Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/p7l_VFNEpXAOSDcj-X08gOmX13E.roa
File: p7l_VFNEpXAOSDcj-X08gOmX13E.roa (raw, json)
Hash identifier: y6LNK1vdoor128Y4d/cpscSqlNOXyESQhVrmU118So8=
Subject key identifier: A7:B9:7F:54:53:44:A5:70:0E:48:37:23:F9:7D:3C:80:E9:97:D7:71
Certificate issuer: /CN=7a1b849c340702501363a1f927ec424099b94726
Certificate serial: 01924195CAB424AE2DEED6F78B559C8CD162
Authority key identifier: 7A:1B:84:9C:34:07:02:50:13:63:A1:F9:27:EC:42:40:99:B9:47:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehuEnDQHAlATY6H5J-xCQJm5RyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/p7l_VFNEpXAOSDcj-X08gOmX13E.roa
Signing time: Mon 30 Sep 2024 06:19:48 +0000
ROA not before: Mon 30 Sep 2024 06:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29789
IP address blocks: 67.22.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/ehuEnDQHAlATY6H5J-xCQJm5RyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/ehuEnDQHAlATY6H5J-xCQJm5RyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ehuEnDQHAlATY6H5J-xCQJm5RyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:41:95:ca:b4:24:ae:2d:ee:d6:f7:8b:55:9c:8c:d1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a1b849c340702501363a1f927ec424099b94726
Validity
Not Before: Sep 30 06:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7b97f545344a5700e483723f97d3c80e997d771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cb:22:3f:06:24:ed:c3:88:c4:31:f0:62:37:
89:95:06:f9:3d:cb:85:00:b2:c3:be:ec:32:cb:f3:
78:cf:6c:3f:7d:45:e9:11:2a:a7:d3:4e:57:94:a1:
29:7e:1a:85:e2:dd:3e:13:9a:44:14:98:e9:b3:16:
4c:e6:38:94:39:ea:0f:d1:7a:90:a2:44:38:ca:d8:
53:90:43:57:fc:be:32:f0:6c:27:31:7c:f0:13:b1:
7e:ba:87:e3:62:30:f4:9f:61:03:ef:11:e8:c4:13:
86:8c:2f:9e:a4:ef:8b:75:a1:a7:38:6a:b1:85:70:
34:4b:82:0e:cd:73:d0:71:60:e2:4e:08:41:79:9a:
4e:66:d7:f1:d9:d5:59:37:ae:34:6a:25:27:a2:95:
8a:bf:71:f7:de:aa:5f:60:22:e9:62:94:cf:50:ca:
9b:11:06:03:62:9c:6d:b7:a3:02:4b:b8:b7:70:69:
9c:d4:e0:6a:3b:b2:81:40:ba:f5:03:e2:72:f3:a5:
19:a8:0d:03:72:29:84:1d:64:cc:53:48:e1:14:20:
4c:91:10:99:05:c3:41:fa:ab:df:77:f3:6b:40:03:
da:eb:47:a6:68:c6:65:ce:4c:e5:f6:33:c7:4f:44:
a8:17:b0:1e:92:4e:cf:30:ba:8c:b4:a5:ef:35:bf:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B9:7F:54:53:44:A5:70:0E:48:37:23:F9:7D:3C:80:E9:97:D7:71
X509v3 Authority Key Identifier:
keyid:7A:1B:84:9C:34:07:02:50:13:63:A1:F9:27:EC:42:40:99:B9:47:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehuEnDQHAlATY6H5J-xCQJm5RyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/p7l_VFNEpXAOSDcj-X08gOmX13E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/277333-e1f3-42ec-a8ac-b1f56a454d82/1/ehuEnDQHAlATY6H5J-xCQJm5RyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
67.22.58.0/24
Signature Algorithm: sha256WithRSAEncryption
68:fd:53:a9:fd:e8:4f:94:11:76:06:fc:9c:39:3c:34:36:41:
e3:f0:99:e2:f5:17:d0:6b:c0:b8:eb:5f:d0:4b:ab:7f:0f:cd:
68:8a:01:c1:eb:65:41:d3:f4:4b:0d:2f:d2:64:3a:9d:d2:1f:
e8:d4:0f:18:87:16:d0:ee:20:7a:4e:b9:af:7a:31:19:e6:b5:
6a:cc:cb:cb:29:5f:92:e1:fa:06:27:73:f2:be:ff:6e:31:64:
95:4e:f3:66:ef:dc:ff:ed:23:0d:fb:1c:25:d4:5f:85:9b:dc:
e3:f9:5f:5a:d1:2f:cc:fb:98:58:c5:5d:a3:29:01:37:10:46:
c7:f2:02:14:a6:a0:d2:15:3b:18:32:5f:31:79:c3:78:5d:b9:
68:50:bb:d7:7a:d6:ba:52:a9:f8:24:8b:48:7e:91:7a:1d:c3:
16:41:2f:b1:a5:f7:23:4e:ce:a3:02:4d:58:6e:e4:8d:8c:34:
93:d0:d5:3f:93:cb:41:79:8a:aa:09:ec:b0:fd:82:d7:d2:d3:
a1:3a:46:c2:f5:c2:5f:aa:39:57:b7:68:04:4d:c3:53:ec:9e:
2f:d5:40:05:ca:b2:14:bf:ee:28:10:8c:d8:b9:3c:2b:d4:09:
86:83:b4:0f:da:a8:32:38:b9:37:ea:03:dc:4b:96:40:71:a1:
a1:42:99:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:56:31 2024 by rpki-client on console-ams.rpki-client.org