Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vIS0xD7kgzrZTJq-YECHCbTM1Ag.roa
File: vIS0xD7kgzrZTJq-YECHCbTM1Ag.roa (raw, json)
Hash identifier: RLJlh3LUEdNPbOCnyIQ3lSskYROdZZXBJ9TyxtrZo0o=
Subject key identifier: BC:84:B4:C4:3E:E4:83:3A:D9:4C:9A:BE:60:40:87:09:B4:CC:D4:08
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CC86F934A45E2D5C8AA0A3DDC55832BB7
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vIS0xD7kgzrZTJq-YECHCbTM1Ag.roa
Signing time: Tue 02 Jan 2024 04:30:04 +0000
ROA not before: Tue 02 Jan 2024 04:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51610
IP address blocks: 213.175.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:93:4a:45:e2:d5:c8:aa:0a:3d:dc:55:83:2b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 04:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc84b4c43ee4833ad94c9abe60408709b4ccd408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:75:60:62:01:53:49:36:16:2a:3e:10:b9:
50:4e:54:7b:c9:e0:0a:23:4a:c3:8d:91:be:e3:0d:
85:59:c5:53:d0:68:24:3b:de:f4:1b:14:20:17:0c:
07:53:83:a1:7e:c3:82:c2:52:80:97:ae:50:3a:43:
5b:fc:7d:5e:8f:dd:8f:ca:f8:77:e6:59:e9:dd:a3:
39:4b:8d:52:68:32:46:cb:b1:0d:ee:b2:d7:2d:85:
a1:cd:a2:00:b7:37:f7:2c:e8:e8:55:79:d4:ba:a1:
9d:f6:0a:92:1b:a8:b4:4f:f4:aa:5f:f2:cc:79:90:
1c:90:72:ae:58:29:9c:1c:26:3c:4b:36:31:75:7c:
a7:9f:f9:6a:22:9e:c5:43:ec:2c:18:d0:ba:56:5f:
66:7b:b7:9d:b3:d9:65:04:9b:aa:c2:59:fe:3b:60:
de:b2:f2:b3:93:71:eb:8f:16:57:1f:8d:2c:46:1d:
a3:a5:a9:49:3c:24:b5:6d:a2:fb:be:bd:8d:44:16:
53:f4:52:bb:7f:59:01:ae:db:81:5b:3b:e8:b0:dc:
27:87:a7:4e:67:20:70:4b:b9:47:03:64:4d:1c:9a:
77:49:d4:2f:55:1b:86:27:65:31:fa:43:63:e5:62:
c2:18:6f:25:47:f5:e8:06:1e:2d:eb:5a:6f:93:38:
78:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:84:B4:C4:3E:E4:83:3A:D9:4C:9A:BE:60:40:87:09:B4:CC:D4:08
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vIS0xD7kgzrZTJq-YECHCbTM1Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:7e:2a:0a:09:e6:d3:1f:0c:87:ec:36:5f:18:cd:e2:6e:27:
4e:00:43:ea:90:59:4c:f5:4a:f8:29:84:aa:3c:e3:2d:f5:49:
80:fa:0d:f8:4c:2e:ee:4a:d5:ff:0b:87:63:2d:fe:06:4f:39:
a7:f3:13:a9:a7:0b:55:ed:11:61:e4:3a:6f:26:bc:d7:79:52:
81:ed:b0:c5:c2:63:da:2f:92:22:0d:51:b3:51:bc:61:2d:cc:
0a:1c:b4:ae:b6:94:e6:e1:c3:b4:46:9a:ed:8a:78:3d:ba:f7:
a9:63:2f:69:0d:4e:85:b5:bd:2c:a1:12:73:6a:ce:77:5e:20:
b3:94:ca:1c:0f:52:43:3c:25:e6:37:fe:76:a2:71:87:b5:0b:
92:84:72:03:40:51:91:c3:d8:ba:a5:fd:8d:de:da:41:3a:d5:
7b:10:09:26:99:54:a0:80:af:78:33:5c:03:87:fb:5a:a2:90:
66:26:0b:ef:f3:e1:ac:60:78:a4:b4:07:04:a2:06:c5:8a:fa:
d8:24:91:41:5c:d3:a9:20:63:39:2c:d1:de:77:79:bf:ff:ae:
4b:84:06:b2:3a:bf:2a:76:09:90:f7:1e:7c:f3:f0:bd:fd:8a:
2f:b1:ea:d7:ad:07:c7:d0:52:ee:e6:6a:9d:c3:a5:e8:5e:6c:
3b:57:4d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:24:50 2024 by rpki-client on console-ams.rpki-client.org