrppdzbNquo.roa (raw, json)
Hash identifier: hBABV/WdaYmpN+5iEwUTT1Iq/IMF1OuXD7T9iESjWBc=
Subject key identifier: 7F:28:77:F1:09:D3:5E:29:DC:F3:59:6D:22:BA:69:77:36:CD:AA:EA
Certificate issuer: /CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Certificate serial: 018CC94D7EF208E99237196143569B6FD3FF
Authority key identifier: B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/fyh38QnTXinc81ltIrppdzbNquo.roa
Signing time: Tue 02 Jan 2024 08:32:28 +0000
ROA not before: Tue 02 Jan 2024 08:32:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61310
IP address blocks: 5.63.179.0/24 maxlen: 24
5.63.178.0/24 maxlen: 24
5.63.177.0/24 maxlen: 24
5.63.176.0/23 maxlen: 23
5.63.176.0/24 maxlen: 24
5.63.176.0/21 maxlen: 21
5.63.176.0/22 maxlen: 22
5.63.183.0/24 maxlen: 24
5.63.182.0/23 maxlen: 23
5.63.182.0/24 maxlen: 24
5.63.181.0/24 maxlen: 24
5.63.180.0/22 maxlen: 22
5.63.180.0/23 maxlen: 23
5.63.180.0/24 maxlen: 24
2a04:5d80::/30 maxlen: 30
2a04:5d84::/30 maxlen: 30
2a04:5d80::/31 maxlen: 31
2a04:5d84::/31 maxlen: 31
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:7e:f2:08:e9:92:37:19:61:43:56:9b:6f:d3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Validity
Not Before: Jan 2 08:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f2877f109d35e29dcf3596d22ba697736cdaaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d8:c3:e1:94:b2:8e:0d:a9:b4:bb:e1:1b:79:
38:2e:ef:a3:3d:e9:3e:a8:3b:35:c3:94:3c:0f:1c:
ea:0b:a1:c8:5a:4f:54:dc:9e:11:86:38:71:df:e7:
b5:b2:ea:2e:17:cb:f8:fe:fa:06:75:e6:1c:06:26:
20:56:c5:2d:99:fc:5c:14:93:d0:72:8c:67:74:e9:
64:fc:d1:d7:79:2f:18:da:ee:07:40:b7:b3:4c:07:
31:ab:0d:b6:e0:56:89:14:67:04:da:fb:b7:54:59:
70:00:c7:10:d1:2b:ef:e3:e7:9d:5f:e7:1b:c2:cf:
a1:a1:b7:5a:f5:7b:7f:0f:3a:be:8a:bd:d8:85:58:
cc:3c:26:8f:b3:b5:fb:33:e0:6e:f5:2d:ff:7f:b2:
70:c5:b4:9e:a7:77:25:23:61:af:1f:0d:c7:e7:81:
e4:31:27:6e:61:c4:9f:3e:4d:1a:16:92:cf:24:f4:
1c:3f:d1:82:f6:f7:61:ba:a6:71:37:79:2a:da:29:
13:c0:19:68:50:f8:da:9d:87:2a:93:74:6d:04:3f:
b0:db:3c:10:b8:a9:1d:60:49:79:2a:a2:9c:b6:d3:
74:ff:6e:57:3d:1f:bc:0a:83:5f:8b:c9:59:17:d7:
76:09:d4:b7:f8:d2:ad:ff:7c:ce:80:82:7e:26:bb:
4c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:28:77:F1:09:D3:5E:29:DC:F3:59:6D:22:BA:69:77:36:CD:AA:EA
X509v3 Authority Key Identifier:
keyid:B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/fyh38QnTXinc81ltIrppdzbNquo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.176.0/21
IPv6:
2a04:5d80::/29
Signature Algorithm: sha256WithRSAEncryption
03:b4:64:a6:d6:4c:14:a1:1c:81:46:99:07:93:07:be:4c:78:
e4:60:48:27:f9:e5:0a:bf:63:08:d0:13:0a:be:6f:ed:f0:d7:
0a:ba:eb:de:5a:c7:16:7a:7b:c9:20:95:2d:8c:8e:0d:2d:00:
3d:e8:30:aa:1f:6b:9c:1e:7f:5d:0c:07:5e:82:a5:c3:02:cd:
6d:01:2d:68:a8:1a:4e:2b:9c:fd:a5:eb:ec:d9:9c:95:a8:2e:
cf:35:cb:10:ef:f3:13:58:8b:20:83:55:06:b0:9c:b1:e8:a5:
f7:38:eb:2e:99:30:f3:b8:ea:d3:d3:17:b7:7c:d3:09:ae:fe:
6f:4a:b1:e8:b9:2d:10:07:df:ce:e9:92:fe:2d:bb:ea:6b:3e:
f8:45:b3:df:67:dc:82:71:0e:30:57:8a:22:1e:a1:e6:bc:6b:
2c:0f:24:2c:f2:ed:1d:0c:23:61:3e:36:48:65:0f:8f:16:20:
bf:7c:a6:92:63:0a:7c:6a:bb:86:a7:df:89:23:4d:72:bf:7e:
08:30:02:77:d7:54:b2:d0:97:69:e0:c9:64:a3:78:a4:5d:df:
a2:75:ec:f3:20:51:56:7a:97:b5:ae:07:6a:2e:26:63:a2:a1:
57:7b:75:ed:57:9c:94:1a:8a:ec:0a:a9:f5:9b:ae:f1:78:77:
8e:f2:e2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:47:05 2024 by rpki-client on console-fra.rpki-client.org