Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/TAcGJuAYM-Gy4bpULETeDuGbYGk.roa
File: TAcGJuAYM-Gy4bpULETeDuGbYGk.roa (raw, json)
Hash identifier: /3DKZogKnvF+xCcCpeSy3hQiHCfro6lKJWdIP/Q7lvg=
Subject key identifier: 4C:07:06:26:E0:18:33:E1:B2:E1:BA:54:2C:44:DE:0E:E1:9B:60:69
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 01914532D7F73340750740DAADA0469D71B1
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/TAcGJuAYM-Gy4bpULETeDuGbYGk.roa
Signing time: Mon 12 Aug 2024 06:07:25 +0000
ROA not before: Mon 12 Aug 2024 06:07:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206487
IP address blocks: 77.241.49.0/24 maxlen: 24
77.241.62.0/24 maxlen: 24
89.39.33.0/24 maxlen: 24
89.39.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 19:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:32:d7:f7:33:40:75:07:40:da:ad:a0:46:9d:71:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Aug 12 06:07:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c070626e01833e1b2e1ba542c44de0ee19b6069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c0:bc:c4:be:0a:0a:c0:88:ea:72:07:af:73:
3e:2d:67:b9:3f:6f:cd:16:87:52:b5:f0:31:08:11:
42:f6:c4:63:7f:7f:2c:4d:f0:d6:0b:68:e5:31:08:
ad:1a:ad:20:9a:e9:00:d5:43:c6:20:a7:e8:9e:56:
81:a6:93:81:15:06:f7:34:8f:be:7e:bc:ab:7f:66:
34:0d:8f:5d:7a:dc:53:2a:73:41:ed:a2:39:8b:20:
64:3f:1e:c9:2b:80:71:ef:8f:3c:57:8c:c8:33:f1:
18:57:56:be:b1:da:89:c3:32:89:b6:6d:b8:eb:7f:
34:7b:b9:66:25:c8:5d:28:f4:31:91:0b:ab:f2:f9:
8c:56:1e:0f:3a:25:d9:b6:b3:4d:9a:da:f4:10:2f:
2d:30:8b:3f:5c:e4:76:e4:6b:53:3f:7a:50:21:b3:
2d:38:5d:5b:10:cd:e5:ec:1e:46:1f:63:19:59:a0:
2d:db:3f:e8:6d:7a:01:50:c1:57:64:eb:84:f4:c1:
c7:66:48:54:95:c5:53:9e:d4:4b:9f:16:0e:7f:d0:
41:3b:67:02:11:3d:dc:c7:d9:e6:ef:cf:39:fd:70:
12:85:0f:1c:5b:0f:6a:60:0a:76:e6:82:7c:fd:1d:
a1:1b:9d:4f:91:f7:cc:72:59:e4:2d:1c:dd:26:3f:
ac:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:06:26:E0:18:33:E1:B2:E1:BA:54:2C:44:DE:0E:E1:9B:60:69
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/TAcGJuAYM-Gy4bpULETeDuGbYGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.49.0/24
77.241.62.0/24
89.39.33.0-89.39.34.255
Signature Algorithm: sha256WithRSAEncryption
06:da:56:22:1e:65:9e:56:38:33:6a:b5:93:e4:1a:b3:b9:70:
bd:05:74:e1:0f:c8:f4:58:06:46:02:56:3c:c7:40:c8:28:8f:
af:ff:c6:bd:86:b8:05:ca:b4:37:95:39:bb:bf:25:60:5c:15:
d2:14:b5:16:28:11:79:53:1c:6c:63:17:5e:2f:d0:a5:53:5c:
91:02:32:62:e4:f2:fb:7b:e4:d0:d8:aa:2c:a0:82:2a:0f:d6:
76:0b:00:2f:09:6b:b9:6b:dd:20:81:36:13:f2:52:1c:9b:ea:
88:bc:b8:2d:08:28:2c:cb:0b:73:2a:0d:1f:a6:52:b5:77:d3:
7d:04:53:51:58:fd:16:88:41:57:5f:67:4c:17:b2:21:f2:eb:
ac:95:4b:a0:1c:f1:66:5a:e2:87:7f:b3:24:3e:8e:29:98:d6:
63:29:cb:f7:8c:47:e3:b7:1e:ac:61:e3:6d:c9:e2:8e:ea:e5:
71:a1:57:bc:b1:91:85:b6:49:d4:44:05:cd:a0:03:3d:d2:00:
67:3c:06:1c:c5:c5:a2:de:79:29:e0:a8:65:e1:b4:66:f4:d7:
6b:00:2e:86:5e:0d:40:53:44:f4:51:4c:9d:05:1c:63:17:08:
01:28:26:a2:ff:39:4b:3e:d5:bf:86:47:00:ce:08:91:ff:56:
d9:d4:56:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:32 2024 by rpki-client on console-ams.rpki-client.org