Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ek2nKV6i477agFHd8oLS1C5gzvI.roa
File: Ek2nKV6i477agFHd8oLS1C5gzvI.roa (raw, json)
Hash identifier: HOv5tvNK5MAeoZtpkXC+Ve3ru/vChqxPS+mQTYYSNd0=
Subject key identifier: 12:4D:A7:29:5E:A2:E3:BE:DA:80:51:DD:F2:82:D2:D4:2E:60:CE:F2
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01921D81F3C63A6E84E6240B59E8B0402406
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ek2nKV6i477agFHd8oLS1C5gzvI.roa
Signing time: Mon 23 Sep 2024 06:11:48 +0000
ROA not before: Mon 23 Sep 2024 06:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31400
IP address blocks: 77.37.0.0/17 maxlen: 17
2a01:4d0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1d:81:f3:c6:3a:6e:84:e6:24:0b:59:e8:b0:40:24:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Sep 23 06:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=124da7295ea2e3beda8051ddf282d2d42e60cef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d9:05:86:b3:7b:1b:d5:7b:a7:d4:95:c2:b2:
16:c1:34:41:48:6d:36:1f:70:da:0c:d3:0e:90:dd:
d1:e6:00:dc:3f:68:da:a1:9c:d1:c1:57:7d:4d:98:
1e:a5:13:24:36:24:08:bc:1d:12:cb:20:79:7c:63:
6f:10:90:3d:e2:b3:c1:28:3a:ed:6f:73:bf:be:b1:
ef:07:85:d3:8f:7f:b5:80:41:8f:97:95:62:15:ec:
b9:08:8c:20:51:da:6d:0d:41:e9:dd:50:52:cd:e5:
9c:e8:d5:63:93:bc:0a:82:00:59:48:f4:02:08:fc:
76:04:2e:8a:1b:35:0d:5e:12:79:48:33:a2:ab:35:
9f:c3:c4:0f:6d:9f:66:0b:44:32:d2:19:c6:84:f1:
04:ed:38:ee:22:d5:30:ed:86:3c:7d:bc:49:fc:74:
fe:8d:a6:ea:e8:9e:64:28:24:42:9d:c7:c7:21:66:
f8:c6:cc:00:0e:ac:92:e0:fc:0f:c7:11:b3:7d:33:
f3:10:b5:32:b9:32:96:e3:91:1b:74:19:e8:f7:98:
4d:9f:a4:fb:ca:2e:40:ec:4a:94:5e:97:44:c2:8c:
fc:f6:59:ad:2f:07:f8:48:71:8a:82:e9:73:a4:18:
58:ce:95:cf:a4:ea:30:ca:cf:2d:36:9e:78:a6:59:
af:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4D:A7:29:5E:A2:E3:BE:DA:80:51:DD:F2:82:D2:D4:2E:60:CE:F2
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ek2nKV6i477agFHd8oLS1C5gzvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.0.0/17
IPv6:
2a01:4d0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:33:fb:39:19:a7:54:95:60:0f:7d:33:6e:fd:89:32:1f:6c:
48:8c:b7:64:1a:6a:ef:16:f9:d6:c4:80:62:10:61:33:36:d3:
0a:f4:cc:fb:3d:f9:f7:92:95:e4:0a:26:67:b5:a0:b4:43:ea:
71:4b:74:7a:17:54:68:af:77:00:3e:4d:1c:c8:f5:a0:0e:73:
0f:2e:73:6f:52:ef:7e:ac:b4:8e:f1:2c:ed:2e:0b:50:25:76:
00:32:2a:87:ad:f6:b0:74:89:a9:05:9d:fe:21:dc:63:66:5c:
d5:20:83:40:1f:4e:cd:b5:96:3d:4b:7c:ca:c6:c6:e0:48:9e:
86:13:ba:ba:1f:72:63:0e:6f:96:8f:b7:5b:0d:4a:e4:6c:ef:
c7:4d:ff:a2:0d:cd:d4:8f:2d:ee:08:07:74:5a:22:74:22:f2:
b3:c6:8a:68:30:d5:50:75:51:33:53:f0:e0:5c:9e:f4:30:35:
13:8c:df:e9:69:c7:7b:45:42:97:ca:79:ff:99:72:e9:b5:8f:
26:b8:19:c2:55:85:3e:3c:a9:54:d5:3e:15:11:eb:f4:3c:c4:
85:52:e3:89:5c:0e:02:96:e5:2d:5e:4f:61:9c:a9:96:65:77:
b2:bb:f4:37:d0:f5:cd:ab:0a:5a:36:39:7f:14:96:52:a2:fa:
89:34:08:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 15:02:44 2024 by rpki-client on console-ams.rpki-client.org