Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/YSa65YhvGOYtWjUT4cJev3sqEvc.roa
File: YSa65YhvGOYtWjUT4cJev3sqEvc.roa (raw, json)
Hash identifier: APmb2J8Dx5rpHWamYxtjxqYM3kzi47wLJkGpa298zME=
Subject key identifier: 61:26:BA:E5:88:6F:18:E6:2D:5A:35:13:E1:C2:5E:BF:7B:2A:12:F7
Certificate issuer: /CN=dfb8d9140502c9e035305189bf658234db14f54c
Certificate serial: 018FE886A05B441DF373F1994C49D75F79A4
Authority key identifier: DF:B8:D9:14:05:02:C9:E0:35:30:51:89:BF:65:82:34:DB:14:F5:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37jZFAUCyeA1MFGJv2WCNNsU9Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/YSa65YhvGOYtWjUT4cJev3sqEvc.roa
Signing time: Wed 05 Jun 2024 13:11:27 +0000
ROA not before: Wed 05 Jun 2024 13:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212175
IP address blocks: 79.135.120.0/23 maxlen: 24
185.225.9.0/24 maxlen: 24
194.110.239.0/24 maxlen: 24
212.104.134.0/23 maxlen: 24
212.104.138.0/23 maxlen: 24
2a10:9e80::/29 maxlen: 64
2a12:df40::/29 maxlen: 64
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/37jZFAUCyeA1MFGJv2WCNNsU9Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/37jZFAUCyeA1MFGJv2WCNNsU9Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/37jZFAUCyeA1MFGJv2WCNNsU9Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:86:a0:5b:44:1d:f3:73:f1:99:4c:49:d7:5f:79:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb8d9140502c9e035305189bf658234db14f54c
Validity
Not Before: Jun 5 13:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6126bae5886f18e62d5a3513e1c25ebf7b2a12f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:5b:38:18:dd:33:fd:6f:18:0e:3b:13:3d:
a0:48:10:a4:be:9f:7d:4d:ac:e2:4f:51:5e:81:21:
5a:29:9c:89:4a:98:5a:40:c6:2b:6c:c9:1f:79:87:
6b:d7:21:e9:b2:5a:d6:fe:2d:b9:bd:e4:16:0c:10:
4e:4a:8b:50:aa:1a:55:58:68:d8:10:81:b9:12:6e:
27:9e:55:55:86:13:0e:3d:28:67:18:c4:56:59:30:
4d:36:c9:ba:84:8b:94:8a:28:17:db:ec:b2:a6:dc:
fa:f5:4f:28:d7:ab:c9:f9:a5:a2:3e:8b:83:ae:3a:
47:dd:09:e5:13:21:f6:98:bf:57:17:8d:4a:e4:3a:
67:ba:ae:08:6a:66:5f:5b:af:65:b2:14:ac:3b:6d:
8f:e0:68:82:ec:9c:eb:55:23:06:40:ff:a0:5a:62:
f5:dc:df:19:79:12:0f:d0:68:12:ed:dd:c2:b3:a7:
b4:77:ab:0b:e4:81:09:ac:ad:5b:14:bf:ad:3e:51:
d2:75:a3:ff:ac:df:8f:3c:0c:9c:66:83:ee:f5:6e:
d8:04:ac:46:a7:85:da:6a:7b:51:ee:6e:da:24:8b:
33:a5:e6:9e:ad:32:0f:af:a3:51:79:15:cc:dc:9c:
20:b9:55:00:83:08:b0:14:25:6d:0c:a3:f0:a6:d3:
46:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:26:BA:E5:88:6F:18:E6:2D:5A:35:13:E1:C2:5E:BF:7B:2A:12:F7
X509v3 Authority Key Identifier:
keyid:DF:B8:D9:14:05:02:C9:E0:35:30:51:89:BF:65:82:34:DB:14:F5:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37jZFAUCyeA1MFGJv2WCNNsU9Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/YSa65YhvGOYtWjUT4cJev3sqEvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/62a947-cfb8-4d3d-b308-41e73c1ebae1/1/37jZFAUCyeA1MFGJv2WCNNsU9Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.120.0/23
185.225.9.0/24
194.110.239.0/24
212.104.134.0/23
212.104.138.0/23
IPv6:
2a10:9e80::/29
2a12:df40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:ee:09:72:bb:8e:8f:62:80:9c:3a:a8:9a:a1:86:3b:51:02:
b8:c9:06:e5:2d:0d:7c:c0:76:ce:2a:c9:5a:b5:71:94:36:13:
e2:71:19:25:96:b7:d7:96:68:d7:99:58:45:69:4e:a1:3e:bd:
8a:7c:ac:86:49:a5:d8:f1:8a:0f:db:a4:f3:39:78:67:91:35:
8d:74:e5:3d:8e:42:2d:cd:e7:b5:d9:41:dd:e9:d2:35:66:8e:
91:d3:93:7d:31:4a:9d:b7:5e:45:3b:cc:06:e5:db:c3:2f:45:
e1:66:c1:d9:5e:ca:3e:12:cf:9c:c7:be:b4:cf:e5:e0:53:e0:
0f:a0:0a:1c:15:ad:7b:a5:de:32:a0:02:da:4c:0e:91:a7:ee:
af:69:65:a7:f0:ab:7b:9f:04:f6:93:4e:b3:d8:2f:fa:56:ca:
ac:a1:9a:d3:ca:26:e0:2b:84:b9:65:28:b1:10:64:8f:ba:ba:
f0:2a:c4:6f:bb:cd:bb:8c:25:6f:25:eb:1b:3f:92:9f:22:16:
53:9c:8b:14:a4:68:76:e1:9c:50:9e:b3:d8:d9:ce:9b:20:b5:
bf:77:c5:7a:9d:f7:5c:1d:3b:1f:39:d7:2f:ac:ec:19:37:5f:
24:51:a4:e1:e7:7a:d3:d2:05:57:f7:6f:bc:eb:45:52:9a:17:
9b:5e:7a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:37:48 2024 by rpki-client on console-ams.rpki-client.org