Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/Mo7xfD-djdpUGKPRp2NmOGly4eM.roa
File: Mo7xfD-djdpUGKPRp2NmOGly4eM.roa (raw, json)
Hash identifier: 4njDPIYlSwXUYWnwQmE4+BRgD2VDjMgJTxOw2HshGes=
Subject key identifier: 32:8E:F1:7C:3F:9D:8D:DA:54:18:A3:D1:A7:63:66:38:69:72:E1:E3
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019267CC33AE6491C964521E936B00A28117
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/Mo7xfD-djdpUGKPRp2NmOGly4eM.roa
Signing time: Mon 07 Oct 2024 16:24:48 +0000
ROA not before: Mon 07 Oct 2024 16:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212177
IP address blocks: 80.75.219.0/24 maxlen: 24
2a03:f980::/29 maxlen: 29
2a03:f980:1::/48 maxlen: 48
2a03:f980:2::/48 maxlen: 48
2a03:f980:3::/48 maxlen: 48
2a03:f980:4::/48 maxlen: 48
2a03:f980:5::/48 maxlen: 48
2a03:f980:6::/48 maxlen: 48
2a03:f980:7::/48 maxlen: 48
2a03:f980:8::/48 maxlen: 48
2a03:f980:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:cc:33:ae:64:91:c9:64:52:1e:93:6b:00:a2:81:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Oct 7 16:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=328ef17c3f9d8dda5418a3d1a76366386972e1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6f:ff:c0:cb:7b:1c:74:cb:3f:6c:a8:dc:d5:
a4:00:7d:63:4c:f2:c7:e5:5c:b6:e0:0f:c0:ef:fa:
7c:19:d6:77:59:95:9a:e1:d1:d3:87:6c:28:99:bf:
bb:db:25:ed:95:92:66:45:51:3a:0a:10:1d:09:49:
bc:a2:94:e8:ca:99:83:b8:23:a6:e8:d5:3f:44:cd:
aa:45:31:bd:05:6d:ec:35:2c:d0:d4:0f:7b:76:d2:
6d:b6:67:37:f5:bd:7d:61:52:23:6f:5e:73:0d:44:
1d:58:13:f5:ff:d8:05:86:e5:bd:0e:15:58:a3:28:
26:64:e6:6a:94:21:03:1f:cd:7d:84:87:f9:11:4b:
bf:3f:e6:38:48:e5:b8:f9:d3:d0:d7:c0:ce:1b:08:
8c:43:46:fc:8e:26:1f:b5:4f:dd:9d:93:3c:4b:33:
5a:eb:54:2e:12:0a:ec:3d:96:24:8e:0a:e0:03:f9:
19:11:ef:c6:06:1e:c6:e4:fd:5f:54:0a:44:50:70:
ca:c9:0c:79:7c:f9:41:50:7d:5e:c8:1e:15:cc:d5:
11:e4:78:d8:8a:84:8b:32:61:04:35:8c:bc:c9:d1:
a8:ab:c3:25:6b:e5:ec:8b:f7:98:d4:7d:4b:cc:46:
69:5c:2b:a8:0a:44:59:49:a7:61:42:78:c4:b9:b1:
9a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:8E:F1:7C:3F:9D:8D:DA:54:18:A3:D1:A7:63:66:38:69:72:E1:E3
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/Mo7xfD-djdpUGKPRp2NmOGly4eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.219.0/24
IPv6:
2a03:f980::/29
Signature Algorithm: sha256WithRSAEncryption
bc:a3:29:92:51:38:8d:58:1c:57:66:0e:6a:eb:01:d9:95:7d:
7e:d0:69:67:24:59:ec:1d:c0:3d:ed:66:3e:1e:7f:7e:cf:e1:
82:25:cc:9d:1a:84:af:41:f4:c7:2a:37:38:4d:91:71:20:39:
c9:52:7e:09:17:3e:e5:83:73:85:3b:cc:e5:cd:eb:6d:b8:fc:
4a:5c:c1:eb:26:47:4c:08:dd:d9:29:4e:a8:27:06:34:fa:f8:
ac:7d:24:93:7d:cc:61:3d:08:eb:57:c3:88:61:4e:9a:49:e2:
b5:9c:b4:d8:6f:33:08:e3:70:75:92:db:5b:3f:91:ef:de:ba:
b6:47:e0:b2:96:fb:77:e0:63:b6:03:c6:09:2c:d0:ad:5c:ab:
01:13:07:a8:3c:c2:dc:1d:64:3b:4a:ea:91:c8:3e:44:aa:fe:
c2:89:25:c8:0f:18:79:bb:c9:9c:8b:8d:c0:ae:cb:81:c8:a6:
bc:94:87:1e:23:31:af:e5:d9:02:86:4d:2a:b5:e0:cd:cf:92:
72:43:ef:46:dc:d7:41:36:da:aa:fb:33:46:55:cc:c2:c9:68:
9f:04:86:43:db:f1:09:9c:99:56:6a:3d:3c:e7:30:68:15:b7:
58:64:4d:d5:6d:9a:8f:c6:63:f7:a6:75:dc:45:40:97:db:a9:
11:99:57:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:58 2024 by rpki-client on console-fra.rpki-client.org