Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/59bgYBGuvxdtDVcD9RFhaZoRWCA.roa
File: 59bgYBGuvxdtDVcD9RFhaZoRWCA.roa (raw, json)
Hash identifier: APF8mkBRbG+OaNvsUwvZMN6Glp36y/7g+6B0YYp272s=
Subject key identifier: E7:D6:E0:60:11:AE:BF:17:6D:0D:57:03:F5:11:61:69:9A:11:58:20
Certificate issuer: /CN=63082d6d3a1dc501795737537ca74d27a80265a2
Certificate serial: 018F7BFBD46B4EFA0E6875F191B12A25A15E
Authority key identifier: 63:08:2D:6D:3A:1D:C5:01:79:57:37:53:7C:A7:4D:27:A8:02:65:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YwgtbTodxQF5VzdTfKdNJ6gCZaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/59bgYBGuvxdtDVcD9RFhaZoRWCA.roa
Signing time: Wed 15 May 2024 11:20:52 +0000
ROA not before: Wed 15 May 2024 11:20:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62205
IP address blocks: 79.174.184.0/21 maxlen: 21
185.44.164.0/22 maxlen: 24
185.77.228.0/22 maxlen: 22
185.77.240.0/22 maxlen: 22
2a01:72a0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/YwgtbTodxQF5VzdTfKdNJ6gCZaI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/YwgtbTodxQF5VzdTfKdNJ6gCZaI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YwgtbTodxQF5VzdTfKdNJ6gCZaI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 29 Jun 2024 17:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:fb:d4:6b:4e:fa:0e:68:75:f1:91:b1:2a:25:a1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63082d6d3a1dc501795737537ca74d27a80265a2
Validity
Not Before: May 15 11:20:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7d6e06011aebf176d0d5703f51161699a115820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1a:af:ab:a4:35:ca:0d:a2:90:96:5e:d2:97:
51:b2:69:f5:2e:63:27:56:86:5b:2a:4a:ec:b5:9f:
08:79:b3:4d:aa:46:5a:6c:3a:18:b8:5f:48:0a:81:
93:d6:b5:32:47:45:59:fc:43:1f:4c:af:8a:32:cd:
d5:2f:2d:f4:07:9e:5c:98:47:95:d9:f6:c3:96:9f:
10:13:22:62:2a:b5:bd:aa:44:2d:02:88:a8:87:f3:
b4:6d:8e:20:b3:2d:ff:01:ca:ea:81:a3:0e:a8:66:
20:19:13:f7:05:93:38:ac:0e:42:3e:1b:8f:cd:3e:
a2:d6:40:c2:e5:6b:a5:1c:89:ca:79:62:2a:cc:e4:
d5:1f:ac:2f:f1:2a:8a:9d:96:ff:eb:de:74:da:07:
12:20:3e:fa:4d:c9:5f:56:e4:87:23:bd:80:20:ee:
50:86:a9:52:47:cb:88:cc:5f:1a:ae:64:a6:ae:8a:
f1:c0:be:75:da:14:aa:1d:fd:77:6a:80:a0:59:30:
46:6d:a6:be:e4:5e:af:fb:e1:11:8b:22:fc:35:78:
b1:10:e2:12:18:e4:f9:9a:0a:d5:21:02:9c:e3:f6:
6e:43:43:61:97:bd:10:c2:95:77:ad:e9:bf:0b:94:
50:46:87:9d:88:b5:2e:25:bc:d3:86:d5:0d:a8:ad:
19:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D6:E0:60:11:AE:BF:17:6D:0D:57:03:F5:11:61:69:9A:11:58:20
X509v3 Authority Key Identifier:
keyid:63:08:2D:6D:3A:1D:C5:01:79:57:37:53:7C:A7:4D:27:A8:02:65:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwgtbTodxQF5VzdTfKdNJ6gCZaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/59bgYBGuvxdtDVcD9RFhaZoRWCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97e1e2-567f-414e-9b03-c18ad36a7b30/1/YwgtbTodxQF5VzdTfKdNJ6gCZaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.184.0/21
185.44.164.0/22
185.77.228.0/22
185.77.240.0/22
IPv6:
2a01:72a0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:0d:61:03:49:9a:5d:91:5b:e1:fc:89:e6:04:78:1c:df:7e:
44:2e:41:88:a3:ec:f8:1c:4b:20:fd:32:c1:df:6c:da:07:8b:
7f:55:c5:2b:6e:b0:26:77:b1:a5:d5:0a:b3:23:bd:04:f0:0a:
9a:07:f3:72:f7:9f:f8:19:0b:fb:9c:d9:ae:cd:db:8b:6d:96:
03:7f:94:49:8b:c5:ac:ca:5c:82:5b:49:06:1a:b4:e8:53:de:
e7:4b:10:dc:12:56:2c:95:89:b3:17:c6:54:82:e4:e0:0d:3b:
fb:4f:32:b0:01:66:87:dd:41:9e:31:77:78:1d:23:ab:32:4b:
bb:7f:91:7e:80:a1:5a:55:91:b0:4b:67:d0:ca:b3:d9:0a:13:
ca:d2:89:2d:61:06:6c:6f:90:9f:a8:87:a2:03:06:c1:95:0f:
a1:02:9f:3e:b8:78:b2:0a:9a:65:c2:e8:5f:b8:88:58:75:de:
63:4c:a4:40:ac:73:11:f4:45:8e:83:84:22:57:6b:5c:9e:24:
13:73:3f:03:6e:e1:61:43:31:8e:6e:fe:0c:d2:32:f9:7d:d0:
4a:87:7d:5b:f0:3a:0f:21:5b:20:33:ba:5a:81:00:4a:fa:27:
64:00:92:c3:37:94:50:f0:0e:e8:8d:9c:55:39:08:c9:4f:3c:
93:18:99:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 01:44:24 2024 by rpki-client on console-fra.rpki-client.org