Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_QUGarvzzesMQUAtoRhrPyIENL0.roa
File: _QUGarvzzesMQUAtoRhrPyIENL0.roa (raw, json)
Hash identifier: aYgRFL9xIhsCz3WKRPf//19DWAdbGHfOLoPA2U/mp8E=
Subject key identifier: FD:05:06:6A:BB:F3:CD:EB:0C:41:40:2D:A1:18:6B:3F:22:04:34:BD
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC8020AB3920F244556DA8981A448F232
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_QUGarvzzesMQUAtoRhrPyIENL0.roa
Signing time: Tue 02 Jan 2024 02:30:26 +0000
ROA not before: Tue 02 Jan 2024 02:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206835
IP address blocks: 37.79.229.0/24 maxlen: 24
37.79.230.0/24 maxlen: 24
37.79.227.0/24 maxlen: 24
37.79.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:0a:b3:92:0f:24:45:56:da:89:81:a4:48:f2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd05066abbf3cdeb0c41402da1186b3f220434bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a5:ba:9f:b1:61:e9:dd:11:75:c0:1b:18:f2:
b5:7f:03:ec:fb:ae:ba:ab:55:ec:c7:e5:25:f8:6c:
c4:17:2b:25:c3:73:78:10:a1:79:f4:45:1d:a3:38:
fb:4e:2e:4d:ac:69:51:18:9a:c0:13:8c:6f:5e:63:
59:dc:ee:cc:19:03:77:69:2e:46:bb:fa:50:9a:f2:
02:91:57:dd:a5:ec:1f:a1:42:a5:d7:cb:3b:02:c4:
b0:f4:d4:c4:ba:d7:a3:79:6b:b5:8f:c7:78:de:a4:
b3:84:d6:97:18:64:ce:f4:cf:fa:64:81:f2:27:8c:
db:fc:7c:4e:56:e2:56:04:a9:68:ef:bb:a8:9a:00:
d6:43:3f:8e:36:80:24:d8:06:8f:75:c9:a6:e7:99:
77:54:d3:73:b5:a4:db:87:73:22:22:82:15:31:57:
1a:42:11:76:9e:6c:5f:e4:bf:c4:5b:2d:92:f6:33:
b0:8f:31:dd:76:48:88:9a:77:86:26:6f:3d:40:29:
de:d2:95:62:70:e0:d9:76:ce:ab:38:7a:a2:8c:29:
3e:4b:0d:2f:65:ef:21:eb:80:72:a2:c7:be:98:b4:
ee:5c:56:14:d5:87:e7:c3:ed:b0:e9:13:86:61:00:
5c:25:7d:fe:a7:2e:62:2e:5c:d0:bf:ef:8e:17:0a:
91:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:05:06:6A:BB:F3:CD:EB:0C:41:40:2D:A1:18:6B:3F:22:04:34:BD
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_QUGarvzzesMQUAtoRhrPyIENL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.79.227.0-37.79.230.255
Signature Algorithm: sha256WithRSAEncryption
3e:d6:5c:b5:a8:ef:4f:84:87:83:70:07:3d:f7:15:81:0e:ec:
eb:67:12:e1:61:67:ab:1d:0f:c6:c4:57:eb:f0:10:6e:7d:0f:
af:b5:60:25:7e:70:29:c3:45:fd:9f:db:2b:f4:4b:31:9b:05:
14:b9:bb:c3:83:90:c1:33:ea:2b:d0:06:32:cf:61:63:61:ff:
c8:f6:0a:ec:4b:31:48:7d:70:7d:8a:ae:b7:9a:d2:47:0c:fe:
10:01:21:30:a7:fb:4f:2e:6f:63:1d:1b:fb:34:26:b0:dc:95:
77:45:54:e9:7b:e2:76:bb:b2:0b:bc:89:0b:96:74:8f:f9:e4:
d4:bc:b9:09:7b:70:f7:b0:93:9d:3d:89:f6:09:47:ad:42:c2:
8b:48:cc:e4:f7:c5:a7:a2:da:ea:44:7d:c3:9c:70:c6:8a:d7:
40:42:04:b4:82:b3:21:40:fc:94:18:f5:01:3d:ca:44:6d:2d:
67:3c:2b:c2:34:d8:40:d6:74:c4:e5:85:02:46:cb:55:2c:15:
20:60:3e:6c:cc:bf:0f:50:fc:bb:3e:17:bf:1e:55:bc:75:3e:
b9:16:0c:be:f4:91:34:6f:04:25:ad:f6:3b:f1:0a:99:36:f2:
5b:03:2b:a6:79:79:4b:53:9b:10:67:55:7d:10:ca:97:78:4e:
9d:91:f7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:29:32 2024 by rpki-client on console-ams.rpki-client.org