Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/_Wb3WToh2P69MrbUzizIxI7kjxY.roa
File: _Wb3WToh2P69MrbUzizIxI7kjxY.roa (raw, json)
Hash identifier: Bf/tzhtjIgTQqOnVwWYEa6VAOOs3RZ5NXA/vPvn5JfA=
Subject key identifier: FD:66:F7:59:3A:21:D8:FE:BD:32:B6:D4:CE:2C:C8:C4:8E:E4:8F:16
Certificate issuer: /CN=09cd218abcdf66e79500ab913cd21cf06e405d4e
Certificate serial: 018CC5DC17F9EE0564235C12D8F652378261
Authority key identifier: 09:CD:21:8A:BC:DF:66:E7:95:00:AB:91:3C:D2:1C:F0:6E:40:5D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cc0hirzfZueVAKuRPNIc8G5AXU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/_Wb3WToh2P69MrbUzizIxI7kjxY.roa
Signing time: Mon 01 Jan 2024 16:29:44 +0000
ROA not before: Mon 01 Jan 2024 16:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41810
IP address blocks: 80.240.64.0/24 maxlen: 24
80.240.65.0/24 maxlen: 24
80.240.66.0/24 maxlen: 24
80.240.67.0/24 maxlen: 24
80.240.68.0/24 maxlen: 24
80.240.69.0/24 maxlen: 24
80.240.70.0/24 maxlen: 24
80.240.71.0/24 maxlen: 24
80.240.73.0/24 maxlen: 24
80.240.74.0/24 maxlen: 24
80.240.75.0/24 maxlen: 24
80.240.76.0/24 maxlen: 24
80.240.77.0/24 maxlen: 24
80.240.78.0/24 maxlen: 24
80.240.72.0/24 maxlen: 24
82.167.176.0/22 maxlen: 22
82.167.184.0/21 maxlen: 21
82.167.128.0/21 maxlen: 21
82.167.136.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/Cc0hirzfZueVAKuRPNIc8G5AXU4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/Cc0hirzfZueVAKuRPNIc8G5AXU4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cc0hirzfZueVAKuRPNIc8G5AXU4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:17:f9:ee:05:64:23:5c:12:d8:f6:52:37:82:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09cd218abcdf66e79500ab913cd21cf06e405d4e
Validity
Not Before: Jan 1 16:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd66f7593a21d8febd32b6d4ce2cc8c48ee48f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:a0:80:71:b9:bc:77:3b:26:93:75:7d:29:
c9:5a:ba:56:a0:0b:57:6c:5e:bb:37:2f:6d:97:cd:
fb:46:0f:1d:db:fe:50:57:fd:a4:d3:be:1a:b5:39:
6f:32:a0:35:73:b9:15:4c:21:3b:09:25:aa:0f:90:
fd:79:64:dd:4b:c3:d7:59:7c:17:7a:f3:a4:00:91:
1f:09:ad:53:c7:be:d4:d6:02:49:80:ae:a0:b0:d8:
2c:4f:43:e2:79:ff:b7:27:a6:d4:b1:a0:66:68:1a:
f3:3c:e1:57:4b:b7:e2:bc:36:3e:54:f7:75:48:93:
5a:ef:2c:a7:31:d2:91:fb:4a:ae:da:9c:8a:8d:c9:
0e:a0:98:2d:b9:b2:ca:83:0c:63:7e:4b:f0:fc:da:
5d:29:81:4a:05:75:c7:f0:70:6d:2a:f6:87:e1:e1:
98:63:bc:be:a6:82:14:f6:3a:e7:cf:b3:ce:05:1d:
e6:a5:89:13:00:e9:24:1a:91:d6:4a:47:f7:4b:5c:
93:84:d7:f8:9a:ff:3a:60:39:95:f2:50:5c:84:97:
0d:96:a2:d8:f3:d1:f0:88:a2:71:4e:f0:d0:6b:98:
db:30:8d:c9:93:8f:2c:03:1f:c3:a2:70:5e:16:55:
e7:21:87:24:ad:63:40:fc:ce:6f:91:ed:52:10:63:
59:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:66:F7:59:3A:21:D8:FE:BD:32:B6:D4:CE:2C:C8:C4:8E:E4:8F:16
X509v3 Authority Key Identifier:
keyid:09:CD:21:8A:BC:DF:66:E7:95:00:AB:91:3C:D2:1C:F0:6E:40:5D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cc0hirzfZueVAKuRPNIc8G5AXU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/_Wb3WToh2P69MrbUzizIxI7kjxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/Cc0hirzfZueVAKuRPNIc8G5AXU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.64.0-80.240.78.255
82.167.128.0/20
82.167.176.0/22
82.167.184.0/21
Signature Algorithm: sha256WithRSAEncryption
58:6d:0f:4c:6f:c0:6f:f4:65:38:ea:12:8d:82:29:1a:eb:67:
dd:18:18:09:2e:0f:64:7d:9c:13:e0:4f:19:18:be:99:c2:8b:
e6:91:01:57:32:1d:c6:92:1a:9c:28:8e:58:ca:e5:bf:57:49:
18:96:80:22:81:0d:de:98:97:49:5c:a5:ad:ac:ad:45:b8:bf:
a7:1f:39:d9:7f:ca:8f:8e:c9:63:04:da:9a:7a:b7:2d:f7:f6:
56:d4:e4:c2:21:d1:5b:28:8b:2a:96:ef:ed:2b:9e:fb:4c:8f:
ee:28:0b:ad:49:c4:cc:07:41:43:d1:63:cb:29:71:de:7d:e1:
ee:9f:ca:82:c0:60:2b:1c:52:9b:a8:a9:6f:96:d2:15:19:7f:
eb:ba:9e:7d:27:d8:6d:9e:65:13:db:1f:09:7e:4b:3e:8a:80:
8d:84:84:82:ad:64:87:c9:e6:73:ad:95:3e:0b:64:4a:63:49:
3a:6d:14:ea:99:d7:58:4e:67:4a:ab:23:23:f2:9b:22:0f:63:
51:bc:20:de:c5:72:8d:00:dc:de:4b:e4:1a:bc:ab:de:fe:0f:
5c:39:ce:61:07:81:a6:44:36:3d:0c:c2:f9:fd:77:09:99:19:
c1:97:d9:78:f9:01:b4:9d:61:11:13:56:bd:2b:d7:87:f4:13:
e0:cb:18:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:23:12 2024 by rpki-client on console-ams.rpki-client.org