Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/GigCisKMOPV8_YvqM3m9tMm8yYo.roa
File: GigCisKMOPV8_YvqM3m9tMm8yYo.roa (raw, json)
Hash identifier: Iuhxag3tDVL0DfOTcgR96mGMKtxVHY3IOz+4Iwleurs=
Subject key identifier: 1A:28:02:8A:C2:8C:38:F5:7C:FD:8B:EA:33:79:BD:B4:C9:BC:C9:8A
Certificate issuer: /CN=73e373fee780eeab2a90422d0ad514e084a8d611
Certificate serial: 018CCA2A612DC6B453E30B34F782C8E3DC98
Authority key identifier: 73:E3:73:FE:E7:80:EE:AB:2A:90:42:2D:0A:D5:14:E0:84:A8:D6:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-Nz_ueA7qsqkEItCtUU4ISo1hE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/GigCisKMOPV8_YvqM3m9tMm8yYo.roa
Signing time: Tue 02 Jan 2024 12:33:44 +0000
ROA not before: Tue 02 Jan 2024 12:33:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34442
IP address blocks: 46.232.192.0/21 maxlen: 24
195.8.116.0/24 maxlen: 24
80.77.240.0/20 maxlen: 24
77.246.16.0/20 maxlen: 24
2a00:1990::/32 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/c-Nz_ueA7qsqkEItCtUU4ISo1hE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/c-Nz_ueA7qsqkEItCtUU4ISo1hE.mft
rsync://rpki.ripe.net/repository/DEFAULT/c-Nz_ueA7qsqkEItCtUU4ISo1hE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:61:2d:c6:b4:53:e3:0b:34:f7:82:c8:e3:dc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e373fee780eeab2a90422d0ad514e084a8d611
Validity
Not Before: Jan 2 12:33:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a28028ac28c38f57cfd8bea3379bdb4c9bcc98a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:55:2c:0b:6c:a6:2d:0c:52:2d:9e:e7:5a:f4:
f3:e6:80:79:e9:40:67:6d:00:af:59:35:c0:b8:18:
b6:6f:d1:ea:69:6c:73:cb:66:29:ea:58:f9:4f:b0:
cf:a1:5d:5b:1d:09:3f:ff:9c:1b:96:95:d7:30:14:
33:20:0c:9f:82:a5:89:23:e3:82:c7:59:72:2b:eb:
3c:9b:f4:94:fe:28:ad:54:e6:90:fe:6b:c8:80:15:
c1:0c:be:a4:b0:e6:cd:11:f9:cb:26:d8:65:35:83:
97:8f:3a:09:70:f5:b4:a9:85:30:c8:06:0f:5c:95:
87:7a:6b:84:d5:50:4f:aa:ef:41:53:59:47:56:8b:
98:bc:e1:77:66:33:1c:5a:4e:72:1a:a8:9b:c2:37:
01:18:60:c9:75:bf:8a:ae:94:bf:c8:e8:2f:61:1b:
54:da:54:dc:b2:e7:47:28:46:45:db:4b:a6:8b:eb:
60:d1:3e:0a:5b:28:bd:7b:75:ec:7e:4b:a4:64:74:
09:68:dd:23:54:5b:b1:fc:18:5e:6c:51:f6:ec:74:
bf:ca:6a:ac:7f:e3:d0:ac:6f:89:4c:c5:19:b6:52:
52:cf:c7:ae:fd:06:23:f9:87:43:5b:54:47:b5:34:
5f:8a:63:97:f1:c7:a6:44:8c:5e:b0:a6:ab:50:fc:
22:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:28:02:8A:C2:8C:38:F5:7C:FD:8B:EA:33:79:BD:B4:C9:BC:C9:8A
X509v3 Authority Key Identifier:
keyid:73:E3:73:FE:E7:80:EE:AB:2A:90:42:2D:0A:D5:14:E0:84:A8:D6:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-Nz_ueA7qsqkEItCtUU4ISo1hE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/GigCisKMOPV8_YvqM3m9tMm8yYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/c-Nz_ueA7qsqkEItCtUU4ISo1hE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.192.0/21
77.246.16.0/20
80.77.240.0/20
195.8.116.0/24
IPv6:
2a00:1990::/32
Signature Algorithm: sha256WithRSAEncryption
43:48:d9:bb:8c:64:91:98:b4:ad:b4:fa:7c:a6:c7:1e:b3:04:
90:30:20:2b:a4:c6:b7:e7:bf:3c:32:f3:81:be:06:21:5c:52:
16:4e:5b:6f:fb:7d:57:96:85:6f:0f:69:f1:5c:fe:59:af:06:
be:bb:d9:cb:60:76:f6:56:6a:cc:ad:89:5d:57:0b:4a:68:58:
55:6f:ce:3f:0d:db:d9:11:f3:2e:0a:75:ce:25:85:55:f8:74:
31:57:ae:a7:d2:a8:a4:fb:ea:68:a0:4b:71:d1:17:71:9d:2c:
3e:71:94:36:80:03:8a:43:d2:b0:d7:ff:4b:85:bd:af:e8:54:
4b:21:e7:68:a6:24:32:74:c2:6f:3f:89:70:f6:d2:4b:63:8d:
d5:1a:12:c8:5d:2e:85:0f:34:a7:5b:a2:b1:a6:4d:a3:15:e4:
dc:ca:4e:56:37:00:3a:6d:13:e4:b2:44:de:f6:24:1f:9d:3a:
7b:4b:69:b9:47:45:b1:6a:6e:fe:67:e2:1c:58:bc:53:aa:e1:
3d:fe:f2:51:1d:63:d9:02:77:93:94:ee:ef:48:a7:bf:2a:08:
9e:6a:de:b6:ea:3c:ea:6a:54:de:9b:9b:1c:7a:c3:47:3f:b0:
ec:3f:08:90:07:ca:45:20:71:39:13:7a:ca:6d:e8:d2:15:f3:
3f:d3:22:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 17:17:23 2024 by rpki-client on console-fra.rpki-client.org