Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/M6RW6idGBD-evnGI7BOk-W5wwL0.roa
File: M6RW6idGBD-evnGI7BOk-W5wwL0.roa (raw, json)
Hash identifier: Qm+zY0nmlZ9X2kDEDIFWigH5Lc7wJTA9+p++GBa+yRA=
Subject key identifier: 33:A4:56:EA:27:46:04:3F:9E:BE:71:88:EC:13:A4:F9:6E:70:C0:BD
Certificate issuer: /CN=fcbeb9b302ceb6f58d327b494d81459433be738d
Certificate serial: 018CC72666A9167634135155D39F399B4664
Authority key identifier: FC:BE:B9:B3:02:CE:B6:F5:8D:32:7B:49:4D:81:45:94:33:BE:73:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_L65swLOtvWNMntJTYFFlDO-c40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/M6RW6idGBD-evnGI7BOk-W5wwL0.roa
Signing time: Mon 01 Jan 2024 22:30:31 +0000
ROA not before: Mon 01 Jan 2024 22:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25318
IP address blocks: 193.47.162.0/24 maxlen: 24
195.234.177.0/24 maxlen: 24
2001:67c:154::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/_L65swLOtvWNMntJTYFFlDO-c40.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/_L65swLOtvWNMntJTYFFlDO-c40.mft
rsync://rpki.ripe.net/repository/DEFAULT/_L65swLOtvWNMntJTYFFlDO-c40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 01:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:66:a9:16:76:34:13:51:55:d3:9f:39:9b:46:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcbeb9b302ceb6f58d327b494d81459433be738d
Validity
Not Before: Jan 1 22:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33a456ea2746043f9ebe7188ec13a4f96e70c0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:3d:be:92:7a:6c:58:c2:84:18:48:e5:c1:
ad:66:ee:72:b5:dc:81:ca:b2:93:bf:3e:97:dd:a2:
69:d6:8d:09:85:d0:a2:c1:25:0a:4f:6d:66:e2:58:
12:55:83:e4:ab:2e:67:5b:df:61:d5:2c:cd:41:ad:
70:63:b7:93:81:1a:a6:69:18:0d:59:ba:8b:54:f4:
67:9d:6d:b6:dc:7f:de:c1:14:e4:86:8a:f6:22:f8:
e5:af:23:c0:b2:5c:29:96:a3:cc:80:1b:0a:59:34:
f2:58:51:c7:30:ae:c4:42:18:88:39:99:36:a9:b0:
0a:77:50:ea:49:8e:a7:7f:3f:c3:58:f3:4e:5d:57:
32:bd:15:9f:fb:5e:12:a9:12:34:fa:57:ce:07:40:
ca:1e:d6:f5:be:e8:96:7f:8e:a8:41:72:68:14:57:
42:05:b3:a3:90:23:dd:cc:30:64:1f:cb:8a:72:ab:
a1:0b:a7:00:cc:41:03:16:84:50:df:04:31:3c:01:
d8:77:7b:7a:67:ba:40:62:20:af:3b:7b:31:43:ff:
3c:d4:d9:0d:9a:39:22:b3:57:ae:94:2a:4d:fd:17:
2e:0d:98:fa:57:4a:c3:6b:5f:a7:03:47:aa:41:09:
5a:c7:c8:5a:1a:37:de:c1:cd:43:a3:17:37:55:8c:
30:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A4:56:EA:27:46:04:3F:9E:BE:71:88:EC:13:A4:F9:6E:70:C0:BD
X509v3 Authority Key Identifier:
keyid:FC:BE:B9:B3:02:CE:B6:F5:8D:32:7B:49:4D:81:45:94:33:BE:73:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_L65swLOtvWNMntJTYFFlDO-c40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/M6RW6idGBD-evnGI7BOk-W5wwL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1c8b69-4b7b-4bfd-bce5-37afbdf4d847/1/_L65swLOtvWNMntJTYFFlDO-c40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.162.0/24
195.234.177.0/24
IPv6:
2001:67c:154::/48
Signature Algorithm: sha256WithRSAEncryption
2c:4f:09:e5:8b:df:93:45:7d:45:0a:90:37:6b:a8:cf:0e:6e:
ce:2a:c1:b5:39:fe:62:5f:03:7f:ca:15:c7:b2:67:53:c7:c2:
59:fd:e3:52:0a:76:50:74:4c:f3:45:01:dc:e5:8d:3c:6b:c5:
22:31:ef:35:4d:ff:3d:ac:a0:cd:6b:12:5a:98:33:4d:cc:8e:
79:38:c0:14:7c:38:61:a6:1c:84:05:6f:19:fd:c6:13:29:98:
70:a8:39:dc:e2:b0:c5:73:d4:c1:68:56:92:8f:41:c8:f3:fb:
4c:df:8e:cf:74:08:55:62:04:1b:11:57:2f:a4:a0:c6:ab:83:
96:47:d5:c4:5b:cf:35:f2:60:fb:af:e4:9e:11:06:1d:81:71:
e7:9d:1a:10:b3:33:2a:e1:f2:97:73:c7:c5:98:f9:75:2c:be:
d0:be:a5:df:24:7d:86:47:ba:2f:ec:48:02:74:fc:87:b9:9a:
88:1a:e7:02:c2:58:d1:51:9f:f1:44:e7:8b:5c:83:12:67:74:
bc:8e:0e:95:40:3a:06:8f:d6:21:df:67:00:99:96:1c:7c:1a:
43:2f:9f:5a:5d:04:37:c7:7d:2e:3a:eb:0c:de:5b:0d:12:70:
01:49:95:b1:ea:a5:06:20:b0:61:aa:ef:5b:ac:b9:c9:fa:cd:
29:71:b2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:33:37 2024 by rpki-client on console-ams.rpki-client.org