Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tm75d7UHp23H7aoWpP-AQYgEFc4.roa
File: tm75d7UHp23H7aoWpP-AQYgEFc4.roa (raw, json)
Hash identifier: TYFG7iqBZqiqL4SkaB+PZiwskzCiH+Zj0Oqa6Xlkyjs=
Subject key identifier: B6:6E:F9:77:B5:07:A7:6D:C7:ED:AA:16:A4:FF:80:41:88:04:15:CE
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 018CC802CE49FF096848FDD9D31D50A83099
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tm75d7UHp23H7aoWpP-AQYgEFc4.roa
Signing time: Tue 02 Jan 2024 02:31:16 +0000
ROA not before: Tue 02 Jan 2024 02:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61139
IP address blocks: 93.113.34.0/24 maxlen: 24
89.39.126.0/23 maxlen: 23
86.106.129.0/24 maxlen: 24
86.106.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:ce:49:ff:09:68:48:fd:d9:d3:1d:50:a8:30:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 2 02:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b66ef977b507a76dc7edaa16a4ff8041880415ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:83:dc:0e:a6:39:16:fe:19:a1:6c:78:b7:
8d:2b:ac:a2:d9:6e:16:92:02:9a:5f:ad:68:a6:a9:
50:f4:50:58:44:27:4b:a1:c3:dd:cb:93:54:7f:d0:
26:a7:53:2f:4a:7d:f5:f5:03:05:ed:7f:21:b8:1d:
73:da:b9:8b:3f:d2:a4:50:42:8c:53:ae:ff:2c:c6:
17:76:c8:57:ab:75:e3:a6:c3:6f:af:03:fc:5b:2f:
da:cb:a6:09:42:08:3d:a9:b7:da:be:6e:72:15:2d:
b7:21:c9:5f:d4:67:86:c9:f3:1d:8e:df:5c:9d:cc:
43:59:bf:9f:c2:62:8d:8a:52:9c:fd:aa:5d:12:48:
95:59:7a:a8:e0:1e:a1:ee:ba:d6:1a:b2:d7:b8:62:
d4:7c:31:e3:c4:fe:c7:36:3b:0c:cb:3d:1e:fe:57:
bb:57:be:b9:4c:0e:5e:60:f3:00:e7:37:db:bf:a1:
4f:9d:83:c9:67:d7:8c:9e:94:ce:a3:81:6f:d8:83:
4c:f3:34:25:d2:c1:83:80:2e:bf:f6:e4:6a:fc:37:
96:88:c7:f0:ed:4b:27:ec:f1:d3:1f:63:a7:ef:8e:
d5:6b:ae:28:9e:f1:5f:76:21:08:9c:56:a9:02:13:
61:19:4b:f9:c7:19:f8:01:42:2c:49:74:ba:12:54:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6E:F9:77:B5:07:A7:6D:C7:ED:AA:16:A4:FF:80:41:88:04:15:CE
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/tm75d7UHp23H7aoWpP-AQYgEFc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.129.0-86.106.130.255
89.39.126.0/23
93.113.34.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e4:e4:76:71:df:64:b4:25:bd:84:b7:f5:3e:69:52:df:27:
ee:f8:6f:13:a8:4e:29:10:1f:18:2e:93:3b:76:a2:a1:26:63:
18:74:cd:0e:50:47:e4:b4:d2:15:d4:fd:83:3f:6e:7d:20:1d:
38:c6:02:d9:7d:69:df:39:82:02:8a:08:cd:96:e2:d3:0f:77:
e7:7b:ec:8e:84:b8:23:e3:db:cb:6c:ea:f3:39:85:28:08:fc:
6a:fa:55:f2:6e:99:d4:9e:1b:0c:69:7d:b5:91:e0:96:ec:ca:
50:ac:68:ae:ee:77:b5:d5:73:e7:f7:ef:fe:d1:af:51:10:01:
31:d0:97:c1:be:60:ae:2e:58:db:1c:92:72:94:ef:2c:bd:89:
03:aa:4c:c8:92:ce:09:b6:fe:32:00:ee:dc:56:6a:a0:21:55:
cb:b4:c9:4c:e3:0d:eb:62:53:9d:d1:66:85:a6:fc:20:50:fa:
45:42:df:74:b4:4d:ea:0e:9b:c5:45:fd:fe:27:b0:32:ec:e3:
b7:44:fa:c7:06:5a:d2:de:06:ae:e0:bc:c8:60:04:cb:9d:00:
69:9b:37:f0:5b:f4:81:93:b4:ac:4c:a8:2f:9a:bd:2a:e4:15:
6f:f3:1c:1b:1f:fe:ea:5f:c9:8b:4e:61:ee:7c:11:b4:c6:bf:
c1:59:15:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:19 2024 by rpki-client on console-fra.rpki-client.org