Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/ekwLAwwRwqFKJgoaIS_Xa1lUb3E.roa
File: ekwLAwwRwqFKJgoaIS_Xa1lUb3E.roa (raw, json)
Hash identifier: kp6AvqDzVHjlEeaoQ9+y1Xu3SqJsppEKJ2qJp+1GnZg=
Subject key identifier: 7A:4C:0B:03:0C:11:C2:A1:4A:26:0A:1A:21:2F:D7:6B:59:54:6F:71
Certificate issuer: /CN=dc6a3742f0f0fb120922b339ef01cecf87f4d1ee
Certificate serial: 018CC49347C57FCD4CCCE2BE014D046353D3
Authority key identifier: DC:6A:37:42:F0:F0:FB:12:09:22:B3:39:EF:01:CE:CF:87:F4:D1:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Go3QvDw-xIJIrM57wHOz4f00e4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/ekwLAwwRwqFKJgoaIS_Xa1lUb3E.roa
Signing time: Mon 01 Jan 2024 10:30:35 +0000
ROA not before: Mon 01 Jan 2024 10:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43284
IP address blocks: 77.73.240.0/21 maxlen: 21
194.56.219.0/24 maxlen: 24
2a02:2108::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/3Go3QvDw-xIJIrM57wHOz4f00e4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/3Go3QvDw-xIJIrM57wHOz4f00e4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Go3QvDw-xIJIrM57wHOz4f00e4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:47:c5:7f:cd:4c:cc:e2:be:01:4d:04:63:53:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6a3742f0f0fb120922b339ef01cecf87f4d1ee
Validity
Not Before: Jan 1 10:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a4c0b030c11c2a14a260a1a212fd76b59546f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5c:24:35:86:5b:cb:69:04:28:7f:bb:92:f6:
57:d6:0e:23:66:26:b5:2a:30:3e:05:5e:f5:de:dc:
e9:2f:bd:c3:8b:2b:99:e0:fd:f9:62:84:28:92:84:
91:50:0b:c6:52:88:7f:2d:93:9b:d1:5d:cf:b0:da:
29:39:08:9e:f4:20:d1:24:79:42:9d:29:3d:72:e6:
b5:66:bf:74:b9:d9:21:d7:43:2b:74:c6:e8:d2:43:
cc:e2:1a:3a:fb:70:a7:c7:ea:4a:7e:a3:2f:e8:ac:
44:7c:d7:d7:c8:82:b4:36:29:ea:d5:ee:71:68:d4:
c0:a4:8e:72:4d:f8:a1:b2:df:75:f0:e7:e0:72:1e:
bd:a9:94:26:fb:41:55:25:eb:52:76:fd:5f:ad:a3:
e4:0f:a2:1d:de:b5:38:c0:bc:4c:37:a3:c3:0d:39:
7d:ae:20:66:50:19:9e:d5:3a:9e:81:53:24:cb:63:
b6:df:d8:8c:6e:8d:13:48:64:9f:15:75:87:93:cc:
e9:97:41:c6:4a:2f:c4:31:cd:58:f7:34:4b:c6:6a:
1a:32:bf:00:b9:92:42:85:40:0b:16:d4:15:70:13:
a7:36:d6:d7:7d:c6:2d:79:48:a8:0c:43:ae:0c:9a:
de:e1:1b:34:77:56:24:cb:07:57:8f:f2:55:f5:34:
ee:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4C:0B:03:0C:11:C2:A1:4A:26:0A:1A:21:2F:D7:6B:59:54:6F:71
X509v3 Authority Key Identifier:
keyid:DC:6A:37:42:F0:F0:FB:12:09:22:B3:39:EF:01:CE:CF:87:F4:D1:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Go3QvDw-xIJIrM57wHOz4f00e4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/ekwLAwwRwqFKJgoaIS_Xa1lUb3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/47c973-205b-4197-8698-cc1d2c5e1b31/1/3Go3QvDw-xIJIrM57wHOz4f00e4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.240.0/21
194.56.219.0/24
IPv6:
2a02:2108::/32
Signature Algorithm: sha256WithRSAEncryption
18:82:3f:ff:df:2e:36:a0:46:6f:d6:54:0e:ac:a5:53:5e:48:
f9:b2:96:30:ca:94:51:40:e7:f7:81:c8:00:81:bb:4b:6c:0c:
94:ce:03:5e:d3:c4:6f:8c:c0:4b:1b:e3:15:ac:86:6f:5e:3a:
60:38:3e:c8:f2:72:09:f7:32:19:8d:9e:90:c1:54:c7:97:eb:
07:13:ad:48:95:30:9f:0d:0b:7a:0a:eb:7f:61:41:15:af:cc:
27:00:05:da:73:76:71:31:16:95:dc:68:2d:1e:00:c5:13:2d:
05:ba:85:8c:09:24:17:ea:8e:91:a5:1d:ea:80:67:12:81:ba:
f2:e7:f9:83:c3:d2:7a:7e:f8:59:2d:7b:8c:e2:55:1f:37:47:
45:a9:b6:5a:9a:4d:9b:b5:e5:f6:83:b8:d7:6a:d0:c5:f2:77:
59:81:47:d8:ab:0b:82:40:62:e2:b4:d7:de:3b:1b:45:88:15:
92:9b:e4:7b:7d:55:59:2e:ed:e5:95:7f:8f:b7:89:13:46:5a:
ac:b5:35:d3:40:63:96:0e:e9:2a:1e:03:b1:da:0c:c8:fd:50:
4e:f2:53:8e:37:e4:2f:ed:a0:4a:cb:b0:21:f2:59:f3:f7:5e:
cc:12:62:39:71:4f:14:d1:8c:d3:b6:7c:5c:26:d9:94:d8:e8:
16:c4:20:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:04:35 2024 by rpki-client on console-fra.rpki-client.org