Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/rM4FtYUL9uu_prr8-cUTV_QpdnU.roa
File: rM4FtYUL9uu_prr8-cUTV_QpdnU.roa (raw, json)
Hash identifier: +hFJr6yfTFHJt5dq2bBKKuxZOlkQVNeVOdJMyBAIuNs=
Subject key identifier: AC:CE:05:B5:85:0B:F6:EB:BF:A6:BA:FC:F9:C5:13:57:F4:29:76:75
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018CCA9938E97930216639FB4C9A8317EE13
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/rM4FtYUL9uu_prr8-cUTV_QpdnU.roa
Signing time: Tue 02 Jan 2024 14:34:48 +0000
ROA not before: Tue 02 Jan 2024 14:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204393
IP address blocks: 81.12.78.0/24 maxlen: 24
87.107.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 23:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:38:e9:79:30:21:66:39:fb:4c:9a:83:17:ee:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 2 14:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=acce05b5850bf6ebbfa6bafcf9c51357f4297675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ae:32:62:9d:01:6e:73:58:f8:39:74:68:4a:
b4:4e:92:18:b5:88:67:87:32:a0:af:de:2b:fb:9d:
f3:10:31:d2:f8:75:1a:35:bb:b7:96:1e:c5:71:a4:
80:04:a2:59:59:da:89:a4:cd:65:7c:03:2b:df:2d:
98:6e:ae:8c:4c:a8:02:39:41:90:3e:f5:03:72:ce:
17:33:88:0f:e1:c6:7b:b6:a9:2c:30:a8:5d:05:d1:
e3:a9:47:d1:ca:5f:84:d4:21:30:96:99:46:2f:8a:
64:22:b4:c7:fb:97:11:a5:ed:21:d6:bb:9d:11:5c:
e9:ac:94:b4:0e:24:33:e0:87:05:38:22:ba:eb:96:
0f:2f:8e:c2:54:c0:06:8b:11:8b:2c:68:66:d5:c2:
19:65:b8:b6:8a:86:72:ae:bf:be:34:1e:0c:12:ce:
4f:31:00:37:53:73:c2:90:35:fd:a0:47:37:96:e0:
94:03:63:f4:86:4d:9e:47:0f:3a:6d:ac:c6:c5:70:
7e:13:2e:75:2f:14:bf:32:87:5a:eb:ba:98:c8:0e:
2a:d0:5b:c3:41:4f:2b:d4:62:b7:55:92:20:76:d2:
40:67:cf:24:6d:a2:e2:38:53:52:62:78:a1:24:5f:
75:cb:de:b7:4d:92:7b:41:45:61:cd:d2:9c:7a:00:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CE:05:B5:85:0B:F6:EB:BF:A6:BA:FC:F9:C5:13:57:F4:29:76:75
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/rM4FtYUL9uu_prr8-cUTV_QpdnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.78.0/24
87.107.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:c6:25:dd:c0:2e:0f:d2:02:ee:e6:58:85:30:35:ec:50:64:
a8:49:3f:10:fb:5e:6a:43:56:ff:96:19:46:f0:5a:e0:f1:b4:
ad:69:19:8a:d7:80:e2:ef:19:d0:0f:bf:6f:7a:c3:fa:fc:2f:
4d:f6:bc:81:3a:21:50:2a:93:40:4e:40:85:7c:96:d7:2e:07:
b4:3f:30:a0:0c:0e:b4:86:b0:7d:4d:68:0d:9a:08:d8:73:3c:
9a:13:f4:8b:d1:69:2f:80:a6:e9:a4:a1:47:78:3c:6d:b7:61:
0f:6e:fc:e6:13:bc:10:ed:0d:a5:3d:12:c4:e2:a5:aa:55:9c:
b0:36:7e:91:7d:f5:72:08:7b:dd:4a:f9:a2:96:93:1c:f1:e8:
6b:da:f4:c0:61:84:7c:3e:8e:06:67:84:4c:fb:76:25:1b:bf:
7b:33:92:0b:4f:76:0e:4b:5b:25:9f:7e:b5:1f:5a:89:8a:37:
2f:56:2c:f1:a1:11:5e:0b:cb:c8:91:d5:50:1a:78:1a:13:15:
37:b7:20:45:39:71:e2:44:54:da:24:a0:1c:3c:0f:f1:22:58:
9b:a9:a1:06:c7:96:28:1d:38:41:62:d8:43:b0:fe:3e:29:4a:
43:fa:08:d1:b4:c2:44:2c:a5:b0:37:73:f6:64:09:b4:b8:f8:
c0:80:a2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:42:57 2024 by rpki-client on console-fra.rpki-client.org