Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/F1UC0-9Euyk7oFLSm57daOB2gfM.roa
File: F1UC0-9Euyk7oFLSm57daOB2gfM.roa (raw, json)
Hash identifier: RLf8Qocntw8vjUUJ9XkXlCvWA1/7+BWi1gDSvxIqE6s=
Subject key identifier: 17:55:02:D3:EF:44:BB:29:3B:A0:52:D2:9B:9E:DD:68:E0:76:81:F3
Certificate issuer: /CN=582e2170a7bcbec310154f2bce99833fec2801fb
Certificate serial: 018DE72AA5BB106BC0923D900D8D0F83806D
Authority key identifier: 58:2E:21:70:A7:BC:BE:C3:10:15:4F:2B:CE:99:83:3F:EC:28:01:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WC4hcKe8vsMQFU8rzpmDP-woAfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/F1UC0-9Euyk7oFLSm57daOB2gfM.roa
Signing time: Mon 26 Feb 2024 20:45:48 +0000
ROA not before: Mon 26 Feb 2024 20:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200184
IP address blocks: 67.63.56.0/24 maxlen: 24
67.63.57.0/24 maxlen: 24
67.63.58.0/24 maxlen: 24
67.63.59.0/24 maxlen: 24
67.63.60.0/24 maxlen: 24
67.63.61.0/24 maxlen: 24
67.63.62.0/24 maxlen: 24
67.63.63.0/24 maxlen: 24
80.75.216.0/24 maxlen: 24
2a13:f800::/29 maxlen: 64
2a13:f800:1001::/48 maxlen: 48
2a13:f800:3101::/48 maxlen: 48
2a13:f800:3102::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/WC4hcKe8vsMQFU8rzpmDP-woAfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/WC4hcKe8vsMQFU8rzpmDP-woAfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/WC4hcKe8vsMQFU8rzpmDP-woAfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e7:2a:a5:bb:10:6b:c0:92:3d:90:0d:8d:0f:83:80:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=582e2170a7bcbec310154f2bce99833fec2801fb
Validity
Not Before: Feb 26 20:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=175502d3ef44bb293ba052d29b9edd68e07681f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b0:ad:54:c5:ec:0b:54:97:f5:e4:0a:40:19:
08:74:15:eb:d4:99:52:a3:15:40:7b:ac:e8:77:3b:
67:85:07:9f:c6:70:9a:c4:57:95:d1:50:e9:16:35:
9c:37:1b:78:a4:5f:d0:8e:20:d8:3e:d9:81:90:88:
0a:ce:9d:18:29:36:73:ae:a5:6c:38:77:cb:f6:ec:
ab:55:02:b3:81:4f:3a:1f:d3:48:9d:85:8a:db:0c:
a3:2c:a1:a8:66:81:21:5f:49:4a:3e:8b:4e:10:53:
e0:91:f2:bd:88:bf:85:99:6a:af:4d:9c:d5:ce:84:
87:86:9c:40:6e:52:ad:71:cd:8f:c8:73:f7:99:36:
14:65:72:db:be:fc:a0:10:a8:00:87:ca:fe:b4:7e:
1d:d1:25:a3:1c:37:8f:73:3f:a9:fe:3b:e9:f8:d3:
b3:49:8f:ac:be:6c:44:74:af:e1:49:98:6d:ff:b1:
79:fc:5d:1e:19:15:b7:66:90:a2:d9:a0:2f:f4:87:
35:80:f6:02:45:51:a8:8b:5c:31:35:06:2c:d2:c2:
b4:63:33:42:9f:94:88:fd:ff:9c:39:d0:d3:92:f0:
46:bf:23:ce:23:38:2b:76:1c:50:89:d8:75:c1:28:
f3:7e:9d:ef:af:1a:32:0a:83:ea:bb:5b:7f:39:6b:
0e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:55:02:D3:EF:44:BB:29:3B:A0:52:D2:9B:9E:DD:68:E0:76:81:F3
X509v3 Authority Key Identifier:
keyid:58:2E:21:70:A7:BC:BE:C3:10:15:4F:2B:CE:99:83:3F:EC:28:01:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WC4hcKe8vsMQFU8rzpmDP-woAfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/F1UC0-9Euyk7oFLSm57daOB2gfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/81ed41-e36b-45f7-90e7-b2fd9bf097f8/1/WC4hcKe8vsMQFU8rzpmDP-woAfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
67.63.56.0/21
80.75.216.0/24
IPv6:
2a13:f800::/29
Signature Algorithm: sha256WithRSAEncryption
00:32:65:50:71:d0:42:22:c3:85:f8:4e:bd:f8:d9:6f:63:32:
d4:9d:f9:75:17:9b:df:2d:3f:53:12:c2:a2:52:c0:7b:bd:f7:
4f:e0:32:20:f6:cd:10:41:89:16:75:d7:a4:7d:44:31:c1:b2:
8f:6d:f5:78:ab:28:e4:be:a1:68:1f:89:74:71:61:09:16:c3:
a2:0a:31:49:d2:8f:15:55:da:ec:9c:59:25:28:50:83:17:ad:
1e:23:c4:f8:17:c6:2c:48:b5:a8:5b:d1:fc:d7:2d:c8:ac:1e:
0e:39:72:ef:64:e8:f4:48:93:a5:83:f4:67:72:e1:b7:be:88:
de:7e:4c:66:42:7a:2d:96:1e:46:12:05:0c:b7:3a:a4:be:93:
30:9b:0c:43:1d:ba:b7:42:88:fa:29:af:22:57:95:52:17:c5:
38:1b:18:39:d9:a2:0c:e5:9f:0a:ae:b7:f8:2e:25:5e:d1:56:
87:38:04:9c:bb:e3:93:81:9f:f4:a4:d7:7b:9d:d6:26:c5:f8:
43:25:81:4a:12:f8:1d:1b:71:fd:02:7e:65:47:fc:44:6f:44:
18:12:62:ce:36:4e:2c:0a:c3:c0:1f:41:f3:ad:b1:ca:85:02:
db:b9:eb:ad:47:54:c9:64:24:89:3c:7b:f1:c4:9b:66:f2:ff:
0e:c1:aa:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 21:16:13 2024 by rpki-client on console-fra.rpki-client.org