Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/7X-ddYieBN_vsFEifPiFkFOyUDs.roa
File: 7X-ddYieBN_vsFEifPiFkFOyUDs.roa (raw, json)
Hash identifier: oUkJ76TOAsGxhYtvtuKyRRL7P5/ICnHBLlrdR7RTgK0=
Subject key identifier: ED:7F:9D:75:88:9E:04:DF:EF:B0:51:22:7C:F8:85:90:53:B2:50:3B
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 019125D0C6F0E6C215F30EB84A7922C4D10B
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/7X-ddYieBN_vsFEifPiFkFOyUDs.roa
Signing time: Tue 06 Aug 2024 03:52:04 +0000
ROA not before: Tue 06 Aug 2024 03:52:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 83.147.22.0/24 maxlen: 24
83.147.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 15:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:25:d0:c6:f0:e6:c2:15:f3:0e:b8:4a:79:22:c4:d1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Aug 6 03:52:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed7f9d75889e04dfefb051227cf8859053b2503b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:5a:83:d5:f8:d9:45:0d:20:77:9f:53:e1:
fe:81:fe:9a:9c:29:74:a0:b9:2d:8e:02:9b:f5:b8:
e4:6e:c5:9b:90:c7:56:34:ef:92:22:ff:df:73:1b:
5b:e4:72:aa:f5:7c:45:7c:28:78:61:10:aa:ed:6a:
77:92:32:80:76:c7:91:91:bd:db:ed:11:9e:7b:7e:
29:85:63:fd:ce:34:1a:a7:a7:93:3b:6c:11:cb:1b:
8a:17:8a:e1:4b:84:d9:40:23:94:b3:ff:33:c8:49:
52:9d:34:2a:78:2b:a7:16:88:69:53:e2:d2:fd:a6:
80:e0:12:79:f8:6a:f4:5f:41:3a:d6:59:a1:7d:0e:
cc:66:4f:a0:55:00:ec:12:c3:b1:93:7a:f4:ae:1d:
df:0d:6d:93:45:cf:85:94:8d:cf:36:d4:09:31:4c:
52:78:53:6a:27:d1:77:2a:37:50:ee:19:ba:ae:40:
19:6d:12:d5:17:41:40:ea:ac:f2:83:56:66:fa:bb:
8f:af:de:4c:37:9b:dc:1e:26:64:ac:ef:46:d2:23:
5f:28:58:b4:e3:39:12:b5:cc:b9:2d:d5:bf:12:1a:
ac:4a:41:1a:40:97:37:8d:50:ce:26:97:55:2c:de:
07:cb:98:2f:4d:ba:66:bd:96:8f:dd:37:7e:37:d8:
c7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7F:9D:75:88:9E:04:DF:EF:B0:51:22:7C:F8:85:90:53:B2:50:3B
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/7X-ddYieBN_vsFEifPiFkFOyUDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.22.0/24
83.147.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:96:bb:c6:f2:15:5f:3b:10:03:d8:e3:b9:7a:30:3c:ce:a8:
b5:48:68:98:b2:1d:83:ee:6a:e5:1c:d4:fd:3d:ce:33:f8:7c:
d3:74:5e:e0:52:10:7f:60:d3:cd:ef:2f:3a:3b:26:03:d0:e3:
94:41:1d:08:c9:e2:ca:c0:ef:fa:02:c4:a9:4f:02:58:ce:38:
d4:48:2c:00:61:54:46:d0:21:a1:ac:f4:18:48:7e:7e:9e:7c:
3b:28:91:89:e3:e4:71:10:d0:1f:07:46:12:a1:01:6d:be:d8:
3b:3e:2c:d0:44:d8:77:c0:78:e2:c4:59:6e:e6:ab:08:aa:75:
04:f7:a3:ca:91:fa:3f:5b:be:3d:67:6c:aa:f1:ca:55:80:af:
7f:03:a6:d0:b5:28:8e:1a:9c:6f:89:8e:40:32:7e:cd:bb:09:
c0:9f:76:b1:45:e9:cf:c4:9e:a6:b7:8c:8f:d6:9a:a3:51:a6:
76:41:ea:52:11:13:00:89:44:56:ae:34:19:42:8e:c7:84:c2:
e6:bf:b4:bd:33:86:bd:3a:57:02:22:af:f6:6b:fc:c3:b3:c5:
87:56:bc:43:95:0f:b1:57:68:b2:46:16:20:06:18:50:c1:bf:
ed:e0:7b:97:92:03:f4:bd:55:77:99:0b:96:75:73:d2:b3:52:
42:33:1a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:40:28 2024 by rpki-client on console-ams.rpki-client.org