Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/exgyu_KGsGbeaVlcVthg-y0EvHU.roa
File: exgyu_KGsGbeaVlcVthg-y0EvHU.roa (raw, json)
Hash identifier: 6PAc8ldi5ha9CVZuwSLihq+IGewXVSz9rAvEIQomus4=
Subject key identifier: 7B:18:32:BB:F2:86:B0:66:DE:69:59:5C:56:D8:60:FB:2D:04:BC:75
Certificate issuer: /CN=0dde6317311fe6d538577c17fec982b82eea9abd
Certificate serial: 018CC94E5DA7BF10FB880052659C88CAF1DA
Authority key identifier: 0D:DE:63:17:31:1F:E6:D5:38:57:7C:17:FE:C9:82:B8:2E:EA:9A:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dd5jFzEf5tU4V3wX_smCuC7qmr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/exgyu_KGsGbeaVlcVthg-y0EvHU.roa
Signing time: Tue 02 Jan 2024 08:33:25 +0000
ROA not before: Tue 02 Jan 2024 08:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9144
IP address blocks: 79.99.92.0/24 maxlen: 24
79.99.93.0/24 maxlen: 24
79.99.95.0/24 maxlen: 24
79.99.94.0/24 maxlen: 24
195.5.179.0/24 maxlen: 24
2a0b:c4c6::/32 maxlen: 32
2a0b:c4c3::/32 maxlen: 32
2a0b:c4c0::/30 maxlen: 30
2a0b:c4c4::/30 maxlen: 30
2a0b:c4c7::/32 maxlen: 32
2a0b:c4c1::/32 maxlen: 32
2a0b:c4c4::/32 maxlen: 32
2a0b:c4c0::/32 maxlen: 32
2a0b:c4c2::/32 maxlen: 32
2a0b:c4c5::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/Dd5jFzEf5tU4V3wX_smCuC7qmr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/Dd5jFzEf5tU4V3wX_smCuC7qmr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dd5jFzEf5tU4V3wX_smCuC7qmr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:5d:a7:bf:10:fb:88:00:52:65:9c:88:ca:f1:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dde6317311fe6d538577c17fec982b82eea9abd
Validity
Not Before: Jan 2 08:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b1832bbf286b066de69595c56d860fb2d04bc75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1c:e9:3e:1d:bb:d8:2c:56:f6:e2:b2:df:f7:
a2:05:d1:8d:14:aa:ae:90:04:93:6b:43:45:1f:34:
ac:1e:31:cf:44:f3:c1:70:a5:2a:7c:af:d5:da:c5:
b2:c2:68:77:d6:c8:97:9a:9b:72:3b:fe:e1:27:21:
55:e1:ab:06:00:f8:31:41:fd:d2:0a:33:1b:ab:23:
b8:af:41:39:36:53:03:a0:43:62:b2:0a:5f:b9:8b:
11:53:35:07:2b:f9:c0:1b:fc:6f:db:e3:72:e1:ae:
5d:fd:21:32:a8:45:6e:24:e6:b7:36:4f:a6:c9:97:
bd:1c:7f:63:74:b8:fc:dd:34:f2:04:37:dc:66:6e:
c4:98:ec:0c:a0:e7:11:a7:f8:49:ef:23:43:5e:8f:
af:98:a5:8c:12:a6:0c:ae:ab:f1:ec:c6:e9:29:df:
64:26:d1:c3:f8:d7:54:d0:c7:cf:25:5a:50:2d:ac:
d3:5c:e6:31:1c:29:10:07:25:46:17:ff:45:bc:8b:
4d:69:a1:3e:9c:42:1b:de:42:17:f1:e2:f6:39:d7:
82:dc:15:f9:1a:12:f8:7b:2c:34:b6:bc:2c:b2:c7:
8f:24:bc:77:c8:a9:37:4a:a7:fd:2c:92:fe:c9:73:
f7:7b:9e:b3:0c:67:a7:16:12:c2:f4:a1:8e:8e:72:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:18:32:BB:F2:86:B0:66:DE:69:59:5C:56:D8:60:FB:2D:04:BC:75
X509v3 Authority Key Identifier:
keyid:0D:DE:63:17:31:1F:E6:D5:38:57:7C:17:FE:C9:82:B8:2E:EA:9A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dd5jFzEf5tU4V3wX_smCuC7qmr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/exgyu_KGsGbeaVlcVthg-y0EvHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/Dd5jFzEf5tU4V3wX_smCuC7qmr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.92.0/22
195.5.179.0/24
IPv6:
2a0b:c4c0::/29
Signature Algorithm: sha256WithRSAEncryption
4d:b0:e8:68:22:5f:54:47:cb:60:45:cf:da:7c:23:02:31:16:
a7:5d:a9:ec:44:e6:f6:46:d4:82:bb:dc:c8:82:fe:07:25:41:
97:ad:04:12:84:54:5f:6e:8a:45:55:6a:19:16:91:68:cc:d7:
83:68:42:25:da:0e:7b:df:ac:fb:fd:80:60:7c:3e:bc:8e:4d:
59:4b:1b:fc:13:2f:10:a9:ed:c5:19:f0:fb:25:d5:04:06:cb:
c1:d7:e6:df:36:af:24:92:29:87:19:ff:b9:ff:c8:bd:58:7c:
e7:21:39:91:68:76:a4:75:39:5d:d1:68:8d:d2:12:b5:f9:83:
e8:85:bf:d8:e0:4e:7d:86:42:05:bb:75:cb:8e:d0:2b:3d:8d:
3d:df:fd:1a:c2:28:14:70:76:5f:95:b2:09:5e:74:87:16:01:
51:a7:ec:b2:5a:86:ff:09:36:d6:c0:00:75:de:fa:d5:56:b2:
bf:53:93:f0:78:86:28:4a:23:95:da:76:33:39:83:52:38:bb:
67:dd:59:9e:bb:11:6f:ca:43:83:30:91:b7:48:ed:b2:0a:a1:
01:91:27:29:dd:e1:a2:89:c5:4f:12:cb:05:98:a5:9f:74:f6:
10:a1:01:57:8d:a8:19:a2:9f:de:c2:d7:c5:83:20:df:e7:01:
5b:7e:22:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:34 2024 by rpki-client on console-ams.rpki-client.org