Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/F4x6uup2BX-dLA8t3Sug1RW73Js.roa
File: F4x6uup2BX-dLA8t3Sug1RW73Js.roa (raw, json)
Hash identifier: H3j0SX7gp2IFei+yqUpzZXPvxBvSU04fU0gMGEtPWqI=
Subject key identifier: 17:8C:7A:BA:EA:76:05:7F:9D:2C:0F:2D:DD:2B:A0:D5:15:BB:DC:9B
Certificate issuer: /CN=762239893807eb09846e829727d71a92e963a7c8
Certificate serial: 018CC6B7A9EF83425A1E8AA87AF3D8038FB2
Authority key identifier: 76:22:39:89:38:07:EB:09:84:6E:82:97:27:D7:1A:92:E9:63:A7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI5iTgH6wmEboKXJ9cakuljp8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/F4x6uup2BX-dLA8t3Sug1RW73Js.roa
Signing time: Mon 01 Jan 2024 20:29:34 +0000
ROA not before: Mon 01 Jan 2024 20:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200030
IP address blocks: 92.63.112.0/22 maxlen: 22
92.63.116.0/22 maxlen: 22
92.63.120.0/22 maxlen: 22
92.63.125.0/24 maxlen: 24
92.63.124.0/24 maxlen: 24
92.63.127.0/24 maxlen: 24
185.49.156.0/22 maxlen: 22
92.63.126.0/24 maxlen: 24
77.241.164.0/22 maxlen: 22
77.241.172.0/22 maxlen: 22
77.241.168.0/22 maxlen: 22
2a01:a360::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/diI5iTgH6wmEboKXJ9cakuljp8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/diI5iTgH6wmEboKXJ9cakuljp8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI5iTgH6wmEboKXJ9cakuljp8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:a9:ef:83:42:5a:1e:8a:a8:7a:f3:d8:03:8f:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762239893807eb09846e829727d71a92e963a7c8
Validity
Not Before: Jan 1 20:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=178c7abaea76057f9d2c0f2ddd2ba0d515bbdc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:80:e4:30:dd:bb:5c:1a:70:99:9c:a8:26:66:
f4:ad:61:ad:9c:9b:42:16:56:aa:b7:08:f7:cf:23:
7a:1e:38:63:68:99:f2:fe:72:12:d2:27:08:23:d3:
cd:b6:e2:8e:45:fe:50:08:ef:7a:2b:7d:9f:79:32:
d8:cb:ef:09:d0:8e:fc:41:67:34:46:dc:57:2a:e6:
7d:1d:a4:d8:0e:16:8f:c4:14:ee:79:92:12:7f:a2:
56:68:2b:1a:12:f2:4f:e5:30:50:be:0a:b7:94:a6:
6a:02:ab:3b:40:20:af:5d:e0:b9:12:58:6e:ac:63:
6e:98:6b:2a:e0:b7:18:54:93:27:d9:f3:d3:1f:c0:
fc:45:a5:c2:ed:97:2a:47:6b:9f:8d:aa:72:78:4c:
c4:f4:ea:a5:8d:56:85:fe:ac:e2:f2:47:e3:69:d6:
51:95:63:0d:ab:8d:73:80:13:88:e1:13:d7:27:cc:
3c:e9:79:34:e9:e6:a1:c4:1d:0f:3d:15:ba:98:ea:
37:4a:88:24:a4:38:7d:1d:24:70:ef:f4:e8:e8:d2:
dc:be:6b:38:03:a9:86:bf:b0:3b:a6:e8:3c:6b:a8:
23:69:b3:6a:0e:af:e7:e6:07:8c:0e:6c:86:0b:24:
46:87:89:dd:7d:c4:0c:8c:84:96:a9:65:00:38:0a:
2a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8C:7A:BA:EA:76:05:7F:9D:2C:0F:2D:DD:2B:A0:D5:15:BB:DC:9B
X509v3 Authority Key Identifier:
keyid:76:22:39:89:38:07:EB:09:84:6E:82:97:27:D7:1A:92:E9:63:A7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI5iTgH6wmEboKXJ9cakuljp8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/F4x6uup2BX-dLA8t3Sug1RW73Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/diI5iTgH6wmEboKXJ9cakuljp8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.164.0-77.241.175.255
92.63.112.0/20
185.49.156.0/22
IPv6:
2a01:a360::/32
Signature Algorithm: sha256WithRSAEncryption
31:e6:c5:24:6b:6f:63:a7:ec:de:92:59:05:be:46:c3:ef:f9:
82:47:70:6a:77:c8:a1:14:b6:9e:73:45:40:c8:45:4a:34:72:
4d:ca:ce:99:06:eb:ba:3e:83:e8:ff:27:a3:3e:d6:17:b1:ed:
34:d7:cf:8c:fb:bb:e4:d4:95:48:da:03:5e:59:10:48:49:cf:
02:1d:86:d6:83:06:c2:a7:73:48:4b:d4:a3:84:7a:9c:9f:b9:
6f:da:68:36:11:2a:d0:26:d3:a7:71:16:af:60:64:ce:ca:e5:
bc:f5:15:a2:ac:40:e6:88:75:82:2f:5a:5c:e1:bf:ff:e5:b3:
2a:83:72:ab:7a:a9:df:7e:c0:38:6a:37:5a:80:05:27:8d:f8:
8a:3c:8d:e1:80:6a:8a:a4:7b:f9:b8:d5:19:77:00:cc:47:e0:
97:1a:b5:11:45:fe:81:0b:e3:05:e5:e4:a0:6f:a2:89:08:af:
9e:ed:e4:2f:94:6f:22:a3:76:10:48:19:cb:95:60:71:5e:d1:
5f:24:47:5d:4b:c2:c9:86:48:bd:42:48:59:32:05:3a:29:b4:
88:ed:f5:bf:b9:c7:cc:40:8b:fe:c7:6e:5c:0b:81:56:ac:4d:
be:76:17:71:6c:5b:93:36:57:87:07:98:a4:54:5f:3c:bb:48:
2a:7c:84:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:52:20 2024 by rpki-client on console-ams.rpki-client.org