Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/gODcpGsLuVfG78KM_V4jVisHLvE.roa
File: gODcpGsLuVfG78KM_V4jVisHLvE.roa (raw, json)
Hash identifier: lqAZYBcg7O72vL+W2F6bU9BCXKlSnvk0PtWUtCTK6+o=
Subject key identifier: 80:E0:DC:A4:6B:0B:B9:57:C6:EF:C2:8C:FD:5E:23:56:2B:07:2E:F1
Certificate issuer: /CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Certificate serial: 018F5A31FD71DA90BB6200803DF424C4BB91
Authority key identifier: AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/gODcpGsLuVfG78KM_V4jVisHLvE.roa
Signing time: Wed 08 May 2024 21:52:56 +0000
ROA not before: Wed 08 May 2024 21:52:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213205
IP address blocks: 81.163.209.0/24 maxlen: 24
81.163.213.0/24 maxlen: 24
81.163.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5a:31:fd:71:da:90:bb:62:00:80:3d:f4:24:c4:bb:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Validity
Not Before: May 8 21:52:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80e0dca46b0bb957c6efc28cfd5e23562b072ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2b:41:a6:b0:23:c4:55:07:76:4d:c9:a6:8e:
04:1a:d6:b8:de:9a:91:94:67:23:0e:31:17:ef:dd:
db:39:39:9e:78:9b:a0:50:f3:a3:9c:7b:94:22:ea:
ea:06:a1:36:5a:bf:d6:6c:67:22:7c:eb:6e:8e:14:
de:20:2d:91:1c:82:14:04:90:60:11:e9:ac:3c:43:
b2:92:dd:02:1f:0d:23:ff:e7:70:6a:01:6d:23:7a:
22:57:f3:5f:16:ff:13:e6:47:63:2e:b7:2a:41:64:
0e:05:b0:a8:8e:b5:36:ad:c6:87:57:2c:fe:84:b0:
c6:16:2d:fc:6f:f6:5d:2f:89:52:03:d2:91:6f:7e:
c8:68:9a:d1:22:f0:2f:71:4a:44:a0:fa:bf:f1:6b:
07:da:2e:8e:3b:a8:2a:2e:f1:f4:46:a1:ae:37:7d:
02:60:1b:dd:1e:4c:bd:51:36:47:40:0e:b2:fa:49:
df:3e:5c:71:50:34:64:b8:54:26:d2:96:42:98:68:
f6:70:3c:16:25:0f:47:08:a5:38:11:ac:f4:b2:d9:
58:65:5a:98:a8:56:58:34:65:1a:67:4a:56:af:9d:
65:8d:77:dc:00:e9:7e:3b:2f:d7:a1:2f:44:e5:0f:
76:45:fe:d3:c5:f8:55:49:33:c9:5e:3a:4b:0f:3b:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E0:DC:A4:6B:0B:B9:57:C6:EF:C2:8C:FD:5E:23:56:2B:07:2E:F1
X509v3 Authority Key Identifier:
keyid:AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/gODcpGsLuVfG78KM_V4jVisHLvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.209.0/24
81.163.213.0/24
81.163.215.0/24
Signature Algorithm: sha256WithRSAEncryption
00:60:69:59:5f:c0:7a:d3:3a:63:1f:1d:0e:08:6f:9b:e8:05:
0e:9e:b4:00:ad:58:02:7c:2a:cb:7e:15:fa:27:6e:4b:33:dc:
48:ec:d3:bc:c5:ef:f9:55:4c:e2:e7:15:0c:9a:ad:08:ed:56:
21:9c:ea:52:82:f7:20:89:48:af:7b:d1:ed:cd:55:46:d9:6d:
f3:48:ba:ba:12:35:3f:86:3e:28:e5:dc:d4:6e:1b:08:49:d0:
e8:55:36:f1:ee:b4:ed:a6:8b:d3:af:de:66:93:7d:c5:ed:eb:
24:56:82:3e:b4:06:ae:40:6e:47:1d:3a:e0:a3:7b:9c:84:82:
40:ab:9b:91:da:63:0f:1b:c6:69:6d:e6:4e:53:35:cb:80:c5:
04:42:7e:be:fd:e7:70:7b:c5:6e:5c:46:8d:8d:fb:c4:36:76:
e5:66:9e:13:f1:76:32:7b:86:a9:ad:93:3a:a8:2b:58:dd:58:
18:e4:63:92:af:6d:7a:5f:cf:9e:e5:29:87:3e:32:41:f6:5b:
85:6b:f9:48:17:48:5b:49:db:ea:4d:3a:d2:b8:05:b6:1b:7b:
45:be:e9:ac:8e:08:e9:3f:cd:1a:25:ca:46:bd:46:8c:a7:8d:
9e:52:79:5d:19:1a:8b:de:49:60:9f:f1:db:20:a6:bb:d7:bb:
91:84:ef:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:28:48 2024 by rpki-client on console-fra.rpki-client.org