Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/YV5hiet3VOzvrh_GhLAJtAq03fY.roa
File: YV5hiet3VOzvrh_GhLAJtAq03fY.roa (raw, json)
Hash identifier: W1cwkBmFKzWnyfQ0Kv2zs7RIbM1D3Td7qa/AJUdJ14M=
Subject key identifier: 61:5E:61:89:EB:77:54:EC:EF:AE:1F:C6:84:B0:09:B4:0A:B4:DD:F6
Certificate issuer: /CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Certificate serial: 018FE3A980D16FD3ABFB8654D5B1B6A72341
Authority key identifier: 37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/YV5hiet3VOzvrh_GhLAJtAq03fY.roa
Signing time: Tue 04 Jun 2024 14:31:27 +0000
ROA not before: Tue 04 Jun 2024 14:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57074
IP address blocks: 37.0.104.0/21 maxlen: 24
37.26.248.0/24 maxlen: 24
37.26.249.0/24 maxlen: 24
37.26.251.0/24 maxlen: 24
89.22.8.0/21 maxlen: 21
91.230.104.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:a9:80:d1:6f:d3:ab:fb:86:54:d5:b1:b6:a7:23:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Validity
Not Before: Jun 4 14:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=615e6189eb7754ecefae1fc684b009b40ab4ddf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:55:c0:41:b8:c6:d8:49:71:d5:64:5f:09:cb:
70:d8:1a:cd:55:cb:51:ce:04:e2:68:93:01:8d:82:
0b:99:80:82:24:fa:a2:88:94:93:68:42:37:04:4d:
66:4c:28:a0:ff:b5:ce:51:af:9d:22:ab:e6:99:0f:
43:a5:e2:21:c9:9d:31:fb:82:1c:37:aa:a5:84:93:
80:b7:82:71:1f:ab:fc:52:05:ba:3f:81:48:17:b5:
2e:64:43:42:62:3f:ae:7c:e2:6a:80:11:25:f7:0b:
f7:36:d7:53:6c:41:50:a4:fe:d5:6f:14:2a:53:f5:
47:e8:ea:65:37:72:d2:20:2c:98:24:ee:5b:6a:ca:
05:a9:e5:23:71:4a:03:14:6f:0a:4a:e5:08:b8:b9:
1f:ac:a5:c7:5b:9c:86:9f:a6:1d:21:9a:3f:d6:44:
5c:4b:10:80:da:91:77:53:97:b6:05:5b:bd:09:a4:
d2:55:5e:99:36:52:eb:81:f6:3e:7b:34:8b:e6:2a:
94:5b:c5:9b:a9:a6:48:57:85:94:29:19:6e:4e:71:
d8:e9:26:9a:29:00:5d:e1:c9:ae:7d:e3:0c:d6:74:
47:1a:05:fc:92:bf:b1:8a:29:72:42:57:6b:62:ac:
17:89:cb:11:4a:34:a3:a4:9a:54:c2:35:55:24:98:
a2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5E:61:89:EB:77:54:EC:EF:AE:1F:C6:84:B0:09:B4:0A:B4:DD:F6
X509v3 Authority Key Identifier:
keyid:37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/YV5hiet3VOzvrh_GhLAJtAq03fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.104.0/21
37.26.248.0/23
37.26.251.0/24
89.22.8.0/21
91.230.104.0/23
Signature Algorithm: sha256WithRSAEncryption
39:02:a7:50:e5:e5:6b:c2:8f:cf:b6:95:14:2a:d4:dd:16:17:
5c:80:2d:59:91:a7:f4:9e:7f:d1:d2:5f:7c:a6:9e:68:25:29:
b3:95:90:94:4b:88:6b:fb:93:0f:af:05:94:df:f6:8c:4f:d1:
33:9e:cd:48:8a:2c:61:40:e3:e9:1e:b8:a4:8a:b0:f9:bd:37:
c2:5b:76:1d:64:49:2a:70:a3:bc:22:e0:9a:27:5b:de:94:f4:
68:0b:09:e9:81:4c:49:6f:66:ef:18:1b:2a:a9:f6:65:7d:e0:
0c:ac:f0:14:19:6f:02:7f:e4:46:8f:95:8c:75:8c:b7:29:1e:
6d:bb:09:9e:47:1c:88:31:c3:13:0a:8f:f9:a9:ec:10:bf:9b:
6d:05:84:b6:55:5d:f3:3b:e1:d2:1a:65:e1:0f:45:d0:61:cf:
15:e3:e0:c8:60:df:1e:39:e2:07:97:d9:d2:08:49:52:4a:89:
46:ac:82:21:e8:88:7c:3d:02:9c:8d:68:de:1a:d3:9c:0d:77:
66:14:0c:58:90:d2:26:76:8a:d4:14:56:e7:44:bc:93:c1:35:
52:d6:d0:1f:dd:34:80:07:94:48:7a:d6:4f:c2:5a:43:cb:86:
f1:14:16:ee:ec:f7:f3:0b:9d:ef:b6:24:9d:da:d4:80:82:29:
98:6b:d3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 19:36:28 2024 by rpki-client on console-fra.rpki-client.org