Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/NJmEC6KsWPwTq59UOjXFA-Cn0Cg.roa
File: NJmEC6KsWPwTq59UOjXFA-Cn0Cg.roa (raw, json)
Hash identifier: SR/szHkEpxZdIXvs5kN+40Proy47BN8zrIrNTCdViBE=
Subject key identifier: 34:99:84:0B:A2:AC:58:FC:13:AB:9F:54:3A:35:C5:03:E0:A7:D0:28
Certificate issuer: /CN=ff3ed3d4d47b8e825fbfd079482f7a0c21dc91ef
Certificate serial: 018CD8C17A1DCD5041529564C286D95D5CCC
Authority key identifier: FF:3E:D3:D4:D4:7B:8E:82:5F:BF:D0:79:48:2F:7A:0C:21:DC:91:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_z7T1NR7joJfv9B5SC96DCHcke8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/NJmEC6KsWPwTq59UOjXFA-Cn0Cg.roa
Signing time: Fri 05 Jan 2024 08:33:27 +0000
ROA not before: Fri 05 Jan 2024 08:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39724
IP address blocks: 185.55.157.0/24 maxlen: 24
185.55.158.0/24 maxlen: 24
185.55.158.0/23 maxlen: 23
185.55.156.0/23 maxlen: 23
185.55.156.0/24 maxlen: 24
185.55.156.0/22 maxlen: 22
185.55.159.0/24 maxlen: 24
77.247.101.0/24 maxlen: 24
77.247.102.0/24 maxlen: 24
77.247.102.0/23 maxlen: 23
77.247.100.0/22 maxlen: 22
77.247.100.0/23 maxlen: 23
77.247.100.0/24 maxlen: 24
77.247.103.0/24 maxlen: 24
2a0d:a6c2::/32 maxlen: 32
2a0d:a6c6::/32 maxlen: 32
2a0d:a6c7::/32 maxlen: 32
2a0d:a6c1::/32 maxlen: 32
2a0d:a6c4::/32 maxlen: 32
2a0d:a6c0::/32 maxlen: 32
2a0d:a6c5::/32 maxlen: 32
2a0d:a6c3::/32 maxlen: 32
2a0d:a6c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/_z7T1NR7joJfv9B5SC96DCHcke8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/_z7T1NR7joJfv9B5SC96DCHcke8.mft
rsync://rpki.ripe.net/repository/DEFAULT/_z7T1NR7joJfv9B5SC96DCHcke8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d8:c1:7a:1d:cd:50:41:52:95:64:c2:86:d9:5d:5c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff3ed3d4d47b8e825fbfd079482f7a0c21dc91ef
Validity
Not Before: Jan 5 08:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3499840ba2ac58fc13ab9f543a35c503e0a7d028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1e:65:80:0b:17:da:c4:f7:9e:4d:64:7f:4f:
eb:63:3b:20:e4:e7:9d:56:9b:4a:a7:d6:7a:36:48:
d1:d1:27:12:16:d0:58:d1:7e:f1:8e:ee:ea:9e:3a:
6c:fc:0f:d4:65:e2:8a:52:0b:5b:6f:80:4b:b3:49:
4a:05:26:f1:05:f5:33:f2:76:5c:93:c1:c7:c9:8c:
da:e2:4b:d2:76:4f:a3:cf:8f:a4:95:3b:b9:21:2b:
0d:9b:a9:9a:ee:73:8c:a9:32:ff:0d:48:c9:ad:79:
de:35:c7:09:68:c5:0a:ca:57:6e:60:b4:00:03:32:
ec:78:a2:5d:97:e7:87:20:cd:ea:dc:d7:53:59:9e:
a4:17:89:3e:54:bc:d5:00:0a:6e:a9:16:f7:af:40:
36:13:fe:92:e5:83:22:bf:f3:b7:f3:6a:0d:ee:bb:
2d:a6:7b:ae:2c:19:aa:26:ed:c0:15:39:f4:f1:03:
a9:8f:9b:fd:f0:05:21:f5:4e:d7:66:6b:88:3c:2a:
a2:40:6d:ed:af:31:79:45:f8:10:ac:96:70:a3:11:
48:61:0e:31:97:08:10:2b:d7:d5:c9:ac:a8:fc:0c:
a2:38:0a:8d:24:f4:1c:07:0a:fa:c4:7d:24:54:07:
3e:5e:d7:5b:ea:54:41:32:03:0b:16:4d:1a:b1:a0:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:99:84:0B:A2:AC:58:FC:13:AB:9F:54:3A:35:C5:03:E0:A7:D0:28
X509v3 Authority Key Identifier:
keyid:FF:3E:D3:D4:D4:7B:8E:82:5F:BF:D0:79:48:2F:7A:0C:21:DC:91:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_z7T1NR7joJfv9B5SC96DCHcke8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/NJmEC6KsWPwTq59UOjXFA-Cn0Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/61ec7d-8df6-4ffe-b637-5b09a6743375/1/_z7T1NR7joJfv9B5SC96DCHcke8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.100.0/22
185.55.156.0/22
IPv6:
2a0d:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
1d:2f:68:ae:85:dd:ec:f1:ab:cb:30:65:80:9d:a9:89:85:03:
7f:92:c3:66:1e:ca:bc:8f:17:16:e5:f0:99:ae:f9:29:1d:ea:
a4:61:78:4a:1f:a1:84:f0:49:c8:42:25:b9:00:8f:a7:b2:c7:
59:cd:61:e5:d4:d4:16:b9:d9:1e:31:ef:b8:05:59:3f:3c:39:
a6:04:b6:43:a6:86:2c:2a:ba:a5:d6:72:a0:36:b0:84:98:d8:
c8:d5:90:ea:1f:29:8a:fb:d5:7e:4f:2e:12:f7:5a:8e:11:39:
80:a0:aa:5a:2a:17:c4:4e:6c:2c:7d:ae:c8:4b:e9:1e:ae:98:
f8:53:da:cf:d9:37:c2:aa:07:d9:cf:55:34:e2:47:ad:96:48:
0c:d8:41:b5:e0:e2:d9:7d:0c:d0:4f:31:1e:74:27:4f:03:fe:
1b:fc:d0:1d:6f:11:1f:8e:15:33:bd:b9:ea:ff:1b:95:b0:f2:
27:da:b6:73:7f:6c:09:ee:55:98:e8:d5:85:db:c3:45:95:4b:
64:05:b6:4a:e6:84:96:88:a1:bb:39:9a:23:ad:92:22:24:de:
ef:44:13:c4:02:13:8c:6f:4b:41:5f:04:51:6a:28:2a:c9:eb:
2c:6a:26:3a:12:43:8d:8f:28:25:95:07:16:e9:12:e5:0a:d3:
f2:2d:4c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 12:57:29 2024 by rpki-client on console-fra.rpki-client.org