Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/gx6HDqgLG3lsGot5QgBKAc0p7wo.roa
File: gx6HDqgLG3lsGot5QgBKAc0p7wo.roa (raw, json)
Hash identifier: s7DVwxCOoKaLyttboBrqd1ICDVg0L3+LwjtqQF1ndLg=
Subject key identifier: 83:1E:87:0E:A8:0B:1B:79:6C:1A:8B:79:42:00:4A:01:CD:29:EF:0A
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 018CC802C42C0D442C018C77536283C37A77
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/gx6HDqgLG3lsGot5QgBKAc0p7wo.roa
Signing time: Tue 02 Jan 2024 02:31:13 +0000
ROA not before: Tue 02 Jan 2024 02:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31609
IP address blocks: 94.176.166.0/23 maxlen: 23
89.33.243.0/24 maxlen: 24
89.37.108.0/22 maxlen: 22
86.106.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:c4:2c:0d:44:2c:01:8c:77:53:62:83:c3:7a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 2 02:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=831e870ea80b1b796c1a8b7942004a01cd29ef0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:18:c2:8e:b0:ab:e2:49:f6:62:d7:90:6b:43:
9c:7e:6d:83:4f:21:47:20:54:6f:c1:91:2d:85:0e:
44:84:d6:39:3b:78:be:fa:bb:bf:00:80:45:04:85:
99:76:7e:e3:9f:47:fc:43:66:b2:5f:59:a1:ea:f6:
a9:23:96:7a:87:f3:e9:7f:2d:de:16:36:59:9b:a5:
a0:ff:e8:a7:79:ad:9d:d1:1a:02:3e:75:ed:4d:5f:
07:e4:95:f9:d4:25:4a:22:8a:a6:ea:60:39:48:3a:
6a:7a:a3:9f:04:5a:c4:45:81:3a:e7:4a:5a:f6:11:
2b:54:45:0b:2b:f8:f7:1d:e5:97:2f:b5:a7:4c:12:
87:46:0a:34:e2:24:6c:30:af:87:40:27:48:93:61:
2a:aa:92:eb:a7:db:f9:e7:2c:e8:69:10:85:be:bd:
9b:00:d9:4c:6e:82:1a:aa:21:0d:fa:00:7a:ad:66:
d3:07:5f:1e:81:9e:ac:bf:59:58:77:49:9a:f4:64:
00:28:e9:9d:40:bd:cf:a7:9e:51:b8:12:ba:d7:b0:
05:a8:e5:9d:31:9b:69:19:2c:7a:f3:40:ae:bc:3a:
cb:9f:9d:2f:ec:db:63:e9:49:81:8d:cb:da:2a:c7:
33:af:0a:7a:d1:1a:4a:69:09:7e:4d:94:85:ce:3c:
7b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1E:87:0E:A8:0B:1B:79:6C:1A:8B:79:42:00:4A:01:CD:29:EF:0A
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/gx6HDqgLG3lsGot5QgBKAc0p7wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.168.0/24
89.33.243.0/24
89.37.108.0/22
94.176.166.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:47:44:3d:17:e0:98:e5:dd:d8:9f:bb:00:c3:2b:19:c0:ff:
ba:b9:29:1b:19:50:57:ae:07:15:a1:b0:ac:ab:28:76:1d:23:
cb:2d:5b:ec:00:3a:1e:09:7c:24:39:e6:6f:1f:1c:0a:28:1b:
35:ea:05:ee:9b:5b:3c:3e:05:5b:85:6a:9a:d4:f1:b5:77:03:
7c:91:6c:2c:fa:67:2f:6f:66:d9:b4:02:53:a5:03:f7:70:5e:
98:0b:81:02:24:0d:0f:2d:e8:69:23:3d:b2:fe:e1:4d:b5:41:
a7:fd:3b:9d:e3:a6:b3:d4:d0:82:21:57:48:b5:67:6c:ec:cb:
92:a7:92:7b:57:ba:ab:d5:11:a1:c6:b3:4d:b0:41:3d:97:61:
38:64:c6:13:a2:bc:44:d4:7d:fe:bc:66:34:be:d1:f9:23:7e:
4f:f5:39:b4:e8:2d:0f:10:06:be:7b:f6:08:41:4e:b2:32:3e:
be:6b:cf:af:12:46:dc:51:a6:6e:ea:f3:a4:b5:cf:9d:13:86:
3e:3b:6c:2d:22:0b:7a:85:ad:e1:e8:9a:e7:29:35:0a:a4:b3:
36:e2:fe:67:54:0f:a4:ae:f0:c2:dc:1b:11:da:4b:fd:5c:2e:
5f:94:f1:7d:20:83:b3:51:33:17:4e:f2:85:aa:41:13:4f:59:
4f:b8:09:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:29 2024 by rpki-client on console-ams.rpki-client.org