Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/5qqADF7xXAE0vGXAS2yMAC0m-jo.roa
File: 5qqADF7xXAE0vGXAS2yMAC0m-jo.roa (raw, json)
Hash identifier: afC0o7pauI1PgnxWpkbqoTCoF6fTTjzatCF4va5W4GA=
Subject key identifier: E6:AA:80:0C:5E:F1:5C:01:34:BC:65:C0:4B:6C:8C:00:2D:26:FA:3A
Certificate issuer: /CN=952156c8847f24d09da60d5f5b10542b2ecf9016
Certificate serial: 018CC80304DDB50116A7CD5B6CD3887AB000
Authority key identifier: 95:21:56:C8:84:7F:24:D0:9D:A6:0D:5F:5B:10:54:2B:2E:CF:90:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSFWyIR_JNCdpg1fWxBUKy7PkBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/5qqADF7xXAE0vGXAS2yMAC0m-jo.roa
Signing time: Tue 02 Jan 2024 02:31:30 +0000
ROA not before: Tue 02 Jan 2024 02:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12387
IP address blocks: 77.237.192.0/19 maxlen: 19
77.237.206.0/23 maxlen: 23
77.237.204.0/23 maxlen: 23
77.237.208.0/23 maxlen: 23
2a00:c10::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/lSFWyIR_JNCdpg1fWxBUKy7PkBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/lSFWyIR_JNCdpg1fWxBUKy7PkBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lSFWyIR_JNCdpg1fWxBUKy7PkBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:04:dd:b5:01:16:a7:cd:5b:6c:d3:88:7a:b0:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=952156c8847f24d09da60d5f5b10542b2ecf9016
Validity
Not Before: Jan 2 02:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6aa800c5ef15c0134bc65c04b6c8c002d26fa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5b:ef:8d:b8:a4:91:0c:d7:a4:e4:43:a2:13:
b4:2e:b0:29:f2:2a:2f:b1:71:e8:b7:ab:02:46:87:
3d:f9:3b:1e:6e:27:1a:c2:fb:4c:d1:e6:79:fe:b5:
9e:79:d9:67:b0:9c:d3:5e:5c:30:b0:93:7c:42:2b:
5b:ee:e0:58:65:e8:ea:29:86:62:03:1e:05:45:9d:
3d:0d:46:32:5b:12:98:47:4c:a2:c8:3e:8d:a3:58:
fc:c2:60:b8:34:e9:9a:eb:ba:fd:b3:87:e6:8a:3e:
d2:d8:13:d0:79:c1:68:2c:eb:6e:1f:4d:76:6b:e5:
52:86:d4:92:09:83:b1:e0:d6:b9:52:0a:5f:28:5f:
7f:53:d7:a4:dc:bc:ee:bf:40:d3:0a:d6:29:da:f2:
a8:e2:65:6f:1f:ac:2e:e1:1b:5b:2c:ff:be:c5:cf:
e1:4e:3a:7b:1e:c9:b2:3d:6f:77:e9:5b:82:26:36:
dc:88:98:dd:ac:fc:ac:6f:00:e6:4b:33:da:fe:c6:
a1:e1:df:41:41:ac:2c:e6:84:99:b1:c2:89:b4:d8:
b1:82:3c:9d:7a:15:4e:01:e5:a6:ab:81:d2:d2:d3:
15:95:df:a9:80:59:24:f0:4e:a7:5c:c0:8f:60:ff:
01:06:34:82:80:5f:c7:47:69:a8:3b:b7:7d:0c:fe:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AA:80:0C:5E:F1:5C:01:34:BC:65:C0:4B:6C:8C:00:2D:26:FA:3A
X509v3 Authority Key Identifier:
keyid:95:21:56:C8:84:7F:24:D0:9D:A6:0D:5F:5B:10:54:2B:2E:CF:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSFWyIR_JNCdpg1fWxBUKy7PkBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/5qqADF7xXAE0vGXAS2yMAC0m-jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/lSFWyIR_JNCdpg1fWxBUKy7PkBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.237.192.0/19
IPv6:
2a00:c10::/32
Signature Algorithm: sha256WithRSAEncryption
71:e2:9b:72:42:e0:8b:25:0f:a9:0f:7e:19:ad:59:b9:a2:7d:
1f:eb:30:a2:2f:f2:a6:65:1e:aa:0a:a0:8b:63:5e:24:67:8c:
70:f1:9f:6f:52:7d:52:40:f1:30:3d:3b:5c:00:1a:8a:e7:6b:
01:43:7b:8c:c1:5e:6d:e8:49:b3:4c:37:e7:62:09:80:2b:e6:
2e:be:83:8a:0a:0f:b8:22:18:c7:27:fb:0e:ec:e0:d4:3a:c4:
90:e9:d4:28:3e:bf:7f:b5:83:4e:d0:22:bb:db:5a:a9:4e:fa:
6a:5f:63:78:3a:38:a6:64:24:1b:f3:35:7a:40:33:6a:b9:52:
44:1a:30:67:4e:07:00:29:93:6d:55:b7:51:e5:d2:f3:da:30:
1a:a2:d9:34:dd:7b:60:8d:48:e8:16:37:de:dc:2a:50:37:08:
15:f9:40:d7:72:5d:f3:00:0a:73:d5:0e:ce:e9:b1:c2:26:c1:
38:d1:1f:1e:b0:7c:41:35:31:f3:dc:00:d2:a7:5a:b7:94:f9:
49:9a:8e:14:8a:ce:1f:bc:52:4c:c3:a8:33:57:52:f2:b6:c8:
1a:a6:55:47:24:d6:a0:5e:d0:3e:aa:01:18:21:b5:28:db:e7:
43:f7:c4:96:c1:48:c7:59:fa:37:f1:4d:9a:3d:58:f8:88:f5:
ef:84:a9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:49:03 2024 by rpki-client on console-ams.rpki-client.org