Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/7__feMwXwq8LxI158B1OtYbUMts.roa
File: 7__feMwXwq8LxI158B1OtYbUMts.roa (raw, json)
Hash identifier: PRWTouM2c7n4MKOGzxs9amUaXZz7Q5ukfXlnuHasrcc=
Subject key identifier: EF:FF:DF:78:CC:17:C2:AF:0B:C4:8D:79:F0:1D:4E:B5:86:D4:32:DB
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802F58C4FAE0C458F53C994F56A7D86
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/7__feMwXwq8LxI158B1OtYbUMts.roa
Signing time: Tue 02 Jan 2024 02:31:26 +0000
ROA not before: Tue 02 Jan 2024 02:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57602
IP address blocks: 194.71.213.0/24 maxlen: 24
194.71.212.0/24 maxlen: 24
194.71.214.0/24 maxlen: 24
193.180.239.0/24 maxlen: 24
193.180.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:f5:8c:4f:ae:0c:45:8f:53:c9:94:f5:6a:7d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efffdf78cc17c2af0bc48d79f01d4eb586d432db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:db:4d:f2:5c:1a:77:5e:9c:03:7a:c6:91:92:
14:1f:4e:f2:a3:d9:52:cd:05:8d:ed:e1:d7:87:bf:
e2:84:ee:18:80:6d:3d:57:2f:1a:38:a1:ca:70:bd:
13:01:9a:a6:ed:0e:e2:10:1c:fc:5e:a8:c1:ca:32:
8c:5a:df:95:42:38:ac:a1:e0:4f:27:31:52:46:44:
41:6c:bf:d2:0b:d4:fa:fc:f0:fa:f9:6c:39:5a:bf:
15:6c:9f:b3:f2:4c:4e:42:b6:a3:8b:81:05:f2:7b:
b1:7e:75:6b:62:5b:42:76:e8:de:db:5e:74:08:49:
18:ac:2c:66:60:50:43:8a:68:d0:15:90:94:e8:68:
86:e4:54:fc:14:3b:41:c5:74:fa:d7:12:5c:fd:65:
ff:7a:a9:03:94:de:21:15:53:2a:01:60:e7:51:61:
2e:6c:2c:0e:04:76:43:6f:00:d2:2b:f7:36:63:68:
f0:69:6d:88:e6:c9:4e:e5:62:61:cb:9b:76:29:f4:
a8:c5:2b:4b:a7:f2:c2:2f:01:cf:73:2b:18:1d:bf:
5b:fd:89:21:40:d2:e7:b1:c6:fc:ab:a7:5d:ad:2c:
b6:57:fa:7a:b2:6f:13:88:57:14:cd:a3:10:4c:3b:
a2:f2:39:48:65:a6:a4:03:f2:29:c5:32:56:89:8a:
b7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FF:DF:78:CC:17:C2:AF:0B:C4:8D:79:F0:1D:4E:B5:86:D4:32:DB
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/7__feMwXwq8LxI158B1OtYbUMts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.238.0/23
194.71.212.0-194.71.214.255
Signature Algorithm: sha256WithRSAEncryption
70:bf:ff:c7:a0:e0:2b:64:cf:21:11:32:07:95:37:eb:9f:98:
5a:9d:e4:d1:7d:43:ab:82:9b:14:e5:37:f6:56:e6:58:ef:2d:
61:da:13:24:9c:c9:49:a4:93:c8:09:89:d4:48:ef:f8:9b:87:
89:a6:4a:27:79:e0:7f:0b:c1:bb:06:7e:ae:75:bb:1e:00:57:
39:f0:1b:8e:3d:b5:68:99:4a:94:62:80:55:ad:14:c5:0d:82:
cb:ad:d7:dc:b6:aa:12:f6:bb:d3:2a:d4:5e:cc:34:a4:51:1c:
d6:98:e8:38:21:19:3b:d2:33:bb:05:ee:4e:7b:26:35:71:70:
a2:9e:73:b3:2a:9a:cf:33:d3:34:c3:cc:8b:c1:ca:61:89:2b:
b6:74:61:2e:dc:b3:6e:f0:52:11:51:e9:57:91:12:39:0a:2f:
10:49:32:65:2d:d8:24:5e:be:cf:cb:1c:a5:04:b3:28:7c:78:
e0:e2:ca:fa:d0:c7:a0:e6:d5:b5:31:8c:6e:0b:f4:5f:2f:ac:
69:d8:4d:98:eb:3e:1e:a9:ab:58:fd:3f:af:62:72:a1:d9:d2:
de:7f:63:c8:61:28:a5:d2:74:bd:1f:9e:10:ab:28:d5:51:f0:
de:be:d1:c2:ed:06:d7:ba:e2:d0:a0:56:82:c3:cb:b1:32:28:
e3:41:ab:5d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 25 17:04:53 2024 by rpki-client on console-ams.rpki-client.org