Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/6uwFOMW4VuX9ZJxlwHdTzE96-_0.roa
File: 6uwFOMW4VuX9ZJxlwHdTzE96-_0.roa (raw, json)
Hash identifier: TIWukY7GCFEVyPMbv1QKICGv+0cOjesBMVzZXY3TgwU=
Subject key identifier: EA:EC:05:38:C5:B8:56:E5:FD:64:9C:65:C0:77:53:CC:4F:7A:FB:FD
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018DECA368739EE64E680080535962F5997F
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/6uwFOMW4VuX9ZJxlwHdTzE96-_0.roa
Signing time: Tue 27 Feb 2024 22:15:48 +0000
ROA not before: Tue 27 Feb 2024 22:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5580
IP address blocks: 185.162.112.0/22 maxlen: 22
195.143.68.0/22 maxlen: 22
212.56.20.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ec:a3:68:73:9e:e6:4e:68:00:80:53:59:62:f5:99:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 27 22:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eaec0538c5b856e5fd649c65c07753cc4f7afbfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e9:88:ef:e8:ca:ed:14:00:6b:40:13:3f:b6:
ca:58:b9:13:5d:52:cf:97:d9:99:ee:e9:ca:8a:5c:
a0:59:c9:27:a7:bf:3b:62:2d:ff:97:c4:ae:ea:a7:
57:cf:21:08:30:9a:da:5e:94:2f:37:3e:02:35:6f:
bb:82:74:b3:ae:c9:5a:71:97:31:8c:e2:a6:43:c0:
fb:2b:a6:e4:fe:82:f7:eb:f6:2f:5e:83:c2:02:e5:
05:05:3c:65:64:23:f9:8c:68:a7:64:9d:62:d7:de:
3e:16:00:71:79:96:24:6f:ae:cf:e7:3e:d1:91:63:
66:2f:57:c0:09:1e:fa:f0:4d:b9:59:22:01:26:25:
d5:33:00:1e:86:ba:33:c9:9c:8f:07:e2:1b:6a:fe:
16:ea:44:ec:6e:df:f9:ff:cf:34:fa:6b:33:5f:d2:
e5:2b:f3:cc:d9:7f:e4:c1:8d:92:08:35:0b:d5:17:
c4:f6:4c:85:61:0a:9c:5c:c2:31:93:57:6f:0e:94:
dd:22:46:76:a5:61:55:fb:bf:ce:bf:d2:3a:af:00:
ff:17:35:1a:20:18:fe:1a:1d:a6:88:a7:f8:3f:da:
5f:64:4a:f0:f0:ab:db:f9:6f:ea:d8:5b:0b:be:e1:
57:43:e4:f0:6c:4a:6c:79:31:97:89:a5:df:0b:ab:
d2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EC:05:38:C5:B8:56:E5:FD:64:9C:65:C0:77:53:CC:4F:7A:FB:FD
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/6uwFOMW4VuX9ZJxlwHdTzE96-_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.112.0/22
195.143.68.0/22
212.56.20.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:4a:80:2f:98:13:5a:1c:28:70:ab:c6:c1:37:8b:44:e2:33:
82:ba:c4:14:6b:fc:f8:ce:67:8b:dc:31:c5:cc:7b:77:4f:2f:
e5:40:3d:47:ad:8d:35:85:19:e1:4d:63:35:0e:a5:6a:77:a0:
6f:22:37:e4:85:0b:09:d8:77:95:7c:30:8f:cf:3a:39:2d:3c:
7c:04:d6:32:b6:2e:b7:f5:9f:5b:07:52:9c:5f:56:30:5d:8b:
f4:b6:78:e3:52:c1:17:77:c8:ee:3d:6a:d3:d3:47:c7:cc:6f:
a6:28:4e:9d:e7:12:03:f4:f6:c8:f0:29:a9:90:12:24:84:96:
6f:1e:90:67:3f:e8:eb:ae:47:f8:24:0c:4b:04:37:e8:c9:6f:
8d:b2:85:de:26:9c:41:39:ed:b4:51:f6:fb:da:7c:13:12:61:
83:9b:5a:6a:cd:ce:e7:1f:79:eb:97:62:35:ea:80:84:b6:96:
2f:91:44:ac:c7:47:9d:a0:39:b6:ea:8b:53:5a:d5:62:42:c7:
b9:c9:26:de:b4:f2:0f:ea:14:e9:73:b9:d4:13:41:25:08:ad:
48:73:ac:e9:18:46:13:7d:24:3a:9d:20:36:17:07:7d:6e:52:
a7:dc:9a:7d:7a:33:7d:12:bc:00:32:d5:22:41:4c:be:48:da:
4d:44:17:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 20:15:54 2024 by rpki-client on console-ams.rpki-client.org