Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/U_d7fSqTV3HdQhCWVPQcDw41Lcc.roa
File: U_d7fSqTV3HdQhCWVPQcDw41Lcc.roa (raw, json)
Hash identifier: lAnmEX/AOkIsIh6DMre9126SVGD6rCZ/KiU7vyFqPvE=
Subject key identifier: 53:F7:7B:7D:2A:93:57:71:DD:42:10:96:54:F4:1C:0F:0E:35:2D:C7
Certificate issuer: /CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Certificate serial: 0192A0161D7D13D323D4E484991321DA7914
Authority key identifier: F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/U_d7fSqTV3HdQhCWVPQcDw41Lcc.roa
Signing time: Fri 18 Oct 2024 14:44:16 +0000
ROA not before: Fri 18 Oct 2024 14:44:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8855
IP address blocks: 212.78.0.0/24 maxlen: 24
212.78.2.0/24 maxlen: 24
212.78.3.0/24 maxlen: 24
212.78.4.0/24 maxlen: 24
212.78.5.0/24 maxlen: 24
212.78.6.0/24 maxlen: 24
212.78.7.0/24 maxlen: 24
212.78.9.0/24 maxlen: 24
212.78.10.0/24 maxlen: 24
212.78.11.0/24 maxlen: 24
212.78.12.0/24 maxlen: 24
212.78.13.0/24 maxlen: 24
212.78.14.0/24 maxlen: 24
212.78.15.0/24 maxlen: 24
212.78.26.0/24 maxlen: 24
212.78.28.0/23 maxlen: 23
212.78.28.0/24 maxlen: 24
212.78.29.0/24 maxlen: 24
212.78.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a0:16:1d:7d:13:d3:23:d4:e4:84:99:13:21:da:79:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Validity
Not Before: Oct 18 14:44:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53f77b7d2a935771dd42109654f41c0f0e352dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:64:25:ae:12:f6:5b:8e:81:55:c1:37:d4:77:
23:e4:04:a4:30:3d:69:9b:35:85:bc:49:cc:ab:0d:
ec:66:73:ff:85:25:d5:a1:b5:1b:ba:7a:6b:ee:c1:
f7:b7:84:b7:29:4d:92:ca:14:7f:4d:30:b6:06:dd:
1f:15:d8:ad:83:ee:18:ea:69:73:17:08:ca:ac:b5:
a8:b8:34:11:8f:8a:94:00:e5:5e:48:98:ce:61:5f:
cf:05:cd:6d:e3:eb:c7:16:39:95:fd:8f:6d:bd:8d:
61:65:c6:f6:25:91:4b:bc:cb:1b:51:b4:8e:71:90:
0a:7f:bc:e0:82:5a:02:ed:b6:26:20:0e:9f:13:3e:
3f:04:03:99:00:d6:33:d2:db:7e:13:7d:eb:14:48:
02:74:98:ea:02:71:09:a7:f7:12:c0:45:08:94:fe:
6c:0e:65:ba:62:ff:55:0c:a2:0b:4d:45:0a:5f:d7:
cc:38:c3:db:7d:f2:8d:93:18:24:a0:2b:23:0d:1d:
9e:cc:5d:03:1b:9f:eb:62:a8:22:c2:9f:b4:c3:a8:
74:db:4b:28:63:88:a5:9f:df:3b:db:14:a6:75:52:
83:95:b0:a0:a5:a7:df:72:7c:4f:a5:73:20:d0:87:
07:a6:fb:1a:ad:9a:9e:06:a7:e8:44:44:cf:54:c7:
0b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F7:7B:7D:2A:93:57:71:DD:42:10:96:54:F4:1C:0F:0E:35:2D:C7
X509v3 Authority Key Identifier:
keyid:F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/U_d7fSqTV3HdQhCWVPQcDw41Lcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.78.0.0/24
212.78.2.0-212.78.7.255
212.78.9.0-212.78.15.255
212.78.26.0/24
212.78.28.0/23
212.78.31.0/24
Signature Algorithm: sha256WithRSAEncryption
67:89:26:98:e2:1f:a4:13:67:1d:f9:8c:58:08:9b:01:23:71:
31:9c:68:8e:cc:5f:3c:5a:2a:1d:de:ed:ba:9b:53:75:cf:f2:
9a:81:44:dc:6f:7a:dd:d4:46:1a:dd:00:7c:ea:a7:8a:1e:42:
2a:e2:5d:79:59:61:1f:91:0b:33:8b:ac:2b:be:06:b1:3a:fc:
7e:64:9f:e3:95:f4:63:10:ac:49:7f:18:40:88:05:16:97:4d:
1e:bd:61:0e:93:57:da:de:82:18:ac:66:c8:90:32:5e:dd:54:
f1:c2:ac:7d:1c:79:8a:b1:fd:60:3c:54:29:7e:55:9e:e6:10:
fd:96:0d:16:8d:b8:30:18:f2:bb:41:89:d9:6b:f3:d4:4e:e9:
08:19:2f:58:96:71:c0:3f:27:a4:0f:19:0f:68:74:3b:e6:c4:
1b:fb:0c:95:bd:8c:22:c1:5a:8f:22:69:6a:74:5f:cd:72:74:
69:d2:7f:72:b1:28:41:86:83:2e:97:b2:c6:59:8c:7e:8a:26:
cc:af:56:ae:45:59:46:ad:84:92:1d:c0:9e:06:26:ab:71:36:
82:1e:c8:40:d9:21:15:a2:f6:56:27:3d:92:69:72:26:7b:8f:
d2:13:97:78:b1:09:ed:d0:32:5b:da:cf:d8:07:92:ab:de:21:
be:58:25:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:17:23 2024 by rpki-client on console-fra.rpki-client.org