Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vGDzKyV8NOFTsTXDhNd4cdWPuxE.roa
File: vGDzKyV8NOFTsTXDhNd4cdWPuxE.roa (raw, json)
Hash identifier: A92kjYfrFTmPas/5ON2lmMs6ryQS29Mcrn2/kuNzKDQ=
Subject key identifier: BC:60:F3:2B:25:7C:34:E1:53:B1:35:C3:84:D7:78:71:D5:8F:BB:11
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018F0A910B1812C3F3FCBB707764133EB073
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vGDzKyV8NOFTsTXDhNd4cdWPuxE.roa
Signing time: Tue 23 Apr 2024 10:47:08 +0000
ROA not before: Tue 23 Apr 2024 10:47:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34584
IP address blocks: 77.82.128.0/20 maxlen: 20
85.114.64.0/19 maxlen: 19
85.114.80.0/21 maxlen: 21
85.114.84.0/22 maxlen: 22
85.114.85.0/24 maxlen: 24
87.225.0.0/17 maxlen: 17
87.225.0.0/18 maxlen: 18
87.225.44.0/23 maxlen: 23
87.225.48.0/21 maxlen: 21
87.225.64.0/18 maxlen: 18
87.225.72.0/21 maxlen: 21
87.225.80.0/20 maxlen: 20
87.225.122.0/24 maxlen: 24
92.37.128.0/17 maxlen: 17
92.37.128.0/18 maxlen: 18
92.37.192.0/18 maxlen: 18
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0a:91:0b:18:12:c3:f3:fc:bb:70:77:64:13:3e:b0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 23 10:47:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc60f32b257c34e153b135c384d77871d58fbb11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:76:01:a0:96:58:0b:8e:31:df:2e:4d:38:62:
28:99:aa:4e:0f:39:5f:59:38:69:3b:a5:97:e6:bc:
02:d3:f1:b5:30:7d:cc:a3:fb:17:ab:0a:89:d1:c6:
3f:36:a0:74:5e:01:e0:30:31:e7:1b:38:3c:1d:2a:
8a:ac:a3:ea:25:96:4b:e0:e0:d6:6e:86:f3:fd:32:
8d:09:8d:a7:22:58:2a:2b:b2:3c:53:2c:9c:27:41:
d3:94:38:3f:82:8d:81:c5:e2:88:97:ee:c3:14:4d:
0c:22:58:a2:61:4b:e2:79:88:97:eb:a6:74:f8:84:
96:c1:c7:ea:6d:38:df:51:a5:76:f5:3f:ed:3b:69:
dc:16:c9:da:01:5e:14:b1:71:08:85:bb:15:df:7c:
f6:cb:de:4a:8f:65:70:aa:b1:d8:ac:19:5a:b3:e0:
c7:ec:a0:a9:87:db:1e:56:4c:ec:89:de:bc:8f:26:
1c:e1:43:2b:1c:58:3c:1e:a0:ed:a4:b7:61:39:6e:
a7:53:5c:7c:a7:4e:f8:37:25:39:ff:38:4c:7b:d7:
ee:a3:c6:04:93:c9:6a:d6:f6:1f:3b:2d:ca:3e:ee:
3a:82:2f:8d:87:f9:66:4b:8c:69:7d:c2:3d:9c:c1:
7e:a4:65:e3:fd:b7:bb:17:8c:0c:10:49:b3:98:94:
e3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:60:F3:2B:25:7C:34:E1:53:B1:35:C3:84:D7:78:71:D5:8F:BB:11
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/vGDzKyV8NOFTsTXDhNd4cdWPuxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.82.128.0/20
85.114.64.0/19
87.225.0.0/17
92.37.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8a:ea:79:3a:49:fc:eb:e9:fb:0e:07:05:cc:91:eb:1e:33:81:
d7:81:27:5d:f9:0e:b9:cd:eb:db:bb:14:95:fe:0c:5e:15:16:
06:ee:e5:13:bc:65:0c:5d:48:9e:86:af:4c:7d:44:a9:1f:60:
07:68:5a:55:61:9a:e9:56:ce:4a:18:c4:7f:bb:2c:e8:f0:d4:
51:3b:57:fe:20:79:c1:eb:d5:f7:3a:f5:63:4a:0b:75:3d:f7:
a8:6b:4b:5d:87:0d:36:d7:99:3e:b1:47:3e:b3:18:bd:b7:1d:
eb:01:ea:13:bd:ea:fe:e4:78:79:51:9e:34:7f:fb:1b:37:24:
ea:c3:5e:df:e2:3f:ae:81:bf:7e:c1:21:d2:e5:d4:8c:a5:dc:
fa:00:52:18:55:01:69:8d:43:4e:46:e3:d6:b9:a0:6e:1d:26:
eb:ea:2b:24:9f:e9:64:3e:f9:b2:d1:04:16:bc:1e:83:4d:a9:
6e:06:4a:60:4e:ca:db:47:fc:50:e8:b8:64:bb:19:43:b5:c8:
f5:02:f1:60:cc:e3:45:b1:aa:7d:09:48:b2:9c:a7:b9:ec:cc:
bf:43:d3:86:75:58:98:9d:ab:cb:ba:d4:9e:aa:7e:aa:2a:9a:
d7:0d:f9:29:13:1f:78:a9:de:2b:39:e7:57:6f:01:93:a2:20:
15:7f:a9:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 16:49:03 2024 by rpki-client on console-fra.rpki-client.org