Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/gcIj4AkOYXy2q7MOIdbwZEAFYk8.roa
File: gcIj4AkOYXy2q7MOIdbwZEAFYk8.roa (raw, json)
Hash identifier: tq7Oi1j/dPOlBTTRHzf21pnA6YMxTUNyd+jd+bWXxcM=
Subject key identifier: 81:C2:23:E0:09:0E:61:7C:B6:AB:B3:0E:21:D6:F0:64:40:05:62:4F
Certificate issuer: /CN=7cfc92b0a75b89ad2e3c57f7cba0e478684219ce
Certificate serial: 018CC2DB565C89BF8B1369879DAC9FCC8BFE
Authority key identifier: 7C:FC:92:B0:A7:5B:89:AD:2E:3C:57:F7:CB:A0:E4:78:68:42:19:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPySsKdbia0uPFf3y6DkeGhCGc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/gcIj4AkOYXy2q7MOIdbwZEAFYk8.roa
Signing time: Mon 01 Jan 2024 02:30:03 +0000
ROA not before: Mon 01 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62178
IP address blocks: 94.229.85.0/24 maxlen: 24
94.229.81.0/24 maxlen: 24
94.229.82.0/24 maxlen: 24
94.229.83.0/24 maxlen: 24
94.229.84.0/24 maxlen: 24
94.229.80.0/24 maxlen: 24
94.229.88.0/24 maxlen: 24
94.229.89.0/24 maxlen: 24
94.229.90.0/24 maxlen: 24
94.229.86.0/24 maxlen: 24
94.229.87.0/24 maxlen: 24
94.229.91.0/24 maxlen: 24
94.229.95.0/24 maxlen: 24
94.229.92.0/24 maxlen: 24
94.229.93.0/24 maxlen: 24
94.229.94.0/24 maxlen: 24
2a05:2c0::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/fPySsKdbia0uPFf3y6DkeGhCGc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/fPySsKdbia0uPFf3y6DkeGhCGc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fPySsKdbia0uPFf3y6DkeGhCGc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:56:5c:89:bf:8b:13:69:87:9d:ac:9f:cc:8b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cfc92b0a75b89ad2e3c57f7cba0e478684219ce
Validity
Not Before: Jan 1 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81c223e0090e617cb6abb30e21d6f0644005624f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1f:96:0b:00:26:9b:8e:9e:d2:9c:56:33:3c:
6d:3a:dc:60:b2:24:da:07:d1:83:60:04:02:75:60:
09:e2:84:7a:c4:6a:3d:c5:9a:ad:e7:2d:72:15:a9:
a3:a0:04:63:c2:32:ad:c2:7a:a1:fa:a7:b9:89:f9:
16:b8:44:ef:19:cd:7f:3c:17:06:e0:0c:f6:1c:a2:
2e:f5:12:0d:5d:53:b2:d8:ed:40:cb:b8:8c:1e:83:
69:98:40:9a:5a:99:ed:4c:0a:61:af:56:fe:75:e6:
bd:bb:ff:d6:10:ec:f1:03:49:fb:9c:d4:4d:ba:7a:
ef:2c:86:86:17:d9:cc:3e:a7:d2:e6:fe:d0:d2:1c:
c0:c7:5c:e6:2f:6f:95:c6:7c:42:d3:d8:62:69:77:
5b:20:7f:11:8d:f4:c0:8a:59:1e:88:e7:aa:11:f4:
1d:8b:03:83:1d:93:bb:35:cf:1e:99:d1:3e:01:14:
55:63:a3:25:17:6b:4b:7d:8e:c7:87:a6:d2:97:d3:
59:b3:e5:9b:ac:1b:70:b4:24:73:df:13:d8:6f:78:
81:02:0f:a7:ce:4b:b7:d1:e5:e5:fc:a1:5e:24:13:
c6:3d:f3:c2:a3:8b:78:f3:40:b1:b5:48:5c:9f:05:
98:50:08:0d:70:fe:b7:d4:34:3f:e7:38:2d:98:3b:
2d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C2:23:E0:09:0E:61:7C:B6:AB:B3:0E:21:D6:F0:64:40:05:62:4F
X509v3 Authority Key Identifier:
keyid:7C:FC:92:B0:A7:5B:89:AD:2E:3C:57:F7:CB:A0:E4:78:68:42:19:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPySsKdbia0uPFf3y6DkeGhCGc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/gcIj4AkOYXy2q7MOIdbwZEAFYk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1776cb-1c78-4dcc-b43b-36d7b4f84e5c/1/fPySsKdbia0uPFf3y6DkeGhCGc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.229.80.0/20
IPv6:
2a05:2c0::/34
Signature Algorithm: sha256WithRSAEncryption
57:2f:52:b6:5e:e7:14:4a:94:d8:6b:e3:b5:ea:c4:78:ef:29:
17:45:22:3e:3d:e7:1c:d1:ad:d7:cb:6f:dd:09:3f:41:d9:94:
56:d6:c5:42:3f:ce:8d:ff:b5:e7:89:44:96:1a:e6:6e:3e:cf:
7a:6e:2f:53:80:2d:76:98:55:02:37:2f:ca:83:24:51:36:02:
89:c8:c4:bb:1e:6d:69:9b:c7:77:b6:a6:f8:3a:e1:10:5f:cf:
d9:10:2f:2e:da:84:59:a8:c1:ea:ab:a5:c8:98:28:17:1d:eb:
78:63:2e:7d:01:07:65:36:7d:f3:03:b3:b3:a6:87:54:4b:9f:
8e:07:05:71:a4:55:bf:f9:52:5b:a4:be:1f:3b:47:4c:ae:e7:
21:c8:47:96:29:2a:08:f2:98:9e:06:6f:b1:1e:1a:32:1a:85:
55:2f:91:4a:2d:7c:ef:aa:4a:6e:74:d0:7e:e9:6a:aa:75:11:
a3:b3:28:99:53:de:2e:0a:51:ce:1d:2a:f7:61:80:f1:7b:10:
d9:76:4d:cf:a6:1c:7e:79:10:e5:c1:90:14:49:ba:d9:d2:72:
e2:24:a3:d2:6a:b6:6f:9f:b4:d4:e3:1f:9f:54:ad:32:69:74:
a8:d3:09:e6:68:1b:7f:41:eb:57:d3:23:bd:38:80:5e:96:de:
da:67:95:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:43:44 2024 by rpki-client on console-fra.rpki-client.org