Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/fUM_gJnhGTqIoEL8GL4eAhrbCPA.roa
File: fUM_gJnhGTqIoEL8GL4eAhrbCPA.roa (raw, json)
Hash identifier: BPdBSnpjRYBfzYwnZtOh/eDBLmi/ThSUTJ7Zpm4t99o=
Subject key identifier: 7D:43:3F:80:99:E1:19:3A:88:A0:42:FC:18:BE:1E:02:1A:DB:08:F0
Certificate issuer: /CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Certificate serial: 018E7EF8E742F1337A0846B6CE04BD6AF162
Authority key identifier: F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/fUM_gJnhGTqIoEL8GL4eAhrbCPA.roa
Signing time: Wed 27 Mar 2024 08:13:45 +0000
ROA not before: Wed 27 Mar 2024 08:13:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8855
IP address blocks: 212.78.0.0/24 maxlen: 24
212.78.2.0/24 maxlen: 24
212.78.3.0/24 maxlen: 24
212.78.4.0/24 maxlen: 24
212.78.5.0/24 maxlen: 24
212.78.7.0/24 maxlen: 24
212.78.9.0/24 maxlen: 24
212.78.10.0/24 maxlen: 24
212.78.11.0/24 maxlen: 24
212.78.12.0/24 maxlen: 24
212.78.13.0/24 maxlen: 24
212.78.14.0/24 maxlen: 24
212.78.15.0/24 maxlen: 24
212.78.26.0/24 maxlen: 24
212.78.28.0/23 maxlen: 23
212.78.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7e:f8:e7:42:f1:33:7a:08:46:b6:ce:04:bd:6a:f1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d901201ff0b1b97ef3d1a72da41e18f0145762
Validity
Not Before: Mar 27 08:13:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d433f8099e1193a88a042fc18be1e021adb08f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5e:91:8f:cc:66:d8:9f:0c:ea:fd:3f:d1:a8:
6c:69:b9:27:16:91:2b:18:9f:d1:9f:0e:77:56:0b:
7e:c9:f8:16:92:fa:88:bb:c1:8d:12:27:5a:6d:31:
14:4b:67:38:f6:43:7d:a4:19:52:d4:d6:bb:b8:02:
fb:62:62:9f:3a:d0:83:8c:7b:ee:34:26:36:10:a1:
47:62:4f:97:fd:15:b3:ef:de:87:a9:d5:03:c1:9e:
5a:14:b5:6d:52:18:d1:10:f8:38:fb:91:ab:5e:fd:
5d:55:07:f9:a7:53:6c:77:cf:f5:cd:88:cc:50:25:
c0:2b:cc:85:f3:99:89:27:6d:1d:f4:93:cb:b0:a4:
0f:5d:22:de:25:79:f2:98:d1:1a:1c:30:c7:87:27:
1a:20:b6:1d:1d:2e:35:70:ad:d2:b5:1b:bd:de:de:
0a:4a:c7:72:d8:30:71:42:3d:e4:46:cf:4b:10:73:
b7:f8:bd:b6:37:9a:d1:e9:42:b1:04:7f:f8:7c:41:
a6:f3:22:0d:9e:ef:6f:bb:cf:0e:47:b3:fe:36:4b:
9e:07:a0:3e:a3:85:a1:85:1d:cc:5e:69:f2:ba:44:
5c:ef:3b:fa:34:fd:45:43:31:f2:67:5d:4f:ae:75:
36:6e:0e:15:7e:ac:f5:02:56:5b:b5:f4:5d:b8:d1:
c1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:43:3F:80:99:E1:19:3A:88:A0:42:FC:18:BE:1E:02:1A:DB:08:F0
X509v3 Authority Key Identifier:
keyid:F5:D9:01:20:1F:F0:B1:B9:7E:F3:D1:A7:2D:A4:1E:18:F0:14:57:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dkBIB_wsbl-89GnLaQeGPAUV2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/fUM_gJnhGTqIoEL8GL4eAhrbCPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ad5545-f8af-4278-90a5-a3bbc87a77cc/1/9dkBIB_wsbl-89GnLaQeGPAUV2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.78.0.0/24
212.78.2.0-212.78.5.255
212.78.7.0/24
212.78.9.0-212.78.15.255
212.78.26.0/24
212.78.28.0/23
212.78.31.0/24
Signature Algorithm: sha256WithRSAEncryption
67:02:d2:e3:c1:5d:8e:45:f7:30:d8:79:64:75:e9:af:9e:d3:
e6:f1:80:56:37:08:36:13:e9:0b:72:9e:bc:5f:48:c1:2b:52:
cd:fa:ae:23:bd:7b:8d:a3:9b:ea:c9:21:53:25:ac:44:bf:8f:
b1:58:68:fc:42:95:e5:8f:15:ce:c7:f7:70:06:e8:fe:6b:3b:
d5:28:a8:0a:90:e2:35:97:17:d3:d4:cb:a7:34:36:f7:94:68:
1f:63:36:3d:95:b4:e3:cd:8a:a7:de:ba:8c:e0:27:7f:cd:3d:
bf:be:1e:1e:70:a7:b9:d7:dd:80:1e:5c:7e:1b:46:a4:16:f1:
fc:d1:f8:09:6e:8a:bd:e1:1d:33:66:dc:f7:2f:77:cf:44:91:
1c:af:b9:48:6b:57:fb:b4:11:96:42:41:13:da:8d:d4:21:51:
be:e1:52:a3:51:d3:a7:d7:37:45:45:61:9d:14:8b:28:33:57:
30:c2:f3:8a:d2:dd:8e:0a:3a:fb:68:c7:de:8e:bd:f5:d2:fd:
d8:e9:47:ec:39:34:56:69:1e:99:4d:4e:5d:a2:78:53:d6:62:
0f:6d:d6:eb:55:d9:81:ce:eb:67:f6:a2:ab:fe:37:39:f3:e0:
bf:d2:98:c6:31:6c:ba:b2:eb:68:e5:f2:52:41:8e:f4:6e:b6:
47:92:14:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 10:21:30 2024 by rpki-client on console-fra.rpki-client.org